Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
File: CNXrapaGTfosUbLiVsUYCrkiKc0.mft (raw, json)
Hash identifier: 6EqHkWvoPYck2Y9ps4TM74W/ZbYZHKs20Fc806uo+68=
Subject key identifier: E6:51:DA:84:F3:47:1B:F0:4D:B2:86:D6:8E:33:4C:24:1F:80:6B:44
Authority key identifier: 08:D5:EB:6A:96:86:4D:FA:2C:51:B2:E2:56:C5:18:0A:B9:22:29:CD
Certificate issuer: /CN=08d5eb6a96864dfa2c51b2e256c5180ab92229cd
Certificate serial: 019A1F1A94CBA5AB9D57C4712CCC1D1C1A00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
Manifest number: 03E9
Signing time: Sun 26 Oct 2025 06:00:26 +0000
Manifest this update: Sun 26 Oct 2025 06:00:26 +0000
Manifest next update: Mon 27 Oct 2025 06:00:26 +0000
Files and hashes: 1: 0m-9m5OFcPf8OuDYL2FUGvph8_g.roa (hash: dOT7ZXgrSZ8DnL/LTBhNtapy6nZ67rmfPX5nGpKKR4k=)
2: CNXrapaGTfosUbLiVsUYCrkiKc0.crl (hash: rB/baaEB2Td1zXc0YjomK8AzuDlYNM3lQgaH7OeceT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 05:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:1a:94:cb:a5:ab:9d:57:c4:71:2c:cc:1d:1c:1a:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d5eb6a96864dfa2c51b2e256c5180ab92229cd
Validity
Not Before: Oct 26 06:00:26 2025 GMT
Not After : Oct 27 06:00:26 2025 GMT
Subject: CN=e651da84f3471bf04db286d68e334c241f806b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:20:9d:1f:99:f5:a2:7c:04:cd:27:bb:de:a3:
91:c6:8e:b9:1a:d6:ba:19:53:5d:1b:10:6f:d1:a2:
f8:e2:42:de:47:7b:45:74:7c:b0:40:fd:7e:a4:1f:
b6:e1:2f:c3:34:ee:cd:14:c6:89:25:ed:fb:19:d1:
b5:79:2b:c3:b1:b5:73:a7:4e:0e:2a:06:b7:aa:c8:
4f:b8:a8:76:97:98:53:b7:72:6c:ee:87:50:76:ca:
f1:66:7f:ef:3a:b1:12:28:09:08:49:10:5a:fc:29:
24:db:14:a5:f4:a7:1b:61:5d:2d:20:c4:33:3e:09:
db:1d:aa:ce:8a:aa:01:ef:ec:88:ae:7d:5e:86:5d:
cc:d6:a4:d0:f7:61:38:69:54:87:55:73:90:e1:39:
a2:5c:e9:54:a4:ba:1c:4b:03:14:32:fd:73:0f:09:
07:14:e1:e0:14:71:71:a6:e3:8b:84:7a:6f:5b:8d:
83:9b:9d:a1:6f:5e:96:91:86:64:83:49:f4:79:94:
05:e8:94:3c:8a:ea:3e:a7:86:51:54:64:3d:1a:fe:
6d:3a:3c:fa:06:21:35:e3:1f:a9:f8:89:c7:85:07:
92:f6:b0:59:76:b0:44:71:b6:18:54:84:62:72:57:
58:90:d8:1c:c0:ca:32:76:dc:95:0b:f8:a1:0b:21:
a5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:51:DA:84:F3:47:1B:F0:4D:B2:86:D6:8E:33:4C:24:1F:80:6B:44
X509v3 Authority Key Identifier:
keyid:08:D5:EB:6A:96:86:4D:FA:2C:51:B2:E2:56:C5:18:0A:B9:22:29:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNXrapaGTfosUbLiVsUYCrkiKc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4a58bc-2403-4144-bb5e-bb6829360cee/1/CNXrapaGTfosUbLiVsUYCrkiKc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:92:f2:db:ef:17:b6:2f:bd:d8:7b:49:2c:4f:8d:10:bd:67:
3c:65:e8:dc:ca:1a:52:e3:32:35:6f:fa:6e:be:e6:cd:22:48:
7e:3f:70:f0:ee:78:93:87:ba:f3:0a:e7:bf:10:0b:df:a2:03:
30:99:fa:9c:48:03:fb:1b:81:12:d8:67:29:82:17:9e:c9:6a:
fa:e8:4f:3c:01:f5:c6:5c:9f:68:fc:1c:d4:64:f9:30:60:60:
3d:00:0d:57:48:21:16:9c:0e:a2:b4:32:1d:45:71:cd:39:7c:
da:2e:66:c7:1b:b2:33:d9:19:26:01:19:67:f3:4b:16:a7:ce:
14:76:ca:41:dc:4a:78:d0:fe:7c:b3:a2:50:4f:d4:01:26:97:
10:e3:03:1b:01:e7:8c:6f:46:d6:ea:cd:e2:70:b1:93:d4:8a:
8b:bc:1c:59:65:2a:69:d4:d8:de:06:1b:e8:67:aa:df:ea:5a:
a2:5a:73:0c:c6:7b:b9:10:6d:a8:b2:7e:ca:41:9c:4e:59:fe:
49:aa:cd:1f:55:87:d1:c2:38:a3:9f:34:e6:44:d4:d7:9f:85:
e3:41:d9:aa:af:66:71:18:da:8a:98:06:b1:6b:ed:56:d4:02:
fa:48:b3:41:4a:ed:06:17:46:85:c8:77:18:f4:2e:2e:1f:eb:
51:ab:7c:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 14:07:11 2025 by rpki-client