Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft
File: of0WwkfPRm7tMaMEu48X-jIVqqo.mft (raw, json)
Hash identifier: l83f6ZdFT9T615k/KwO/Zgv//09ZTI8JxHLZEHNEaOg=
Subject key identifier: 58:B2:79:AC:AD:0A:7C:94:01:79:C9:B3:D2:90:FB:5A:DF:90:9A:37
Authority key identifier: A1:FD:16:C2:47:CF:46:6E:ED:31:A3:04:BB:8F:17:FA:32:15:AA:AA
Certificate issuer: /CN=a1fd16c247cf466eed31a304bb8f17fa3215aaaa
Certificate serial: 019A71B7BA64E9FF59EE812190CE0A989B7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/of0WwkfPRm7tMaMEu48X-jIVqqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 07:00:57 +0000
Manifest this update: Tue 11 Nov 2025 07:00:57 +0000
Manifest next update: Wed 12 Nov 2025 07:00:57 +0000
Files and hashes: 1: PIjwt9cncSl25mT3dJ9vyyH9P2g.roa (hash: AHd8tSkEey/Gb5PQrQUs/SSKNf7k6H4ql5Wspc/zuFo=)
2: of0WwkfPRm7tMaMEu48X-jIVqqo.crl (hash: oUR9MENnxB393YCAllka+3B3xzu27N9Mg8X3rz/WtR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/of0WwkfPRm7tMaMEu48X-jIVqqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:ba:64:e9:ff:59:ee:81:21:90:ce:0a:98:9b:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1fd16c247cf466eed31a304bb8f17fa3215aaaa
Validity
Not Before: Nov 11 07:00:57 2025 GMT
Not After : Nov 12 07:00:57 2025 GMT
Subject: CN=58b279acad0a7c940179c9b3d290fb5adf909a37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2d:9e:79:e3:a1:2c:e6:67:47:b3:41:01:c7:
55:97:d4:d0:6d:86:cd:e0:e3:17:5f:f0:7a:f5:a2:
bf:90:7e:6d:aa:ce:81:2a:19:21:ab:d9:32:2d:a6:
03:ad:15:4d:10:a0:3b:9e:96:c8:06:cb:08:97:0a:
87:86:6e:fc:de:16:85:38:9e:1e:1b:58:1a:11:57:
e6:68:09:30:de:75:72:4e:ab:61:13:22:40:3a:d0:
d6:19:bd:4f:55:2c:d7:fd:7b:b6:c5:d0:3e:79:7f:
e4:d2:bb:b5:b3:5d:40:5a:45:2e:73:4d:b9:78:29:
a2:5b:2d:c7:3f:05:d3:56:17:f6:e3:f7:8b:70:39:
2e:f4:98:ee:0e:97:a0:27:5a:3a:07:48:01:a6:a9:
f8:24:ae:47:c2:c7:e8:5d:a5:b8:6b:97:1f:a6:e4:
77:fd:34:77:84:85:a7:c5:26:5b:ac:96:a7:91:d5:
5e:8e:dd:6a:85:ce:14:7a:22:7a:8e:c5:87:78:41:
ef:d2:fd:7f:c1:53:df:65:b4:4c:78:42:93:87:5a:
f2:32:cb:21:22:f1:8f:64:dd:24:59:2b:f8:ab:46:
dd:a9:9c:0e:c4:6f:1d:74:79:43:13:b2:f4:08:06:
b1:89:4d:1e:c3:cf:04:24:9d:b2:ce:d1:55:f9:32:
5e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B2:79:AC:AD:0A:7C:94:01:79:C9:B3:D2:90:FB:5A:DF:90:9A:37
X509v3 Authority Key Identifier:
keyid:A1:FD:16:C2:47:CF:46:6E:ED:31:A3:04:BB:8F:17:FA:32:15:AA:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/of0WwkfPRm7tMaMEu48X-jIVqqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e3037f-338b-46f2-8f97-6cef1abab3fc/1/of0WwkfPRm7tMaMEu48X-jIVqqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:96:47:ef:8d:54:3c:de:35:83:67:64:9f:8a:53:16:21:cd:
a4:e4:09:15:2d:bf:32:30:8f:f9:84:a2:ac:00:3a:65:c3:83:
eb:b6:26:d6:5d:0b:ad:66:bb:b4:91:35:e6:83:b3:33:3c:00:
98:fc:18:2a:5a:ee:7e:ef:d9:79:73:2e:6a:37:75:f1:e7:f7:
bb:cf:39:d3:49:3b:1d:a2:94:60:e5:79:cd:f2:09:70:8b:2b:
ef:49:d5:bc:4b:c3:35:ff:ff:14:76:a7:d7:c6:82:74:f5:cf:
da:67:5a:c6:9b:8c:bb:cc:34:04:38:b5:51:89:6e:a0:b2:8a:
36:2f:78:53:d2:8e:e8:a8:60:93:17:62:8b:3f:cf:ed:a6:98:
1d:16:14:51:62:8f:b3:f8:a8:45:2e:9e:71:83:4c:38:f7:ad:
1e:bd:29:06:be:1b:ae:93:2c:4a:66:e9:31:5c:36:3a:dd:72:
ab:c9:f3:84:e8:78:5d:ca:f4:58:de:05:42:2b:a3:cb:dd:61:
91:f1:0d:79:42:37:df:78:59:03:7d:d6:15:62:be:8f:23:dd:
ad:87:f6:af:b7:93:5b:24:80:98:67:a0:23:3d:c2:85:f1:e2:
f3:a8:f1:7a:50:7a:4a:d0:8f:67:12:52:65:cb:4e:77:ad:59:
47:b9:8b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:44:21 2025 by rpki-client