Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
File: sG9AQEkaZW_3Um0vF2EbDWisvQw.mft (raw, json)
Hash identifier: 6z3GxZUbwh9dAv8pIzB9mfSi4F15gTv/CG7NUjjQ6/A=
Subject key identifier: 5A:31:92:44:94:06:D1:5F:FC:0A:E4:E1:8B:79:9D:0B:43:00:A0:6B
Authority key identifier: B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
Certificate issuer: /CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Certificate serial: 019A714A2FF29F399A98CD12117D690ECDAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 05:01:18 +0000
Manifest this update: Tue 11 Nov 2025 05:01:18 +0000
Manifest next update: Wed 12 Nov 2025 05:01:18 +0000
Files and hashes: 1: Llrtrof0_CXG6g_18Oyw968ZWEI.roa (hash: X1zaGRl51EQ/u9kK0U1WmdFcDajifODFmk55LESlUmM=)
2: sG9AQEkaZW_3Um0vF2EbDWisvQw.crl (hash: VGCUsiuGGEq+cwQ7S11ai0TOFuGdQrfm7OC2j961SbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:2f:f2:9f:39:9a:98:cd:12:11:7d:69:0e:cd:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Validity
Not Before: Nov 11 05:01:18 2025 GMT
Not After : Nov 12 05:01:18 2025 GMT
Subject: CN=5a3192449406d15ffc0ae4e18b799d0b4300a06b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:71:82:09:1e:d7:b4:3e:d9:b6:b5:53:21:ac:
a9:91:25:92:ab:cf:f7:c5:82:db:81:0e:b7:a7:d2:
87:38:43:71:79:bb:44:86:5d:48:f4:20:97:9f:4c:
46:d1:12:f9:a5:e7:98:11:d5:ff:c9:17:8b:ca:a7:
df:aa:a5:d2:6d:b5:99:8d:5e:41:36:6c:38:41:d3:
1c:c0:9e:f5:1e:9e:23:eb:a1:fc:71:52:d0:48:ce:
ca:fe:84:c9:f0:a8:67:09:f2:ce:3d:c3:01:a9:8e:
62:ca:0c:ce:fa:1f:11:12:63:1b:d1:73:f4:70:bd:
d5:a6:19:ef:ce:82:06:11:e3:97:6c:48:68:1e:5e:
c5:eb:a7:ff:b9:3a:73:2f:40:ad:a5:42:d6:29:16:
68:a5:bf:fe:9f:f7:1f:83:58:a9:eb:e7:e9:ef:cc:
0d:ed:d5:2f:3f:bb:96:5c:4f:59:87:eb:93:da:e2:
78:32:5a:87:e5:bb:c2:ae:ef:e0:6c:d4:3d:a8:88:
08:ac:bb:ad:a6:b0:a5:83:dc:74:a4:25:f7:c4:86:
17:c5:44:a8:a3:2c:17:51:97:06:79:d4:f4:4f:af:
7b:bf:34:a0:0f:62:4d:3b:90:d6:b8:e2:a4:c6:0d:
f7:14:13:4b:20:54:1d:ab:5d:ac:c7:77:92:c1:97:
d3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:31:92:44:94:06:D1:5F:FC:0A:E4:E1:8B:79:9D:0B:43:00:A0:6B
X509v3 Authority Key Identifier:
keyid:B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:83:48:2b:d6:fd:5f:7e:d6:b9:cb:e0:d0:1a:ac:37:fa:e6:
3d:d8:9b:17:54:38:eb:fb:3a:b6:e0:fa:69:1f:88:50:5d:2c:
65:26:27:c3:81:ca:c6:0c:be:cc:5e:4a:e0:1a:14:df:7e:9c:
b8:0a:b0:9b:aa:e4:ca:eb:5f:32:73:b7:05:40:ea:51:10:39:
ad:1a:3d:b0:5a:7e:15:e7:f4:df:34:d6:3c:2b:c1:8e:50:6c:
1c:22:d9:85:2a:d0:94:63:8b:06:1e:8f:24:2f:c8:0c:74:fd:
67:4b:ed:4d:af:89:61:93:fb:f8:d5:56:65:2b:59:47:f7:89:
2e:5d:cd:ab:b0:42:7a:20:f3:1b:44:3c:f0:af:57:79:4d:cf:
a5:93:ef:f3:28:b3:ae:1d:af:3a:be:e5:0a:d6:32:c9:a9:44:
9f:b2:ea:7d:b0:af:be:82:27:86:4c:85:23:5d:17:b9:3a:73:
c0:b8:fd:50:24:03:b9:35:22:49:86:31:3d:b6:52:52:97:b8:
fa:e8:42:c8:d7:52:0d:68:91:7e:ce:ff:92:e7:bb:47:3e:10:
e2:29:1a:99:ec:14:a4:e0:73:85:ad:15:94:61:5e:79:ac:93:
44:36:88:cd:ed:a7:33:b7:62:a4:f1:fc:f1:0c:4c:c5:a7:a9:
1b:7b:8e:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:18:13 2025 by rpki-client