Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
File: _32KebrU-YPQxJiVr1DqigPrxw0.mft (raw, json)
Hash identifier: aHhxm+hvgGw4fsGy3bUHmrRGniT8EQW5K0WCY+EZPmk=
Subject key identifier: 24:88:A2:20:4E:93:C9:E4:B6:42:83:B0:4D:AC:02:3C:A1:BC:6F:43
Authority key identifier: FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D
Certificate issuer: /CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d
Certificate serial: 019A1B3DBC319EE9051E837FA48B4ADA7AA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
Manifest number: 0DA2
Signing time: Sat 25 Oct 2025 12:00:21 +0000
Manifest this update: Sat 25 Oct 2025 12:00:21 +0000
Manifest next update: Sun 26 Oct 2025 12:00:21 +0000
Files and hashes: 1: 8LrCpJVZw00cB6v7Jxmu5danMVM.roa (hash: LkYRg4fRX+WYVMtQ+HSrUSifp72hGXmKbB4Mx1yLYEo=)
2: COurHBmKxKzA2XaP35V0TKv22j8.roa (hash: mOJRDgA4eGDtP6pug7iu4FVIpAjMDZJckmCB6cKfpOc=)
3: EEy6gJAmhpmEpToeahyxI211nao.roa (hash: bt34cvtSMhR5oe2u5pXbiTmmRNH/yvwh2lEhx2KoETw=)
4: _32KebrU-YPQxJiVr1DqigPrxw0.crl (hash: sbRUV1IhzfZal+PL98UksjTlVwkRG/ducYQcaMwgxME=)
5: is_2p9c72i9SqdHOdQECHoEj2KI.roa (hash: 68Pbkuya3pT0PDgvbPhuXTcECYTodGaR9wl/fj5QS8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 11:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1b:3d:bc:31:9e:e9:05:1e:83:7f:a4:8b:4a:da:7a:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d
Validity
Not Before: Oct 25 12:00:21 2025 GMT
Not After : Oct 26 12:00:21 2025 GMT
Subject: CN=2488a2204e93c9e4b64283b04dac023ca1bc6f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4d:30:35:25:1c:97:b2:1c:ce:cc:9a:10:b7:
53:36:bd:d0:c9:d2:54:a3:85:92:de:13:37:6f:48:
7e:88:15:79:e8:0e:3b:49:ae:7e:9a:f7:d4:f3:73:
f8:90:5d:12:dc:f5:2d:63:f6:48:e2:91:ba:ed:b8:
dc:97:45:c9:81:c7:4c:e4:38:49:6a:4a:8e:e6:79:
42:31:9b:9b:1c:de:cb:38:a8:e4:2b:94:b7:87:0a:
3c:d4:48:8b:10:da:a9:41:5a:0b:4b:7c:cd:7d:4a:
e2:72:c2:f2:04:31:ef:45:c7:55:cc:f6:b6:2b:39:
50:17:da:49:ad:06:04:6c:85:82:4e:7d:c5:be:70:
b6:b3:2f:dc:1c:30:50:dd:77:ad:d8:6e:a1:20:fe:
f9:5e:12:f6:e6:c7:4d:f6:12:bd:d7:d0:5c:97:dd:
1a:87:14:1a:d8:86:e2:c5:06:dd:e2:a5:64:f0:1d:
13:88:fe:8f:06:8c:7a:02:0a:77:ac:a5:e7:ba:c1:
0f:a4:5d:ba:03:de:03:8b:0a:14:7c:cb:26:a8:aa:
37:cb:bb:2a:e9:0b:bd:4f:dd:44:c0:93:a7:34:58:
14:02:3e:6a:d8:f0:a5:03:ed:69:f0:58:ed:b6:0e:
a4:2b:5c:13:94:66:67:de:3d:d6:91:28:58:ea:44:
9e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:88:A2:20:4E:93:C9:E4:B6:42:83:B0:4D:AC:02:3C:A1:BC:6F:43
X509v3 Authority Key Identifier:
keyid:FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:d4:42:ea:56:46:3b:99:b1:41:b5:32:a9:45:bb:bc:ac:85:
2d:58:27:73:96:3c:a3:cf:40:63:e5:24:23:3f:9b:d1:a5:ea:
48:e1:8c:51:87:af:40:3d:07:6c:9f:d9:3f:29:1f:8d:f4:4c:
c8:69:1b:98:51:62:44:f4:14:1f:c4:c8:69:a3:8a:63:59:24:
3c:1e:62:2a:3c:1a:23:9f:11:5a:7e:ff:37:f6:e4:64:7a:ae:
12:85:c8:b6:a0:34:f5:5c:9a:e4:32:0a:11:7c:9f:cb:cc:dc:
d8:49:93:74:08:4a:8d:f9:5a:67:5c:f4:5e:7e:2b:30:30:ec:
c2:6e:bf:e6:d7:16:82:67:a8:63:84:00:ee:09:c9:66:cc:e6:
cf:66:a4:ce:e4:fb:89:83:88:52:d0:09:e6:58:01:f0:b0:82:
0e:06:bd:83:21:c1:6f:71:2c:f7:2e:86:e2:e0:d7:0a:93:69:
3c:0e:06:cd:0a:d7:8c:dd:a9:7f:49:2c:a0:8c:b2:a5:7f:a1:
18:47:34:71:d3:29:f8:bc:70:67:bf:91:ff:90:70:22:c6:65:
45:7d:47:ff:da:ed:02:93:b4:42:d6:69:ba:26:df:64:e7:3c:
2a:70:a3:dc:ef:e1:10:77:10:97:4e:11:e6:d0:4a:47:e4:de:
92:a6:d4:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 18:29:09 2025 by rpki-client