Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
File: INShQtHjFwTrW88Dp4X2N4NVt5k.mft (raw, json)
Hash identifier: x085RXZsNwgq8yqdvd0v+0aiPD1Z2rKK4if+IzWljI8=
Subject key identifier: 28:53:72:02:4A:5D:39:CC:B5:47:8E:31:F6:7D:27:B6:21:6A:2C:1E
Authority key identifier: 20:D4:A1:42:D1:E3:17:04:EB:5B:CF:03:A7:85:F6:37:83:55:B7:99
Certificate issuer: /CN=20d4a142d1e31704eb5bcf03a785f6378355b799
Certificate serial: 019A711310BBB9A32E5544CF68A24BA4C806
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
Manifest number: 0743
Signing time: Tue 11 Nov 2025 04:01:06 +0000
Manifest this update: Tue 11 Nov 2025 04:01:06 +0000
Manifest next update: Wed 12 Nov 2025 04:01:06 +0000
Files and hashes: 1: INShQtHjFwTrW88Dp4X2N4NVt5k.crl (hash: u2E9jWc7zvyjlGxTVdfSG5gzYq9IcKDHtfPEIRlB85k=)
2: f4DoD8P-fxJrVEa5N9Xo0tr0Di8.roa (hash: mdyOv1gBNV5vVxgXgKXFAgXeuJeFmNjhF1FTZ4tdHxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:10:bb:b9:a3:2e:55:44:cf:68:a2:4b:a4:c8:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20d4a142d1e31704eb5bcf03a785f6378355b799
Validity
Not Before: Nov 11 04:01:06 2025 GMT
Not After : Nov 12 04:01:06 2025 GMT
Subject: CN=285372024a5d39ccb5478e31f67d27b6216a2c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:ee:c7:9e:fb:2c:98:28:9b:98:d3:4f:78:d0:
1b:8f:b1:63:85:65:51:8e:6f:bc:35:71:f3:b8:2c:
db:63:f2:07:39:61:df:21:93:d4:f4:3c:44:ec:be:
c5:15:36:23:ad:da:79:a9:b1:77:a2:9b:b7:6c:69:
10:9f:13:64:fc:5e:0a:85:37:c2:0a:09:e5:bc:f3:
30:1e:43:ae:bc:92:f1:73:76:75:35:6e:e0:8e:76:
a0:84:e1:c7:c8:1c:ba:29:42:10:92:b2:ab:83:67:
74:0c:9e:84:74:9a:a6:05:07:9d:53:ae:e5:28:24:
f5:c4:98:79:89:30:91:82:f5:1e:d6:bd:2b:ee:50:
f9:2f:6d:50:87:86:50:e6:25:6b:00:5e:31:5f:87:
4e:f1:b1:3e:61:76:07:97:da:40:fa:f8:95:e2:9f:
86:07:e3:7d:35:fd:5b:b4:1a:ca:1e:57:69:9a:8f:
30:3b:6c:49:5b:d7:a8:ee:e4:2e:1c:bf:60:a4:d9:
6e:79:41:fe:8d:7d:81:4d:c6:ec:67:b5:e7:8a:f0:
24:a2:b1:32:e1:40:5b:6f:37:0d:a1:11:ce:93:a8:
9e:46:c2:f5:8e:c9:a7:67:da:13:87:e7:eb:66:9b:
75:da:b8:3c:56:c4:bb:a2:9c:6d:09:87:b4:83:f1:
98:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:53:72:02:4A:5D:39:CC:B5:47:8E:31:F6:7D:27:B6:21:6A:2C:1E
X509v3 Authority Key Identifier:
keyid:20:D4:A1:42:D1:E3:17:04:EB:5B:CF:03:A7:85:F6:37:83:55:B7:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:59:ff:95:92:56:0e:fc:5b:73:25:87:c4:68:0e:8d:ce:48:
86:96:f5:66:3d:6d:f4:16:2e:a8:b7:f0:1d:d8:97:3d:77:c1:
4e:84:31:bb:87:da:01:40:ec:cf:dd:99:4b:ff:b1:fd:f9:cf:
d9:b9:e8:d2:46:16:2b:00:22:0f:4e:ff:1b:80:7b:3d:88:86:
33:ee:7f:87:9d:5d:a2:4d:78:8e:41:fb:02:75:b1:b8:6c:21:
4a:5e:89:22:12:17:a9:9f:66:c1:13:0f:8d:2c:e8:08:79:e2:
05:45:e4:aa:f7:19:80:92:35:04:23:38:3e:f4:08:af:3a:8f:
ba:0e:54:6a:4b:5c:9c:97:25:54:26:d7:30:30:04:cb:6e:77:
5b:30:29:f0:97:db:e3:a6:bf:ea:99:a8:07:0d:58:72:16:ff:
f0:63:e7:54:20:ef:16:e7:66:96:fd:3e:f0:50:0d:3f:b0:12:
21:c9:68:ea:08:89:1a:f6:70:8e:13:42:9a:4f:43:5e:7e:0a:
a8:0e:a5:29:79:90:82:cd:9c:f0:6b:6c:6e:25:fc:e3:c0:b6:
d7:14:ae:ed:d9:1e:be:75:24:19:95:2a:07:8f:c4:fe:44:34:
bf:37:f2:ea:0e:15:c0:ad:57:71:a9:47:ab:dd:62:0a:e9:8c:
17:42:ac:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:39:15 2025 by rpki-client