Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
File: RdGncWAlFxEzoyAslGKg6r1mBoI.mft (raw, json)
Hash identifier: LnKxfEj2tBNH8hMQ0Xy0j2FvB/2AUPhNXr5ofuoQJvc=
Subject key identifier: 08:AD:5C:2F:14:A3:8F:27:1F:B1:41:5A:82:82:B7:AB:2C:02:D9:56
Authority key identifier: 45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
Certificate issuer: /CN=45d1a7716025171133a3202c9462a0eabd660682
Certificate serial: 019A7293D71E2FBC44E2DB83161B2E8A464C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
Manifest number: 06B4
Signing time: Tue 11 Nov 2025 11:01:22 +0000
Manifest this update: Tue 11 Nov 2025 11:01:22 +0000
Manifest next update: Wed 12 Nov 2025 11:01:22 +0000
Files and hashes: 1: RdGncWAlFxEzoyAslGKg6r1mBoI.crl (hash: KNShicjq4C7IXRAgiVxocZIQ1i84SqU6K7ht9/fIcc0=)
2: p6pII2yeX9CFzHUBZ-7ECA5XoLc.roa (hash: a0i/QIPJclzVoZAHggGCZw2DH9on4V8xPPUo2d8z17I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:d7:1e:2f:bc:44:e2:db:83:16:1b:2e:8a:46:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45d1a7716025171133a3202c9462a0eabd660682
Validity
Not Before: Nov 11 11:01:22 2025 GMT
Not After : Nov 12 11:01:22 2025 GMT
Subject: CN=08ad5c2f14a38f271fb1415a8282b7ab2c02d956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:12:9d:02:42:69:f7:be:d7:2c:de:8f:b7:85:
d4:91:cc:b9:ed:cb:5d:bf:02:09:de:a4:ef:77:e8:
94:66:c2:c1:f2:ee:ae:bd:1c:c0:05:62:da:a3:42:
74:56:96:ea:3c:ff:8e:21:37:8d:53:e0:dd:91:13:
cc:6f:45:7e:1c:39:e2:b3:b4:49:ab:36:2e:3b:cd:
45:5d:42:b7:7b:bc:18:dc:49:27:c4:28:47:91:75:
61:d1:39:f9:7a:df:43:54:91:97:5c:15:1e:d8:d9:
13:83:04:b8:f5:2b:25:38:87:f9:1c:75:1d:cb:e6:
94:0f:3b:ea:23:9f:4b:46:12:e2:c5:c4:5d:c0:81:
78:f9:6e:0a:fa:a4:65:a7:f2:ff:ac:32:e4:9f:8d:
f9:31:f6:6f:99:1a:1f:5e:b5:a0:1f:67:ed:c4:81:
fa:81:45:fb:36:34:cd:93:0a:59:f9:40:87:69:50:
7f:7b:d5:f7:24:fc:c9:50:73:b0:a5:21:c5:7a:60:
ed:00:5a:1a:d8:70:6c:06:b0:49:19:af:44:8d:a8:
e4:1e:ce:38:76:c6:76:0e:df:9e:08:4f:e2:9b:43:
6d:55:bf:01:08:3a:3a:26:e4:85:b4:25:36:8a:8b:
e9:b2:f1:af:c4:11:10:16:63:0b:52:f2:e5:d0:7a:
cc:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:AD:5C:2F:14:A3:8F:27:1F:B1:41:5A:82:82:B7:AB:2C:02:D9:56
X509v3 Authority Key Identifier:
keyid:45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:b8:fe:88:83:d2:47:b3:83:7c:be:62:93:a0:7f:fe:de:61:
e5:4a:39:7d:3e:05:ba:98:a3:32:d3:fa:cb:56:41:9a:b0:c6:
7a:8d:29:a3:92:d1:6d:53:f1:7d:e7:37:de:ef:ff:3a:56:12:
9f:1d:9e:47:5d:30:f3:0b:a3:93:e3:cc:ca:e8:6e:96:d9:af:
6f:64:b2:7b:69:ed:3a:2b:8f:8e:28:ea:10:2f:35:ff:03:96:
10:5c:7f:83:41:96:0e:39:e7:7e:27:24:69:94:57:27:ee:41:
ff:dc:94:02:0f:1d:4f:9f:3d:ba:f2:b9:ed:71:88:e1:c6:86:
15:74:ce:17:50:4e:1f:5e:03:d3:f1:86:c5:af:a1:26:44:0b:
75:e1:ae:e5:c2:bf:ea:99:88:c6:0f:3e:b0:5e:b4:70:94:b0:
7e:99:eb:ad:68:e3:a4:13:6e:ea:89:1a:04:08:e6:3a:9f:c9:
3d:ad:7e:1f:4b:b6:04:c0:08:8e:50:f8:05:fa:d7:3c:b0:47:
92:e0:ed:7d:be:a3:ff:e9:9d:75:a8:4d:df:4b:67:c2:7c:0d:
28:40:34:f2:ae:11:27:84:a4:3f:15:08:b5:b9:ae:b9:ed:2a:
6d:67:36:49:a6:9b:45:b1:eb:24:28:c4:48:19:b9:5c:b7:0b:
4a:e1:60:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:03:41 2025 by rpki-client