Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
File: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft (raw, json)
Hash identifier: zraqvmSuCWTDQr05dI1dCgjnwsWu/B8RYbnHXSQucYM=
Subject key identifier: 32:E6:FB:CC:4E:95:F6:E1:19:91:1C:95:DC:5C:6E:C4:D6:B8:0D:1F
Authority key identifier: AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
Certificate issuer: /CN=ae7f187c12782fc4d844762235993329c4563a0d
Certificate serial: 019A71EEC0477972D1E4A4144D3B221788C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
Manifest number: 0D3C
Signing time: Tue 11 Nov 2025 08:01:03 +0000
Manifest this update: Tue 11 Nov 2025 08:01:03 +0000
Manifest next update: Wed 12 Nov 2025 08:01:03 +0000
Files and hashes: 1: 9SHpbhL3XuwxiKnoCroL_5tpXVo.roa (hash: xPrIpxk+JNMXsVLk++89joWnIkf6ad6w3ouFrsF8d/w=)
2: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl (hash: 3BGis8s8/v0TrRWq5o97fG1exeNk8ezBSjnMWy6enOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:c0:47:79:72:d1:e4:a4:14:4d:3b:22:17:88:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f187c12782fc4d844762235993329c4563a0d
Validity
Not Before: Nov 11 08:01:03 2025 GMT
Not After : Nov 12 08:01:03 2025 GMT
Subject: CN=32e6fbcc4e95f6e119911c95dc5c6ec4d6b80d1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ad:9b:6b:b2:21:ab:af:9b:fd:9c:80:c9:ae:
77:90:c0:9e:ea:01:60:1c:ed:57:90:3f:ec:ae:35:
f0:41:76:35:40:67:cb:b5:54:f7:a6:5f:b8:00:fa:
a8:b4:f6:8b:62:06:f3:26:4c:16:20:c2:4c:7d:c6:
36:39:40:01:10:ce:d6:a6:c5:15:35:9b:45:54:9e:
c2:c1:d6:c7:2b:f0:e6:4c:7c:5e:d6:32:2f:cb:03:
e7:e4:26:40:e6:15:ab:74:77:3e:d6:12:a4:69:3e:
11:8f:75:c4:45:56:8f:b3:e1:1c:a7:d1:a0:58:db:
90:4f:11:c1:9e:b7:7d:97:1c:68:32:3e:f9:b7:bb:
36:ff:97:85:2d:46:57:cd:c4:ab:fc:78:0e:e3:76:
84:b0:2f:f0:86:4f:65:5e:38:38:76:04:2b:37:ac:
67:c8:93:44:c0:4b:73:9f:5b:21:2e:96:a7:10:c1:
8b:9b:9f:c7:3e:2d:dd:58:1b:cc:29:25:71:36:48:
a7:b5:53:90:26:43:bb:87:31:f3:0c:be:a6:3d:92:
08:15:ac:67:52:e8:fc:74:cd:50:7f:cc:7e:07:4c:
41:71:b5:0e:64:cb:71:a4:6a:82:f3:12:29:a9:a9:
5f:ca:89:ed:d9:63:b7:4e:43:fb:38:4b:05:d4:ca:
df:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E6:FB:CC:4E:95:F6:E1:19:91:1C:95:DC:5C:6E:C4:D6:B8:0D:1F
X509v3 Authority Key Identifier:
keyid:AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:fd:62:12:d2:b3:c0:91:3c:8f:99:48:9b:35:4c:ac:00:96:
c8:58:c0:d2:64:43:72:a7:8d:d4:1e:97:2c:86:c9:58:c3:85:
ad:9e:ab:df:be:83:ec:cf:b2:45:85:47:86:18:40:2b:4f:ff:
4d:71:08:f9:01:93:56:54:9b:9a:8c:a4:00:da:fe:2e:e3:03:
ac:9d:3e:c9:f7:2f:24:2e:c3:0a:ad:e7:f0:fd:53:a3:a4:78:
6a:ca:2c:ee:9d:9f:f4:6a:fe:d1:8f:53:32:6c:90:00:28:6a:
22:1e:e1:65:30:7a:8e:55:17:37:fa:9f:cc:42:76:66:32:4f:
f6:a8:b8:69:46:5a:92:d8:52:c3:a0:56:39:9f:96:98:48:53:
52:6c:74:93:a8:e6:cf:b8:45:4d:fc:15:af:47:fb:60:14:99:
0c:b5:9d:37:1b:14:6e:ef:95:af:0c:9e:58:99:09:15:be:db:
2b:53:19:9f:97:a8:af:ec:2a:8a:64:c8:68:d5:8c:5f:51:8b:
1f:75:a6:54:f2:3e:d1:9b:cc:1d:68:89:19:88:0f:4e:4b:b3:
ad:54:30:8d:56:a5:ec:8b:50:59:8e:d0:f7:a7:f9:e8:68:51:
1f:1d:bc:ab:5a:d6:6c:81:32:be:11:a5:a9:36:85:88:99:09:
aa:69:4e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:43:54 2025 by rpki-client