Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft
File: 73imvMheyK3m7M6IDuBz1jdweWU.mft (raw, json)
Hash identifier: ckR0o2tAampd2IfrIk/SNBqHV0oPdGZqQdhfzhPc5bU=
Subject key identifier: FF:BB:8C:AA:45:69:B8:98:AC:3B:94:0C:A3:33:09:E2:94:7E:4F:C0
Authority key identifier: EF:78:A6:BC:C8:5E:C8:AD:E6:EC:CE:88:0E:E0:73:D6:37:70:79:65
Certificate issuer: /CN=ef78a6bcc85ec8ade6ecce880ee073d637707965
Certificate serial: 019A71EED4A9BDF60D7F07063147CC1A3F64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 08:01:08 +0000
Manifest this update: Tue 11 Nov 2025 08:01:08 +0000
Manifest next update: Wed 12 Nov 2025 08:01:08 +0000
Files and hashes: 1: 73imvMheyK3m7M6IDuBz1jdweWU.crl (hash: xIdnU89FKUVUVQcZ+2FcnNzZ1Ucl8u5uJBzQETVoy1w=)
2: 8ofg2JoTyb5e1GIiVqV2PdSesOU.roa (hash: z/SuBS1vMLBWp74A2t3I4/K0L71UAtSRqfDU9yXXBww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:d4:a9:bd:f6:0d:7f:07:06:31:47:cc:1a:3f:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef78a6bcc85ec8ade6ecce880ee073d637707965
Validity
Not Before: Nov 11 08:01:08 2025 GMT
Not After : Nov 12 08:01:08 2025 GMT
Subject: CN=ffbb8caa4569b898ac3b940ca33309e2947e4fc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:e5:ae:ba:e9:70:1a:6c:9a:ec:d9:cc:43:1f:
37:00:59:64:ee:a0:d3:43:c9:24:45:19:94:d9:a1:
1a:b5:73:f2:00:1d:ef:53:a3:4d:6e:17:3a:27:e4:
1b:9b:cb:37:4b:77:09:10:20:aa:b0:75:85:e8:44:
d4:40:90:b5:da:b1:e2:75:13:0b:3a:02:33:73:8e:
73:51:85:94:c2:7d:1c:86:87:fd:4c:a4:17:d7:7b:
41:eb:c1:52:ff:df:76:26:78:c6:8b:45:b4:b1:9b:
b9:46:be:c3:81:8d:ea:b3:45:b2:ff:63:90:ea:92:
4a:66:6d:3a:8c:b3:34:f8:8d:78:b1:9c:72:46:20:
46:6f:b7:43:8e:32:c4:fd:21:8e:3b:d4:67:de:d1:
d8:10:21:1e:b3:82:60:d0:67:52:b6:f5:c8:ba:3d:
03:92:3c:14:de:a8:84:53:bf:f8:83:e5:79:4b:b1:
39:ee:83:2e:56:67:0e:ac:a1:7e:cb:d3:e7:7d:ff:
36:30:13:50:69:ef:80:fd:29:4e:9a:90:ec:ec:04:
1a:a1:96:5c:e3:41:23:9f:8b:cc:fc:39:cd:8c:f1:
69:3d:a3:6f:b5:9d:70:53:a7:92:17:63:de:54:4a:
72:7b:65:dc:1c:d5:fc:62:c4:83:62:52:c2:7f:a6:
d0:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:BB:8C:AA:45:69:B8:98:AC:3B:94:0C:A3:33:09:E2:94:7E:4F:C0
X509v3 Authority Key Identifier:
keyid:EF:78:A6:BC:C8:5E:C8:AD:E6:EC:CE:88:0E:E0:73:D6:37:70:79:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:69:9d:28:75:6f:47:30:fa:25:b6:0c:9f:b9:4e:fd:76:97:
f9:9e:9d:43:8e:bb:ed:41:29:fb:3a:2c:7b:bf:bd:2e:7c:d7:
7f:4d:a5:76:a5:be:4a:bb:b9:8f:03:11:59:2d:ac:d1:39:2f:
10:1d:be:a2:ca:9d:21:0f:de:38:0f:48:c8:87:d6:ff:8d:c2:
26:26:39:5c:cd:73:1d:5d:c9:83:8c:3b:73:f2:72:8f:76:f4:
97:36:96:c6:14:b9:9e:dc:3f:ad:9c:b3:2e:1c:94:55:12:8b:
bf:2e:49:35:ab:75:05:21:cf:3e:8e:3f:b2:33:f0:29:04:c0:
c8:59:77:52:04:2a:7b:87:4b:3c:d7:9b:3c:33:0f:50:58:e3:
d2:da:23:96:6d:2a:5b:82:9b:86:75:fb:0c:82:6b:9e:e4:19:
58:3e:f7:2a:fc:12:0e:01:8e:12:6a:c4:28:ff:32:d2:98:9f:
6d:0c:b4:23:9c:29:7e:f1:57:1e:a2:cd:57:4f:4a:9a:2e:a5:
1c:16:a6:02:a9:99:77:de:bb:c2:03:0c:24:8e:71:09:d9:09:
41:90:5c:f3:11:5e:6a:8e:97:a7:81:a3:d5:d5:b5:b6:0b:b3:
43:94:e8:10:eb:06:58:fe:fe:f7:89:1f:a9:e9:c3:6d:bc:11:
98:2f:03:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:44 2025 by rpki-client