Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
File: diY1mUnOzyQYxaLbIayrhd2Rk9g.mft (raw, json)
Hash identifier: Az68ETv4zoV+uCMzmWrO9XbG1D3L/jPYuFioH1b29Uc=
Subject key identifier: A3:86:FD:F2:82:AE:4C:DF:D0:D4:E7:E0:9F:9B:9F:4B:43:A1:90:ED
Authority key identifier: 76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8
Certificate issuer: /CN=7626359949cecf2418c5a2db21acab85dd9193d8
Certificate serial: 019A17980D0C1A2FB67510098D8E3724C83D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
Manifest number: 16F1
Signing time: Fri 24 Oct 2025 19:00:31 +0000
Manifest this update: Fri 24 Oct 2025 19:00:31 +0000
Manifest next update: Sat 25 Oct 2025 19:00:31 +0000
Files and hashes: 1: 808eb-9aLu41roSMSaHO8r-sCJ0.roa (hash: rCM5eGiyr6wuq7y0i6XZdzgH6YJOrFxOSIfhu9ZqAu0=)
2: diY1mUnOzyQYxaLbIayrhd2Rk9g.crl (hash: btTdUmKXMAjinpVm+VEuqe4QLj7rROLKBC1uZycxpQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 17:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:17:98:0d:0c:1a:2f:b6:75:10:09:8d:8e:37:24:c8:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7626359949cecf2418c5a2db21acab85dd9193d8
Validity
Not Before: Oct 24 19:00:31 2025 GMT
Not After : Oct 25 19:00:31 2025 GMT
Subject: CN=a386fdf282ae4cdfd0d4e7e09f9b9f4b43a190ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ff:97:fb:6b:8a:c2:f3:81:f8:3c:e6:84:29:
15:1b:75:8c:85:67:d2:16:ae:68:b9:17:5d:bf:da:
11:e2:84:0f:bd:78:a1:0e:33:e5:16:02:67:5e:7a:
a8:6c:83:8a:5d:79:95:d6:55:d4:36:27:92:d3:3a:
3e:1c:99:17:ff:1e:65:b8:6c:16:bd:35:83:55:4c:
02:2a:87:58:54:f0:05:31:d7:94:b6:81:44:b6:68:
dc:fa:ad:ea:79:79:f7:b1:46:9d:bb:3d:1a:1c:70:
08:c9:57:80:b1:f9:25:d7:c1:ee:0f:73:81:75:c0:
e6:6e:15:75:24:38:ec:2c:a4:bd:69:8b:65:22:ac:
7c:c4:54:a8:10:49:96:25:b8:42:0c:5e:a4:f0:32:
0f:2f:ac:b5:9f:ae:5d:f6:dc:5d:16:38:2c:7e:81:
b7:3b:a0:93:1b:02:ea:dc:e5:58:b6:aa:99:0e:3f:
7b:cc:46:7c:05:22:20:55:86:95:24:6e:7d:f5:b7:
35:c0:7d:6d:01:2f:16:aa:e1:12:a1:94:8a:a7:d0:
8a:de:fb:a7:cb:8f:3f:ec:3b:ab:fe:05:7b:89:14:
3f:04:4e:71:68:24:5a:17:f8:c4:28:58:3a:8b:d1:
39:67:bd:5e:0f:d7:79:c1:12:96:a0:d1:29:8d:11:
bc:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:86:FD:F2:82:AE:4C:DF:D0:D4:E7:E0:9F:9B:9F:4B:43:A1:90:ED
X509v3 Authority Key Identifier:
keyid:76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:b8:60:7a:59:2a:42:05:ba:a1:38:df:97:e3:b3:af:c8:4d:
b4:95:fa:99:15:0f:1e:58:3a:90:81:46:ef:2f:33:b4:de:76:
24:68:55:e7:ec:20:2b:b1:2c:44:e5:74:75:c5:7c:38:87:04:
0b:91:c2:44:45:c8:35:b5:cb:d3:13:16:45:e5:b5:af:86:7a:
97:fc:76:20:75:ac:72:d5:61:c9:85:e1:60:b5:99:18:56:37:
b3:10:65:d5:77:33:8a:72:20:b1:dc:5d:1c:ec:5b:28:bc:41:
9f:2c:e5:a9:b1:5d:6c:ea:4e:b7:13:62:6f:d8:85:b8:51:11:
8d:cf:a8:b0:1c:7b:a6:bf:d3:1a:1a:35:5a:b8:fa:78:06:ba:
a5:06:18:a2:2b:a9:fd:2f:94:e2:3e:49:71:43:da:7f:b6:62:
15:4f:0e:21:52:f1:25:1f:28:7e:d0:c7:bd:b6:9f:9c:82:8d:
fe:a1:34:20:81:a7:d7:77:8e:8b:05:47:8e:16:d5:53:b0:bc:
19:10:1c:f0:46:67:e8:0c:71:ab:3b:f9:ce:1d:85:a6:e6:ea:
5c:8b:b9:b0:76:7f:e7:66:4e:a1:b1:8b:55:85:03:8e:f5:ec:
3a:59:84:40:a8:37:e7:97:6a:a7:9a:33:05:4a:60:15:ae:88:
47:36:d5:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 02:42:57 2025 by rpki-client