Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
File: m9o0FBNxKfo4psYcSWq4thQJzgI.mft (raw, json)
Hash identifier: e7IKPwR/wjYR5VpXSJyZ53ovrRfKTxCVSZvLiR2zzOM=
Subject key identifier: A8:C8:E5:66:28:5A:42:93:A2:4B:F0:52:0B:37:2D:CE:38:18:95:A3
Authority key identifier: 9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02
Certificate issuer: /CN=9bda3414137129fa38a6c61c496ab8b61409ce02
Certificate serial: 019A236528AFA7DB13A6F16F58838C4FBBF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
Manifest number: 16F4
Signing time: Mon 27 Oct 2025 02:00:23 +0000
Manifest this update: Mon 27 Oct 2025 02:00:23 +0000
Manifest next update: Tue 28 Oct 2025 02:00:23 +0000
Files and hashes: 1: U6nb6DpUzJV_xi4UhiA5O3aKdZE.roa (hash: at4iy2FPtAChzVS5IZxWuVWW9v3c10T2DEm7KMEtSwY=)
2: m9o0FBNxKfo4psYcSWq4thQJzgI.crl (hash: N3vl153YThC+JTLTbB4aXAqrgNf80oHxJ6LXCj7l+RM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:65:28:af:a7:db:13:a6:f1:6f:58:83:8c:4f:bb:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bda3414137129fa38a6c61c496ab8b61409ce02
Validity
Not Before: Oct 27 02:00:23 2025 GMT
Not After : Oct 28 02:00:23 2025 GMT
Subject: CN=a8c8e566285a4293a24bf0520b372dce381895a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8a:95:5d:70:e8:a8:b7:e0:d3:5c:b2:23:d9:
36:23:32:fe:87:11:64:2b:70:02:09:57:e3:34:50:
07:6d:81:c2:34:2b:e7:25:b5:82:14:1e:32:2f:cf:
b2:4b:35:be:08:bf:ce:e4:d8:4e:6b:60:86:43:b3:
bf:56:49:7d:77:c5:91:20:43:a9:16:c8:2d:55:e5:
86:86:cf:c4:77:f6:aa:10:32:80:0c:4f:4d:ad:9a:
81:05:5a:11:34:16:ca:93:51:f0:7c:53:bc:4e:e0:
a7:26:1a:43:4b:fa:b1:16:1d:20:98:92:2d:bd:bb:
b5:1d:ff:c4:9e:75:dd:08:74:a5:18:86:a2:fb:0a:
64:b5:62:a4:3e:60:40:ba:96:9e:86:3d:e1:65:2d:
1b:cd:66:22:68:fc:d6:86:8d:6d:02:13:39:0e:7a:
c5:99:50:1c:04:fe:16:57:20:c4:ed:23:27:71:cc:
ce:f1:8c:51:d1:9f:46:e7:05:95:b3:88:e2:de:7f:
dd:af:2c:f9:16:af:ee:9a:6f:6e:a0:64:f3:5b:e9:
b8:32:a9:a1:76:61:a7:4b:54:4e:40:1d:16:fb:74:
54:f6:89:2f:21:f8:5f:bc:98:da:bb:ec:d0:36:65:
6d:8b:a9:f4:8a:85:79:ac:a4:d2:a9:3c:82:c4:0c:
4e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:C8:E5:66:28:5A:42:93:A2:4B:F0:52:0B:37:2D:CE:38:18:95:A3
X509v3 Authority Key Identifier:
keyid:9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:df:ef:e5:01:f7:8f:55:f6:cc:16:0f:03:db:a0:5d:f0:4e:
8c:d9:af:b5:f5:12:ea:05:b3:81:86:53:50:d8:27:71:45:9f:
c5:7c:c1:2f:9d:a9:99:c2:9c:ff:6a:c4:45:f8:1b:95:a7:dc:
13:07:83:7e:78:40:0f:83:a9:19:3c:e1:46:a4:ba:bb:83:61:
f6:ee:b3:a3:ea:6c:4d:0a:d8:86:57:d9:b7:b6:4f:da:ef:8f:
e7:65:0a:62:22:b5:f0:e4:20:22:f7:9c:e1:e8:ac:4e:f2:4e:
88:35:ed:e7:b6:b0:4b:ea:48:03:77:92:69:12:bd:08:39:a5:
cd:0b:21:47:fa:db:63:e2:92:ef:d0:83:cb:6f:31:e4:fb:3c:
0d:3d:d1:be:3c:fe:bc:2a:cf:72:91:5a:d3:04:a3:5c:20:63:
a0:79:f7:98:78:f1:89:e3:9a:38:2a:70:a1:74:b4:5a:a4:1c:
47:8c:62:45:c4:be:09:df:4c:ab:ca:9b:64:13:62:7b:94:53:
24:1a:06:4e:f5:cb:89:01:ca:61:71:58:2c:bb:df:6d:9a:b0:
eb:b6:07:fa:b1:4f:13:54:65:d8:24:24:36:da:a1:30:e8:81:
c4:0b:48:f1:2a:d9:f0:43:0a:c6:1d:e3:f5:a8:96:d2:4c:22:
ca:d6:e7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:01:14 2025 by rpki-client