Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
File: cNvqB1PfCD5XgrufOAtdeZy3igY.mft (raw, json)
Hash identifier: MHol2zPW3wQcZD6LAOzVbu7HQsF7C+hHS/nxAWEs/xk=
Subject key identifier: 1E:DA:FA:B5:63:05:C8:12:7F:3D:6F:C4:33:9A:2D:3D:C3:F9:87:FC
Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Certificate serial: 019A1B3E7F191CDAA6E39A6DB76DF3BC1975
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
Manifest number: 1685
Signing time: Sat 25 Oct 2025 12:01:11 +0000
Manifest this update: Sat 25 Oct 2025 12:01:11 +0000
Manifest next update: Sun 26 Oct 2025 12:01:11 +0000
Files and hashes: 1: 7wYbQJjmUZJ3jrCYQep7ej1ycX8.roa (hash: gX6AQ4uDUscH9HZMwyFhtSxb+YXiJVmytGAK7BhRx4Q=)
2: cNvqB1PfCD5XgrufOAtdeZy3igY.crl (hash: H0Vgu1jA0AWzVs5TUWYj4OovN+v6XBzwrHfLhwVqaJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 08:33:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1b:3e:7f:19:1c:da:a6:e3:9a:6d:b7:6d:f3:bc:19:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Validity
Not Before: Oct 25 12:01:11 2025 GMT
Not After : Oct 26 12:01:11 2025 GMT
Subject: CN=1edafab56305c8127f3d6fc4339a2d3dc3f987fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:60:6a:30:81:4c:55:c9:5e:a1:b1:d3:90:00:
e0:60:8c:43:91:19:48:86:01:0e:a4:c8:df:34:56:
b1:95:35:5e:70:ed:6f:98:d1:0f:75:ca:44:e9:c3:
4d:87:7e:33:7d:31:b9:c1:ca:bf:43:b2:1a:15:42:
fd:25:9b:82:76:72:ba:ff:4b:58:d1:d2:38:1d:14:
01:45:f8:09:ed:83:83:08:2c:70:e4:8f:e4:9e:3a:
25:43:3c:f9:61:7f:38:46:6e:2c:79:96:a7:54:77:
66:7a:ee:c9:0e:8b:29:3e:2b:69:aa:41:f6:a6:85:
f3:4c:f6:5e:67:09:a0:d4:76:70:e6:23:a3:d7:66:
22:3b:2b:e8:e5:4e:55:91:56:ad:a4:90:f6:3f:b5:
5a:0e:3f:ba:8e:6d:54:6a:94:c7:36:8a:d9:62:52:
cb:bb:eb:98:08:63:48:6e:35:21:07:17:f8:ae:14:
99:1a:d7:3b:aa:ee:54:5f:a2:1a:9e:84:8d:9d:62:
ff:0a:62:26:0e:ab:69:28:12:7b:a0:2b:99:38:fc:
64:d4:68:e7:16:b3:eb:e0:44:af:19:d8:be:a4:14:
03:51:45:db:2d:6d:bd:e7:0e:d8:90:ff:85:22:79:
ac:cc:df:96:57:43:62:f0:96:0e:60:a3:e3:21:2a:
f1:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DA:FA:B5:63:05:C8:12:7F:3D:6F:C4:33:9A:2D:3D:C3:F9:87:FC
X509v3 Authority Key Identifier:
keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:37:63:42:fa:31:50:59:6c:64:96:54:7e:3e:eb:4a:ab:86:
f7:03:96:c4:93:f8:67:2c:f0:71:e1:74:24:09:57:47:d7:46:
b2:6f:b3:ca:0f:87:60:7d:c2:ce:2a:b8:14:94:7a:ff:b6:ec:
9b:f9:02:d2:a1:29:e8:03:fa:94:13:fa:c2:90:d8:7b:a2:a8:
92:65:97:d0:89:b5:a4:1c:82:92:da:a0:8e:71:51:1f:50:62:
e8:c4:c3:50:cf:cc:1c:c0:eb:46:bc:c9:9e:46:b8:d5:e9:6d:
07:25:c7:d7:bc:14:98:2c:22:3b:37:f4:a7:b4:ce:dd:d3:02:
7a:5c:6d:16:5c:ef:66:6f:75:20:16:bf:6e:94:a6:69:5d:d3:
8e:40:5d:ff:db:37:cd:75:4f:2a:6f:af:e3:7e:07:26:fd:95:
fe:29:59:39:88:5e:35:ae:7e:a6:91:37:e0:c5:68:c6:02:22:
1a:bb:32:9e:86:c9:94:f9:ad:47:d1:ef:ea:13:71:9b:34:33:
3a:5d:61:19:f0:8f:31:26:92:ff:e4:f8:eb:4c:04:69:66:d4:
90:3d:0a:1a:33:57:3e:15:82:69:27:bd:92:ab:93:44:3d:fa:
3b:4e:7a:b7:a2:80:08:00:b1:95:ec:6b:53:94:8b:02:9b:ae:
0d:9c:f9:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 13:36:01 2025 by rpki-client