Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
File: cG_6qbf85AgnGBpaoKzumaRmkVY.mft (raw, json)
Hash identifier: aVsyDcCChafnNngWM8uSP3H9sOV1j7APrWZPrWiu1b4=
Subject key identifier: E0:ED:32:98:9F:F9:9F:41:0E:81:99:BF:DC:7D:56:9D:41:E1:C4:56
Authority key identifier: 70:6F:FA:A9:B7:FC:E4:08:27:18:1A:5A:A0:AC:EE:99:A4:66:91:56
Certificate issuer: /CN=706ffaa9b7fce40827181a5aa0acee99a4669156
Certificate serial: 019A7226717C0393A960B3645D56D93A738F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
Manifest number: 0C63
Signing time: Tue 11 Nov 2025 09:01:53 +0000
Manifest this update: Tue 11 Nov 2025 09:01:53 +0000
Manifest next update: Wed 12 Nov 2025 09:01:53 +0000
Files and hashes: 1: cG_6qbf85AgnGBpaoKzumaRmkVY.crl (hash: d/fi05WXDmM2x7+Ot5Pts4QMvO9qBlzzIUQ5tAajQoU=)
2: wHLema0UGStCVJFXioCOp9yM9Yk.roa (hash: 9o2chTlhKcvV8PSsEOhRoW59X68c/vtOe1+mp0bUcck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:71:7c:03:93:a9:60:b3:64:5d:56:d9:3a:73:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706ffaa9b7fce40827181a5aa0acee99a4669156
Validity
Not Before: Nov 11 09:01:53 2025 GMT
Not After : Nov 12 09:01:53 2025 GMT
Subject: CN=e0ed32989ff99f410e8199bfdc7d569d41e1c456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f1:02:d3:3b:42:aa:8c:92:ba:11:17:e6:13:
db:56:4c:7c:ef:bf:f9:03:3b:ef:44:61:de:7e:71:
33:2f:b8:d7:30:bb:f9:dc:ea:7b:be:23:00:07:20:
3f:02:aa:71:f3:3d:94:de:33:3d:97:16:1c:61:96:
6a:51:9b:2f:42:3d:92:04:03:0e:e5:fd:b2:a8:c9:
65:56:5d:ef:44:13:44:b7:d7:35:09:b6:01:f0:d1:
f9:68:1e:c4:57:dc:55:9f:7a:7d:50:fb:a9:b3:64:
b3:bf:af:65:e9:ff:5c:c9:0e:15:93:82:87:87:71:
49:06:7e:cd:c9:b1:3b:1a:04:0a:a9:61:8c:78:a4:
0f:aa:88:86:df:55:4d:73:41:4d:6e:1a:3b:bf:38:
d8:4e:62:f8:d1:9e:c6:fe:e9:07:0c:ad:2d:b5:86:
60:3f:15:61:87:d2:21:b5:5b:d3:15:e8:73:ba:fb:
ee:07:9c:38:69:95:cf:66:ef:3c:f7:ca:44:55:7e:
12:36:04:1d:d0:f1:d3:04:ba:53:c0:5c:18:fe:57:
0b:b1:d4:49:17:6f:ad:8e:7d:48:53:90:3f:cc:c0:
5e:7d:68:f0:88:73:81:20:88:1f:98:a9:4b:85:2e:
35:24:a1:da:be:3e:46:3e:eb:1f:bc:87:06:ba:93:
ab:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:ED:32:98:9F:F9:9F:41:0E:81:99:BF:DC:7D:56:9D:41:E1:C4:56
X509v3 Authority Key Identifier:
keyid:70:6F:FA:A9:B7:FC:E4:08:27:18:1A:5A:A0:AC:EE:99:A4:66:91:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:5e:bd:a9:40:68:9f:84:a9:e6:12:e4:ac:1c:7f:53:b9:df:
ca:18:90:a9:79:ae:26:27:6c:0b:ad:fd:5c:db:46:db:95:e2:
20:7c:c9:6a:7c:d7:2a:e0:3d:7c:21:a7:dd:6b:4b:31:6e:55:
c5:7f:0c:3c:b9:5a:37:b1:de:2c:a6:15:ad:1e:ae:84:09:38:
a6:0a:21:00:76:fc:b8:88:da:2e:92:de:2d:f2:68:7d:d5:e9:
4f:19:cf:d7:70:35:4e:88:3f:88:81:cc:a3:20:61:64:53:11:
e9:a1:42:5d:55:7a:02:8d:83:4b:e7:b0:aa:b4:bd:65:ce:3e:
26:06:9f:0b:89:ec:4c:43:55:15:4b:36:07:db:4a:ad:a9:57:
db:6a:ed:4c:4a:67:3d:a8:0a:93:c6:c0:bd:da:5f:0d:56:0e:
77:81:c1:06:6b:06:bd:86:2f:9a:1a:93:26:f5:dc:5b:a0:58:
df:c0:1c:26:60:fc:d5:4b:6d:9d:bb:75:ee:49:39:26:70:7f:
d2:ad:d9:21:ec:ee:53:3e:13:22:14:2c:d5:f2:04:9e:cc:06:
4f:9b:d8:4a:1d:dd:f9:17:90:a3:93:0f:2e:e5:50:84:83:c1:
b0:c8:86:85:99:88:b5:60:13:51:87:65:bc:4f:6d:18:d1:da:
f3:d7:90:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:01:38 2025 by rpki-client