Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
File: Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft (raw, json)
Hash identifier: j0oo2HZO6tldJa2UV1NPS91d7A7P47a9DD9q77nVK+Q=
Subject key identifier: 79:27:28:3F:AA:3C:5B:29:CF:D4:FA:03:F5:C7:76:74:98:97:52:BC
Authority key identifier: 46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75
Certificate issuer: /CN=468ecba10e7599a030aa613088688a6c26d62d75
Certificate serial: 019A73012644C02253160EF61D74121EC5D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
Manifest number: 13B0
Signing time: Tue 11 Nov 2025 13:00:46 +0000
Manifest this update: Tue 11 Nov 2025 13:00:46 +0000
Manifest next update: Wed 12 Nov 2025 13:00:46 +0000
Files and hashes: 1: Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl (hash: WWhGMnmIRzwxjUtayML2qQPw9ZzXrwH/6y7Roc0sc0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:26:44:c0:22:53:16:0e:f6:1d:74:12:1e:c5:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468ecba10e7599a030aa613088688a6c26d62d75
Validity
Not Before: Nov 11 13:00:46 2025 GMT
Not After : Nov 12 13:00:46 2025 GMT
Subject: CN=7927283faa3c5b29cfd4fa03f5c77674989752bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3c:14:84:06:e3:fd:85:45:96:6f:25:66:1a:
6f:10:53:b3:6b:bb:5f:8a:fc:07:0b:b0:46:19:0b:
82:82:5b:76:90:a2:6d:77:12:7d:f0:0a:f6:da:5a:
66:34:c4:4e:e5:44:18:3d:e3:f2:19:6f:54:46:aa:
60:56:a2:fd:5d:97:2b:6a:76:2b:66:88:6b:01:61:
fe:50:57:54:f7:a7:eb:bf:70:2d:8e:01:e6:e9:6c:
3f:05:c7:8e:9e:52:6d:8b:65:d3:8a:38:c5:f3:c9:
6b:af:36:fb:f4:96:2e:78:1b:9c:f4:29:84:de:c2:
03:ff:57:21:fc:81:60:70:ef:c9:9c:c9:29:33:3e:
c3:24:b7:bf:f9:ec:17:13:a9:af:0e:ed:78:6e:ef:
54:e8:21:90:91:db:fd:fe:e6:9a:70:38:86:32:27:
d1:bb:4d:2b:4c:ff:b7:28:55:17:cb:e4:77:45:66:
af:0d:d3:75:86:42:4f:ff:61:ba:58:c1:2c:c4:c6:
a0:ec:f7:64:22:c2:d3:8a:8f:53:ee:61:68:6b:3f:
d3:f6:ae:a1:89:43:57:08:89:e1:03:cb:cf:06:91:
3a:65:b5:89:85:de:9e:f7:3b:09:c2:d0:59:fd:b2:
2c:f4:6c:05:61:88:02:49:de:78:98:25:6f:61:3e:
ee:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:27:28:3F:AA:3C:5B:29:CF:D4:FA:03:F5:C7:76:74:98:97:52:BC
X509v3 Authority Key Identifier:
keyid:46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:07:e8:60:47:10:8a:2d:45:39:c0:7d:3a:3c:ce:f1:57:3e:
fa:0a:70:b3:3f:22:a1:ae:91:ef:35:df:c1:e7:2f:4b:b7:72:
63:87:36:e5:11:8d:0a:ec:7c:44:fd:48:cf:8c:7b:34:1b:58:
38:05:79:b5:f5:c1:1e:4c:9c:b1:75:a2:21:c9:d4:e4:bc:03:
ae:0a:b7:f3:a4:d2:fc:d8:66:89:f0:90:0f:e8:4c:8c:88:b9:
be:6d:3f:52:2b:5f:42:05:d0:e1:2f:17:a6:d8:da:79:cb:ce:
64:31:b2:2f:9d:e7:a1:25:ec:78:26:64:df:03:45:f6:c1:cb:
0f:f0:5f:c7:5e:f1:ff:5b:20:59:00:34:54:2f:a3:56:8c:29:
6f:93:44:c8:45:00:12:17:3e:15:c4:db:80:04:9f:06:bc:0f:
37:7a:f4:bc:6c:cc:df:86:de:54:ea:82:5a:2c:d8:e2:5f:40:
13:70:ad:f4:30:f3:7d:3d:c1:cc:61:60:9f:b5:cb:4c:b3:22:
78:49:f0:41:e8:9e:fe:70:88:34:c6:c1:0c:77:2d:47:41:a5:
76:9a:d0:a8:47:e8:3a:ba:6d:68:93:f3:f4:35:2f:e6:ec:b0:
9a:51:eb:bc:13:fd:d8:a4:3f:3f:e7:c5:73:3b:8e:01:04:92:
57:2c:5d:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:17:40 2025 by rpki-client