Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
File: _l28QbEed7xEvSxzVVS1tCWNDDM.mft (raw, json)
Hash identifier: Pd3HAGN8T0SQIKkIkYy64vDSrL90D1CcrsAp8tyc530=
Subject key identifier: 20:96:51:96:07:AB:4F:49:71:EC:8C:19:43:89:7C:46:F3:13:9A:56
Authority key identifier: FE:5D:BC:41:B1:1E:77:BC:44:BD:2C:73:55:54:B5:B4:25:8D:0C:33
Certificate issuer: /CN=fe5dbc41b11e77bc44bd2c735554b5b4258d0c33
Certificate serial: 019A71EED27AF7F0F0D59336C7E5DCF12C6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 08:01:08 +0000
Manifest this update: Tue 11 Nov 2025 08:01:08 +0000
Manifest next update: Wed 12 Nov 2025 08:01:08 +0000
Files and hashes: 1: QQYnKZZEKh0t39rLRqceu8xA4vU.roa (hash: PxxqnNy49Cu4ltRHNTmmrI+SwKZQqPOvx1a9kq3y6xs=)
2: _l28QbEed7xEvSxzVVS1tCWNDDM.crl (hash: 8nlbwJ1LLBP2ku8eD1HiSDgVZMhkkuCF/3sc7NAAbPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:d2:7a:f7:f0:f0:d5:93:36:c7:e5:dc:f1:2c:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe5dbc41b11e77bc44bd2c735554b5b4258d0c33
Validity
Not Before: Nov 11 08:01:08 2025 GMT
Not After : Nov 12 08:01:08 2025 GMT
Subject: CN=2096519607ab4f4971ec8c1943897c46f3139a56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:56:47:31:00:6b:7e:b2:5d:76:54:75:2b:8d:
8e:57:fc:63:e0:da:54:3a:c8:71:b1:f3:7c:79:35:
e8:fc:0c:ef:c4:bb:dd:ba:62:b7:29:f3:50:f8:19:
94:73:a4:b4:f2:82:7f:9f:38:74:3a:5b:26:81:97:
59:96:ff:09:49:d9:35:76:18:f5:e8:87:be:fb:75:
e2:c3:d7:40:9e:05:a3:06:a5:73:90:14:07:3e:e9:
03:5a:da:14:8e:b7:62:8c:5e:1d:6a:fa:4c:1c:9f:
05:5e:90:07:60:22:bc:fb:da:2c:61:35:f0:ae:8d:
b1:74:00:24:3f:6c:51:ad:eb:51:60:39:06:36:35:
c9:7e:8b:80:25:2e:49:7a:da:da:3c:83:b7:43:d6:
16:ce:fa:c8:73:4c:be:f6:0e:52:04:e2:22:33:0c:
5e:dd:47:b2:3f:17:54:07:0a:49:b8:6d:4d:d0:78:
00:b7:c4:0f:3e:ec:19:1f:04:ca:8d:b2:9f:f9:67:
18:dc:da:a7:59:64:c4:91:21:97:d5:32:75:a4:48:
21:3b:04:a6:2f:fd:89:98:3b:49:a8:51:58:63:36:
ab:38:c7:67:0b:0f:1f:6a:d9:6c:60:cd:bd:37:85:
ed:3b:64:00:d9:0c:f6:93:22:b7:d9:f5:91:3f:78:
73:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:96:51:96:07:AB:4F:49:71:EC:8C:19:43:89:7C:46:F3:13:9A:56
X509v3 Authority Key Identifier:
keyid:FE:5D:BC:41:B1:1E:77:BC:44:BD:2C:73:55:54:B5:B4:25:8D:0C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:e4:2b:1e:ed:50:db:96:ce:7e:bb:2e:82:b9:d5:50:ec:36:
02:f7:3b:92:aa:af:17:54:08:35:21:25:12:e0:bc:99:eb:b2:
3a:f3:0f:2d:0e:59:03:a7:c8:cf:b7:04:e0:79:e0:d3:3d:e7:
a1:a9:7b:a7:8f:50:04:63:23:13:78:ad:a8:40:4f:4a:a1:a9:
4b:7d:7d:ec:db:9a:16:b5:ab:12:30:e6:c8:70:4d:f9:88:e6:
0d:8e:6a:0b:65:25:93:1b:be:95:5d:70:8c:1d:f2:7b:b7:4f:
b1:07:e9:95:06:aa:ee:00:3e:3e:e2:9c:d3:80:6b:3e:7b:d7:
02:45:b4:0f:12:79:5b:52:86:af:dd:c8:a0:30:18:c3:b3:99:
54:14:5b:60:ad:08:f8:25:9c:3a:df:01:48:e2:7b:c4:24:4a:
a7:3f:69:fc:bf:20:ad:4f:88:9e:64:f5:f4:e2:19:03:40:2e:
2f:1a:fb:e4:94:31:8b:68:3a:25:4c:85:d8:25:28:a7:c4:c3:
d0:ab:54:2c:bb:4b:1c:9e:cc:94:a8:6e:2a:28:59:c7:77:d8:
c0:93:3c:eb:0d:72:38:00:4b:3b:77:6c:2f:96:de:54:4f:26:
9f:4b:f7:8a:2c:e4:37:7a:40:9e:d5:07:f8:bb:da:84:17:7c:
a9:6e:0a:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:10:44 2025 by rpki-client