Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.mft
File: RwXTxqWwUSaCzf3zY7GanFZ_H2w.mft (raw, json)
Hash identifier: 1WZxcu1M+Sk+GBzmNXOtuccLWmgpeElvBGgtRORLiiw=
Subject key identifier: AF:1A:AD:47:DF:83:65:41:A3:C5:10:73:EE:0A:9D:70:B9:58:EA:1E
Authority key identifier: 47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C
Certificate issuer: /CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c
Certificate serial: 019A28F9892EC76E44CCD6808AA210A7C761
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.mft
Manifest number: 16FE
Signing time: Tue 28 Oct 2025 04:00:33 +0000
Manifest this update: Tue 28 Oct 2025 04:00:33 +0000
Manifest next update: Wed 29 Oct 2025 04:00:33 +0000
Files and hashes: 1: I6ww8fe_j9f3G8rmW-wt_mZZY2s.roa (hash: Sd8zlV1mabR3WLhdUp899p9IeCSzwEZhzmqxHzFQi+0=)
2: PR7h8oep4HkWGcRzvS4-gRfixMM.roa (hash: Ff4Pkc/6nXpndO4Ei0ieXIWUczca12lTRXydMV3acQQ=)
3: RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl (hash: KGC9f3XPvhzvvOHFs13vBH5M4Bk2ADnVitrk71fq/9E=)
4: a4P5Nmq1ldQpFUTXqCcYVJT2FBw.roa (hash: uK/XWq2f7Vj84yIu4J13Mqd4rpKs4ZvyhbUMCrHpfh4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:f9:89:2e:c7:6e:44:cc:d6:80:8a:a2:10:a7:c7:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c
Validity
Not Before: Oct 28 04:00:33 2025 GMT
Not After : Oct 29 04:00:33 2025 GMT
Subject: CN=af1aad47df836541a3c51073ee0a9d70b958ea1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:97:90:12:2b:de:6d:72:72:c6:0e:c2:15:15:
e8:b2:e7:db:ed:4a:6f:5e:a5:1d:47:9b:8e:67:d7:
2f:a6:6a:9f:cd:a8:ff:d3:45:4c:2d:4c:3e:12:08:
82:da:12:15:c0:18:54:1f:6a:0e:24:dc:05:dc:7b:
60:b1:9a:af:c6:e4:cd:5c:32:60:a4:2d:12:5e:26:
94:14:19:98:b9:07:90:10:b1:a4:05:29:9c:78:2b:
2d:a3:b1:a6:37:4b:64:cd:a3:12:ca:06:52:08:20:
c3:a4:7e:9d:e0:a6:55:44:4e:75:2a:68:a6:6c:f6:
84:3a:8b:60:1e:c2:de:d5:ae:8c:0a:1b:ff:f5:b2:
de:5a:48:13:13:85:6d:a4:86:b7:4c:8f:6d:d3:48:
0a:64:0d:4d:43:57:eb:da:0d:ee:53:3a:94:2b:99:
43:2f:9f:d8:9d:2b:78:74:ac:02:f8:4f:a9:e7:a4:
9e:69:0a:1c:7b:e6:bf:65:a5:d0:c4:4d:57:bf:1e:
d1:ae:0f:ce:b3:16:99:00:83:92:42:25:fa:3a:05:
b6:68:66:f4:79:5c:4c:f9:56:f1:0d:bc:cd:c7:a8:
82:0a:64:4c:b4:fa:6e:d1:83:21:81:43:d8:31:5f:
2d:2d:8e:1e:34:86:64:a1:f0:e5:1b:40:8f:db:fa:
93:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:1A:AD:47:DF:83:65:41:A3:C5:10:73:EE:0A:9D:70:B9:58:EA:1E
X509v3 Authority Key Identifier:
keyid:47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:68:4b:36:7e:17:88:2f:b1:c6:ef:0a:85:89:30:a8:5e:60:
de:6d:1d:dc:26:df:e0:71:f5:49:5b:d2:96:c9:6d:0d:59:05:
94:bf:dc:11:e0:25:89:97:aa:e7:16:d2:ef:24:65:87:88:2b:
a0:3f:64:42:94:03:ec:9a:00:d0:e2:c4:eb:79:3d:5d:57:6a:
02:bc:b0:44:d9:5e:a2:a2:19:f0:b9:98:19:00:3a:09:fa:4f:
9e:52:f2:a3:a1:47:90:bd:77:41:bd:11:d6:24:6e:6f:5c:10:
75:a7:8a:3a:9a:75:84:8c:21:8a:eb:0f:3b:e3:b5:d6:63:a7:
11:63:63:64:71:0c:56:13:a1:f9:55:af:55:e5:a0:6f:89:93:
08:0c:07:a8:36:7c:e6:25:e5:27:4b:b9:46:71:f3:d4:4e:1b:
68:74:81:71:d2:05:27:ff:fd:0b:59:8c:9e:8e:7e:72:37:e4:
8b:00:01:54:4a:29:02:a4:8f:0b:9c:1e:04:4e:42:13:73:b3:
70:91:90:72:8b:e4:8a:e9:d7:0c:38:7c:e7:d4:10:ea:1f:75:
85:a2:39:d8:cb:a4:0c:a3:26:c1:5f:da:99:76:74:85:24:31:
4b:27:8c:23:e7:55:73:6e:e2:a9:af:f9:1d:ba:50:45:18:14:
4a:54:9c:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 06:51:42 2025 by rpki-client