Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
File: 23uiovC_o6dvXJkaR82YaMbR674.mft (raw, json)
Hash identifier: RN4LRDMBvv6TT1KNwUm0NgXaxbPj4LzvQpN1rw+l89A=
Subject key identifier: 14:9D:85:E9:52:6B:A7:86:58:21:01:7E:0F:81:E0:19:96:38:4C:01
Authority key identifier: DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
Certificate issuer: /CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Certificate serial: 019A28F9279BDF03FB7C7F5542B56BE8DA44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
Manifest number: 13AB
Signing time: Tue 28 Oct 2025 04:00:08 +0000
Manifest this update: Tue 28 Oct 2025 04:00:08 +0000
Manifest next update: Wed 29 Oct 2025 04:00:08 +0000
Files and hashes: 1: 23uiovC_o6dvXJkaR82YaMbR674.crl (hash: NSiM4WGY+ivhYGQnbs+M2zlCHmxsXaQ37qVfdNoG+OE=)
2: J8hzJTM2uz7yXJSlk16QOqdb0iI.roa (hash: sPVr5eHmre5tC1ZjjWRY6ekKAEsqs3UiVYcFX3QHcj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 04:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:f9:27:9b:df:03:fb:7c:7f:55:42:b5:6b:e8:da:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Validity
Not Before: Oct 28 04:00:08 2025 GMT
Not After : Oct 29 04:00:08 2025 GMT
Subject: CN=149d85e9526ba7865821017e0f81e01996384c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:eb:b9:15:28:55:f0:34:07:73:1d:17:46:89:
c8:05:9c:0a:0a:76:3c:84:9a:cc:1b:68:67:fc:ed:
59:0a:f0:ed:62:43:c8:4c:b2:88:5e:cd:34:c9:54:
a2:54:82:88:b0:0e:71:ea:fa:18:69:74:bb:55:38:
3e:35:4f:64:ad:b2:6e:c1:c6:17:89:c8:10:0d:b7:
52:04:41:16:1a:13:2a:ba:9b:11:76:85:04:b4:63:
33:e0:a8:d5:7d:93:2f:89:12:d9:5a:51:81:1c:05:
ad:95:fa:b8:07:c4:ab:02:e9:1d:54:c0:7d:99:d2:
c2:80:5b:04:75:45:04:51:da:24:d6:ea:de:27:22:
21:95:2e:65:f7:ef:ce:da:a5:e0:6c:ca:75:6e:a7:
24:96:cc:4c:aa:96:0f:04:c5:1b:84:3e:1e:e8:46:
e0:80:c4:c1:67:a9:3c:c9:a8:50:f8:c7:ba:f1:3f:
f0:6b:01:3b:80:9a:17:fc:f1:a3:93:23:20:86:9a:
04:ca:ae:4b:ec:24:28:4b:e4:2d:6c:42:44:50:57:
a4:34:f1:9f:a2:48:d8:1c:93:15:bd:b8:6b:06:57:
38:ca:8d:f7:cb:b4:02:83:06:65:e4:f1:7d:26:a7:
50:11:e1:a5:0b:d3:2c:90:65:6f:f0:80:41:c6:ae:
40:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:9D:85:E9:52:6B:A7:86:58:21:01:7E:0F:81:E0:19:96:38:4C:01
X509v3 Authority Key Identifier:
keyid:DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:56:16:4b:99:b4:ba:08:32:7c:49:71:6a:2d:65:42:03:bd:
46:7e:32:52:78:5c:15:d0:76:5c:fa:77:83:f8:b4:fb:60:d4:
90:7e:1f:de:c1:88:b2:0a:d5:06:f3:e3:64:0d:8b:e8:f9:b8:
7d:08:c7:70:3c:f5:a8:97:d0:e5:92:93:04:0b:cc:38:b6:b3:
e0:94:e4:96:99:9a:47:98:10:7b:85:78:d0:3f:17:61:0a:de:
ae:1a:a2:4f:c2:8f:94:0a:d1:f4:18:d9:12:34:f6:e3:7b:58:
fd:4a:d9:fa:34:05:0d:e8:db:42:7e:97:9f:ed:22:ca:35:e0:
1a:1d:3e:45:55:8a:4e:60:b5:28:81:b4:c0:b4:09:89:28:3c:
1e:76:f3:a9:a5:c0:32:df:88:89:f9:5a:2d:6c:ec:76:d7:df:
c8:03:04:96:cd:61:91:01:f3:03:ce:dd:04:26:41:97:91:f3:
8a:a7:b1:e3:60:33:27:3a:13:31:a4:13:32:ec:2f:e9:65:84:
48:04:e3:ae:a5:f2:02:df:0a:1f:78:cc:10:8e:b9:df:d7:0d:
70:8a:7d:86:d0:8a:e9:43:68:8e:44:d4:3d:e0:f1:74:93:73:
0a:3e:23:18:ab:d2:a4:ce:e5:05:4c:d7:c4:a0:50:c6:54:f7:
d5:84:16:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 12:35:44 2025 by rpki-client