Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
File: iW81xeAyGs0CFn3viAfwu29xwo0.mft (raw, json)
Hash identifier: lYa87HIAJJjXzZaudbfLrsH5XQS9ze24P/YfJZApqLo=
Subject key identifier: AF:7F:F0:D4:08:FB:B8:85:F8:E4:74:9D:3C:DD:F0:5E:2A:9C:EE:73
Authority key identifier: 89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
Certificate issuer: /CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Certificate serial: 019A73A5D4EE22E3B2AEE062D1397161B5E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
Manifest number: 12E2
Signing time: Tue 11 Nov 2025 16:00:39 +0000
Manifest this update: Tue 11 Nov 2025 16:00:39 +0000
Manifest next update: Wed 12 Nov 2025 16:00:39 +0000
Files and hashes: 1: KzxZqybvsz4qWRvLNMoGl_b-dg0.roa (hash: waO3ZFTQ9Kiow9t+yCx6WlAToF1IQKM9UgVqX7Ju9ms=)
2: iW81xeAyGs0CFn3viAfwu29xwo0.crl (hash: Pv0ymkC4ZUScJKukeonfwiJU2DsbRFRGOm/8x1ckB+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:a5:d4:ee:22:e3:b2:ae:e0:62:d1:39:71:61:b5:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Validity
Not Before: Nov 11 16:00:39 2025 GMT
Not After : Nov 12 16:00:39 2025 GMT
Subject: CN=af7ff0d408fbb885f8e4749d3cddf05e2a9cee73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:cd:6f:3e:f8:fa:21:8b:96:00:ea:06:92:2c:
f0:65:2e:92:d5:72:bc:9f:97:5b:e9:e2:13:9c:f3:
6a:84:6b:c8:eb:7f:a7:a0:10:6b:df:8e:06:c5:48:
f9:5c:e4:8f:3e:13:b7:75:73:7e:27:3d:e3:d3:ea:
a9:e6:cf:07:0b:56:d2:d3:ea:cc:7e:36:a4:6d:35:
c1:95:6d:b8:9b:a7:22:ab:e1:e0:80:bc:25:93:bb:
68:a0:82:28:db:5c:57:83:6f:df:88:b6:e6:58:ca:
7f:c9:58:ad:42:93:d9:d3:56:c1:52:1a:ae:62:d5:
e0:b8:bc:97:23:78:b4:c3:d2:d9:fd:55:b4:82:54:
bd:e4:ba:a2:7f:ef:ed:cf:b3:bc:4c:a9:d8:6b:66:
dc:a1:c1:29:94:d9:af:72:9e:79:d2:0e:92:10:cd:
18:b2:2e:ef:14:0b:e2:5c:13:8a:45:35:64:75:0b:
a8:94:73:a9:cc:54:c8:bc:73:98:5a:aa:54:e8:74:
0b:f6:81:c4:58:91:45:88:05:aa:5f:98:2e:8c:cc:
24:04:7a:14:a6:ae:5f:5c:b8:a2:d6:1e:8c:e3:88:
40:b8:4c:f4:cb:2d:c7:d4:f1:56:2b:67:a2:c4:8d:
f0:6f:2d:74:d5:e0:82:60:13:c4:d6:80:1c:b7:99:
ce:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:7F:F0:D4:08:FB:B8:85:F8:E4:74:9D:3C:DD:F0:5E:2A:9C:EE:73
X509v3 Authority Key Identifier:
keyid:89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:15:e4:ff:e4:2e:8e:0b:d3:e8:15:e6:f8:9d:7d:9d:42:d4:
6e:7f:14:ee:e2:9c:2e:c7:78:e1:e0:bd:c3:df:18:24:7b:1d:
69:31:1f:1b:90:5d:8e:92:3d:49:4c:76:3a:c2:e5:03:d5:e7:
35:ba:06:85:f1:0a:6b:cc:30:91:af:7a:f9:0c:64:e5:99:04:
2a:9d:a1:38:34:90:e8:a6:01:f9:78:91:2f:bc:d4:33:57:d4:
8c:1f:db:c0:fc:d4:c8:9a:8e:c6:07:d2:c5:f4:07:b8:ea:de:
64:f4:75:13:c3:cb:9d:19:20:64:bc:a7:8a:79:a2:b8:a7:61:
82:7d:12:37:0b:1b:66:44:fa:0d:b8:3d:f9:56:2c:c7:c1:7e:
61:e9:9a:86:77:fa:fb:1e:fc:94:c9:ae:50:6b:a8:19:11:55:
bc:c7:1e:02:2c:7f:ca:ce:57:db:79:7c:44:6c:4a:d6:53:d3:
c5:57:c8:c9:78:7b:b5:8b:57:70:cf:f4:ff:73:5d:0d:dc:59:
c0:cc:24:c3:af:61:aa:8b:b0:fb:48:69:6e:7e:e4:21:f2:aa:
2f:41:2c:4f:5f:9c:24:05:f0:62:50:38:0a:06:91:30:1a:d3:
ea:12:24:8e:e9:63:21:4d:8d:9b:f0:8b:f1:e8:3c:6e:bd:0b:
a0:41:c1:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:19:39 2025 by rpki-client