Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
File: CiINqbbilYVbYn_qYQ4cthZGiUs.mft (raw, json)
Hash identifier: naBaFxOHO4RUyGku5ZPHfqVC/aAxh2bYhg9tXMTezL8=
Subject key identifier: 28:C9:B2:72:35:3F:15:27:82:AE:8C:2F:0C:97:D6:D7:CD:2E:99:9C
Authority key identifier: 0A:22:0D:A9:B6:E2:95:85:5B:62:7F:EA:61:0E:1C:B6:16:46:89:4B
Certificate issuer: /CN=0a220da9b6e295855b627fea610e1cb61646894b
Certificate serial: 019A7112E2A04B504141C89F30D37E039158
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
Manifest number: 129E
Signing time: Tue 11 Nov 2025 04:00:54 +0000
Manifest this update: Tue 11 Nov 2025 04:00:54 +0000
Manifest next update: Wed 12 Nov 2025 04:00:54 +0000
Files and hashes: 1: CiINqbbilYVbYn_qYQ4cthZGiUs.crl (hash: OvxHm9eWgtnQ3xsv94JI/z9EzsYyycWHklw4TEfeYQ4=)
2: wkXSNgmrYa8rCdcuzp6T9kjqo9c.roa (hash: PKA5n5GL19/MWS8CZc9zMrpSRD9clDPEtJzbH91PkU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:e2:a0:4b:50:41:41:c8:9f:30:d3:7e:03:91:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a220da9b6e295855b627fea610e1cb61646894b
Validity
Not Before: Nov 11 04:00:54 2025 GMT
Not After : Nov 12 04:00:54 2025 GMT
Subject: CN=28c9b272353f152782ae8c2f0c97d6d7cd2e999c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:97:ee:bd:72:6f:3a:ab:94:ad:36:cf:3b:2b:
1a:fb:5e:1b:98:13:ac:22:a2:46:7f:30:fc:99:1f:
84:bf:2c:5f:ea:5d:06:7e:be:53:5b:b2:5a:c9:df:
55:fc:b9:82:0f:b8:7d:48:7e:42:d3:e9:37:da:21:
31:79:a4:c9:c5:1f:2c:1f:65:87:94:db:b7:cf:67:
ed:e0:43:d2:9d:56:2f:b9:f4:41:2b:e4:5f:6a:08:
15:3a:a5:e2:95:e3:e6:15:66:cc:78:1b:e5:20:ae:
89:73:a8:74:f2:01:c9:c0:d6:4b:80:72:c5:78:30:
b6:fa:88:dc:8d:85:d6:9f:82:02:72:3e:1c:dc:b7:
92:bf:f2:22:9d:9f:d7:e1:b0:0f:7c:e7:ff:5f:ae:
39:74:e5:31:5f:a1:88:33:da:5c:ff:6e:ca:98:f5:
13:72:44:08:b9:40:ff:2b:43:3a:74:52:74:98:64:
8f:c6:21:60:65:09:38:ad:62:bd:9a:1b:c5:d9:62:
da:3d:17:d2:5f:92:6f:8c:a1:d8:e0:0f:64:19:15:
34:9a:a8:a3:78:37:f8:92:0e:ba:c6:a0:64:89:78:
ac:6b:55:3f:6e:6d:14:38:40:1e:d3:e0:58:f6:ee:
20:77:1d:6b:ac:1c:4b:33:51:e4:b1:6d:e8:26:cb:
56:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:C9:B2:72:35:3F:15:27:82:AE:8C:2F:0C:97:D6:D7:CD:2E:99:9C
X509v3 Authority Key Identifier:
keyid:0A:22:0D:A9:B6:E2:95:85:5B:62:7F:EA:61:0E:1C:B6:16:46:89:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:bd:b0:83:45:74:b5:8a:8f:61:4b:16:08:dd:d8:0f:8b:56:
fa:33:a0:81:0c:b7:0b:db:be:b2:5c:bb:6e:d3:a5:2b:90:fd:
e6:58:d4:92:bd:dc:56:2b:55:7f:f9:5e:f0:e7:e2:09:03:e4:
8e:3c:3b:ef:3b:34:e3:6c:03:0f:65:f2:34:ad:cc:29:07:45:
70:dc:64:dd:38:c1:34:91:41:1d:5e:64:4b:1b:85:29:89:60:
a4:8c:5b:31:ce:2b:f9:99:59:9b:d5:68:67:f7:ce:17:24:13:
3d:81:a4:10:e1:1d:96:6a:e6:9e:87:cb:7d:9a:04:d6:84:34:
a2:17:d5:f6:14:59:b8:54:bb:41:79:b9:52:f7:e8:31:40:fb:
bd:91:f4:9b:de:04:6d:8a:f1:52:85:90:2e:c2:e0:65:17:81:
90:55:46:d2:06:64:d5:52:50:b1:94:71:94:42:c7:07:cc:f7:
3f:83:f3:00:a0:39:a0:3a:96:b3:06:f9:68:7b:f1:ad:4a:e1:
66:bd:ed:5c:a0:19:57:48:58:35:15:cd:3a:5c:89:f3:f6:38:
b4:7d:21:67:b7:3b:c8:db:fd:e6:ee:50:24:59:b2:8b:1f:05:
f0:9e:d8:99:10:57:a1:b0:a8:c6:a1:fc:60:c1:24:22:59:c0:
9e:f0:79:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:48:01 2025 by rpki-client