Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json)
Hash identifier: z+/waw36xLzjmfhrx0Bw85IkBWWpKtwrDEDMIy78UuQ=
Subject key identifier: 3F:7F:2A:12:16:E1:9F:07:51:05:09:45:7F:69:B1:87:A4:EA:85:05
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 019A424B82E6129AC4FA5CBF29AC48D1F2C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
Manifest number: 169A
Signing time: Sun 02 Nov 2025 02:00:36 +0000
Manifest this update: Sun 02 Nov 2025 02:00:36 +0000
Manifest next update: Mon 03 Nov 2025 02:00:36 +0000
Files and hashes: 1: 2t0GWwoe7mmFS83bQQPX5JNcD34.roa (hash: hxRzouLeq4ys7uUoj+7mRAVC8MeKAFWBUYqAcz4n5d0=)
2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: Kx4XtKnJgifqP1O28xf/+XyZ/C3TK5oyNxEPPxytYtI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Nov 2025 21:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:42:4b:82:e6:12:9a:c4:fa:5c:bf:29:ac:48:d1:f2:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: Nov 2 02:00:36 2025 GMT
Not After : Nov 3 02:00:36 2025 GMT
Subject: CN=3f7f2a1216e19f07510509457f69b187a4ea8505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:83:b6:ea:ff:5e:44:f6:c4:4f:a4:8b:04:02:
a0:bd:7e:73:60:7e:c2:7b:d2:b8:c7:8c:44:1c:3d:
00:82:43:58:04:b4:26:06:10:fe:ff:9d:84:d0:f0:
20:9a:91:4e:53:97:f0:4c:81:16:ee:0e:9d:2b:af:
93:bd:67:17:0d:71:0f:97:e7:4a:25:39:24:5c:59:
45:5e:06:ec:bd:89:92:d5:03:c1:f1:1c:99:0e:63:
b1:aa:35:4a:ec:96:02:f9:fd:42:09:b2:0e:e6:de:
12:de:17:4c:49:22:99:a0:53:f4:be:ee:90:97:1a:
46:71:bd:a2:74:17:8d:86:60:f5:eb:ef:19:54:a1:
be:2f:bc:bf:83:c1:ca:0c:10:56:fa:69:09:cf:bd:
db:c7:0a:a5:fc:5e:d0:3e:9e:22:3e:3b:4a:fa:5a:
a9:75:c6:d6:45:55:97:4b:86:10:98:ae:db:36:3c:
2d:f0:fb:d2:8e:f6:db:ef:53:12:66:6d:fd:07:1d:
b8:6d:ce:e8:63:1e:6e:0c:37:4f:1f:4d:b9:46:1c:
e4:69:5b:08:cd:04:64:2a:70:7c:c3:e2:c8:67:ae:
9b:ed:52:92:d4:95:af:ca:e3:c9:e8:9d:61:f8:5c:
b3:bf:f4:ef:eb:81:2f:09:50:0d:6e:5b:87:f6:95:
c9:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:7F:2A:12:16:E1:9F:07:51:05:09:45:7F:69:B1:87:A4:EA:85:05
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:ef:7b:04:98:be:f5:8f:12:24:3c:f4:f2:e6:a8:96:10:0a:
8c:74:3e:c4:b9:61:02:1d:8d:c8:0d:97:5e:af:f8:3b:45:4b:
02:5a:c5:a5:a3:a8:6e:57:42:bf:2d:63:11:5a:f9:99:42:c8:
4f:ad:49:22:e1:a3:d7:11:73:f0:05:54:f5:a1:e7:ad:b3:ec:
96:61:89:18:48:43:47:7e:0d:3b:16:d4:85:33:76:ac:4a:da:
78:40:c3:a5:fe:34:ab:33:b8:7d:d6:fd:53:8f:8f:15:fe:88:
ad:5e:89:69:aa:6d:ef:0a:ea:a2:13:46:fa:08:52:59:fa:12:
a9:5c:84:85:53:14:5e:df:51:b2:61:a5:17:89:f4:92:13:85:
11:b5:e8:ff:0c:8c:d9:ab:06:18:de:a5:02:ec:ac:9a:98:2d:
d9:35:fb:2e:13:a7:2c:71:af:a5:c5:72:85:8b:a7:64:3d:0c:
6c:99:4c:0d:17:0c:57:90:5b:0e:75:83:a6:1b:e6:59:e1:f5:
e7:77:94:26:fe:63:bd:41:99:dd:ce:97:95:0b:34:88:7d:57:
52:43:1b:c9:72:f5:c6:dd:38:cf:09:2a:46:e2:97:42:f5:d0:
73:4b:9e:e4:3d:31:c1:dd:92:6e:80:55:c3:71:45:4e:ae:a4:
0b:81:8d:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 2 05:52:46 2025 by rpki-client