Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft
File: h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft (raw, json)
Hash identifier: ClTUpBdq4mcvB6phwjGi92Ca0MMIDlSGlyvn7xeHRrg=
Subject key identifier: 5F:99:58:EA:19:C2:C1:88:CB:62:44:8D:E6:92:95:DD:66:6D:33:6C
Authority key identifier: 87:C3:B8:5A:7B:EF:BB:44:90:D7:AC:85:2E:B8:BE:84:BF:93:8B:4D
Certificate issuer: /CN=87c3b85a7befbb4490d7ac852eb8be84bf938b4d
Certificate serial: 019A7226019C0FED7AE97C7E1AA0C8309B7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8O4Wnvvu0SQ16yFLri-hL-Ti00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft
Manifest number: 093F
Signing time: Tue 11 Nov 2025 09:01:24 +0000
Manifest this update: Tue 11 Nov 2025 09:01:24 +0000
Manifest next update: Wed 12 Nov 2025 09:01:24 +0000
Files and hashes: 1: AO9S5FPNyFUFF8sl00iZG2uj63o.roa (hash: dj/tZS47oYr7HP4aHIaoRYk9wXqksDBdwIFty9clVxk=)
2: h8O4Wnvvu0SQ16yFLri-hL-Ti00.crl (hash: r3ioumthSt+paZQyd99fCFz3yg3oEkY6mf7xwfd6h9g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft
rsync://rpki.ripe.net/repository/DEFAULT/h8O4Wnvvu0SQ16yFLri-hL-Ti00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:01:9c:0f:ed:7a:e9:7c:7e:1a:a0:c8:30:9b:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87c3b85a7befbb4490d7ac852eb8be84bf938b4d
Validity
Not Before: Nov 11 09:01:24 2025 GMT
Not After : Nov 12 09:01:24 2025 GMT
Subject: CN=5f9958ea19c2c188cb62448de69295dd666d336c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:de:0d:7d:0b:cd:19:b5:a9:e4:3b:ba:2b:0c:
e3:02:ca:b0:59:60:ce:ce:36:7a:28:78:df:42:dc:
bf:d3:7b:09:43:cc:26:6f:55:04:8d:77:4c:e1:9c:
22:e2:f6:e4:eb:63:23:02:f1:c4:49:dd:19:b6:7f:
de:85:e4:e6:2d:6a:07:06:9b:53:6a:c6:be:2f:91:
88:6e:ac:0c:71:c3:1f:c7:b4:04:95:46:40:bf:db:
9d:cb:be:d3:30:ee:6b:76:f6:5e:0e:3f:f0:2e:09:
27:e5:0e:39:0a:80:ee:e1:43:d9:e3:b0:5c:42:ec:
eb:39:23:3f:39:b9:89:20:c7:b4:32:80:13:2b:40:
2b:45:29:4c:7c:7b:f1:54:ef:bd:7f:cd:9a:40:dc:
69:45:88:40:32:21:c5:19:f5:0b:d0:10:a4:a7:c7:
fe:ec:75:27:ef:83:fd:b8:eb:ce:02:52:76:68:6a:
08:f8:a7:e0:e2:5f:0d:e1:f4:9c:08:42:bd:d9:d0:
18:2e:70:bd:3f:ec:f7:fb:03:ba:00:e7:fd:51:c8:
81:53:67:48:84:8d:df:6b:13:72:ef:27:e0:74:d3:
4d:ef:d2:3f:7c:f6:5d:0c:98:4e:a3:c2:cc:ad:f2:
8f:81:2f:48:f3:aa:24:c5:64:8e:d9:62:59:82:6d:
44:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:99:58:EA:19:C2:C1:88:CB:62:44:8D:E6:92:95:DD:66:6D:33:6C
X509v3 Authority Key Identifier:
keyid:87:C3:B8:5A:7B:EF:BB:44:90:D7:AC:85:2E:B8:BE:84:BF:93:8B:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8O4Wnvvu0SQ16yFLri-hL-Ti00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:94:7e:80:c0:1e:e5:a6:d9:b6:0b:66:40:83:ca:2d:f9:28:
91:a8:7b:3a:5b:40:5d:92:7a:24:20:3c:ff:42:a7:40:c1:71:
c3:ea:47:9a:85:a1:e3:61:64:e3:85:d5:ec:50:69:5f:2a:fc:
00:a2:66:58:20:48:e9:08:96:e8:cb:5b:df:f1:12:e3:c8:bd:
46:fe:6d:a2:db:93:3b:dc:a2:6c:78:20:3a:66:99:b1:a4:d3:
90:fe:c4:03:ad:51:49:e7:2c:18:64:64:4b:90:ab:d6:6b:ca:
02:6f:28:87:d9:5d:1d:fc:cc:2e:04:bd:9e:da:fe:a8:a5:ff:
97:3d:d8:6f:cb:15:66:e9:39:91:68:51:6e:94:1c:9e:50:b4:
39:c4:ff:78:5c:d7:45:f7:47:71:60:de:14:c6:5c:6b:7b:57:
e0:df:29:19:93:f1:d0:44:d3:01:b2:64:ff:ca:76:45:7d:25:
25:7c:99:0f:c3:5f:2d:e3:a1:41:0e:2c:2e:35:4d:3e:0f:d4:
a5:9a:20:2d:db:ab:46:83:59:06:75:79:44:53:05:7d:3e:a1:
1b:9d:87:a4:0a:39:7d:0c:4c:07:3e:5c:dc:38:df:06:ac:55:
aa:13:19:fd:d9:6e:d0:c9:a8:3d:1f:f1:ca:56:5c:c2:54:d0:
4b:9e:96:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:18:37 2025 by rpki-client