Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.mft
File: wSWw9XiOWBEj5eSfAB1S16f89a8.mft (raw, json)
Hash identifier: Y/QiHgVdRaNWpXp4H8+kmdvUsnVyd6TlXW6KwSN4Cd0=
Subject key identifier: 46:30:34:2C:25:0E:B3:BE:AD:B7:B2:E3:17:9A:6E:53:D5:08:10:84
Authority key identifier: C1:25:B0:F5:78:8E:58:11:23:E5:E4:9F:00:1D:52:D7:A7:FC:F5:AF
Certificate issuer: /CN=c125b0f5788e581123e5e49f001d52d7a7fcf5af
Certificate serial: 019A72932F6A4B84C81ADEEA10ADE8B7D7EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSWw9XiOWBEj5eSfAB1S16f89a8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.mft
Manifest number: 017A
Signing time: Tue 11 Nov 2025 11:00:39 +0000
Manifest this update: Tue 11 Nov 2025 11:00:39 +0000
Manifest next update: Wed 12 Nov 2025 11:00:39 +0000
Files and hashes: 1: navuee4FJbu9Mu_giIFAY0BYzaM.roa (hash: 6gSGweu9FwNJJ/ezj94dZmef8nFklycxHKre4DDzNBE=)
2: wSWw9XiOWBEj5eSfAB1S16f89a8.crl (hash: FAMtOF9Hc8fqyM28WwRM4HC8XxGqjL/lzlQArh/Te8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.mft
rsync://rpki.ripe.net/repository/DEFAULT/wSWw9XiOWBEj5eSfAB1S16f89a8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:2f:6a:4b:84:c8:1a:de:ea:10:ad:e8:b7:d7:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c125b0f5788e581123e5e49f001d52d7a7fcf5af
Validity
Not Before: Nov 11 11:00:39 2025 GMT
Not After : Nov 12 11:00:39 2025 GMT
Subject: CN=4630342c250eb3beadb7b2e3179a6e53d5081084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a3:23:5e:8e:50:9c:66:39:84:96:87:d0:35:
89:a9:e5:46:da:67:2f:37:9b:75:e8:75:d8:49:d0:
c4:a4:23:68:de:18:7b:dc:29:d8:25:87:99:29:3e:
de:9c:51:27:d6:ed:03:35:f9:a4:22:3f:05:8c:be:
c3:52:fa:64:89:81:f9:80:a4:fc:da:61:52:37:42:
89:8e:61:5a:d8:5a:88:df:20:7f:41:41:61:bd:c4:
32:f5:eb:24:84:e2:c9:d1:c2:4c:36:2a:12:ce:60:
6d:d1:df:a3:68:93:2f:26:ef:5f:f2:73:f4:ce:cb:
77:de:8c:02:b1:d0:26:c5:2f:a6:5d:05:cf:9f:1a:
77:6e:a9:81:82:36:68:79:86:b2:94:a2:8b:0b:cd:
bf:8d:3e:66:c1:77:75:57:3f:0a:4a:23:1d:73:fe:
5b:5d:e7:5f:81:0f:98:b0:fa:10:2f:39:74:db:f3:
f4:a5:31:d8:13:80:47:a7:45:35:a1:ca:69:b7:bb:
b8:00:26:c7:e0:98:25:37:ce:dd:6a:48:77:25:de:
1c:96:98:87:e3:4b:91:5c:28:b1:37:6a:2a:25:54:
4b:44:61:97:ea:dc:00:7a:63:1e:f2:82:cd:0e:f0:
94:20:b3:69:ef:11:e7:31:dd:d2:92:57:28:0e:7f:
c7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:30:34:2C:25:0E:B3:BE:AD:B7:B2:E3:17:9A:6E:53:D5:08:10:84
X509v3 Authority Key Identifier:
keyid:C1:25:B0:F5:78:8E:58:11:23:E5:E4:9F:00:1D:52:D7:A7:FC:F5:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSWw9XiOWBEj5eSfAB1S16f89a8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:80:07:da:81:8e:67:86:eb:7a:67:c9:62:70:1c:a7:b9:06:
51:fb:78:33:7c:b3:af:ce:8f:84:70:b4:47:58:49:1a:98:ed:
42:eb:29:17:37:f1:8b:60:db:ef:4f:60:c7:74:61:f8:02:a1:
cd:2e:9b:c1:fc:5e:db:87:17:6c:df:4d:c3:58:f0:e9:3c:26:
1d:d3:78:dd:ee:6e:24:1d:12:66:f8:f5:7c:e3:cc:76:f5:7b:
59:fc:95:f3:c7:08:6c:44:0c:c4:0a:63:78:7a:af:37:b6:33:
c9:37:0a:82:a9:43:b0:03:26:ed:59:37:5b:5b:87:dd:62:95:
a0:03:38:34:e1:88:98:a0:12:53:5f:ac:69:a1:03:be:12:df:
83:24:b5:a3:5f:17:ee:a7:c1:0a:32:1c:1e:6e:eb:69:c0:ef:
88:59:c9:27:c9:4a:fb:91:42:0a:09:3a:e7:9e:01:31:f9:30:
5e:94:ca:15:88:2a:ab:59:2b:05:7f:6e:9d:d6:3a:68:fb:97:
2b:9f:54:86:51:e5:d9:70:9e:c3:e3:11:f3:52:ce:4a:4b:d2:
b7:1c:d0:65:30:05:57:42:3c:61:17:c0:61:59:52:4d:fd:6f:
cc:b8:c5:23:26:74:88:36:dc:25:ad:4c:e1:4a:7e:b8:55:f1:
97:ad:1a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:01:09 2025 by rpki-client