Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
File: rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft (raw, json)
Hash identifier: wQMmqyBS9607sxqc3Bxblu4f5bEu5CMjMovDdwnZiVE=
Subject key identifier: E2:E3:C2:F9:19:55:B6:CB:83:A6:91:8D:62:50:F0:B2:9F:01:BC:A5
Authority key identifier: AC:FB:BC:A8:52:B9:57:38:59:09:F6:BD:28:8C:DF:36:3F:21:8B:06
Certificate issuer: /CN=acfbbca852b957385909f6bd288cdf363f218b06
Certificate serial: 019A7112B1E5CA5DE7659474BB3CFDA8FFF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
Manifest number: 13F4
Signing time: Tue 11 Nov 2025 04:00:41 +0000
Manifest this update: Tue 11 Nov 2025 04:00:41 +0000
Manifest next update: Wed 12 Nov 2025 04:00:41 +0000
Files and hashes: 1: IsJ0c25oEMcq2hs62WVn3JnR5kc.roa (hash: FVZnWTpWqx/hdTsogFHC4HE54Isaap3vLQprMcgXpZE=)
2: rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl (hash: SezeziowcyCj3hg2U9wJpMo3tN5nVtnTfd9YLXhifW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:b1:e5:ca:5d:e7:65:94:74:bb:3c:fd:a8:ff:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acfbbca852b957385909f6bd288cdf363f218b06
Validity
Not Before: Nov 11 04:00:41 2025 GMT
Not After : Nov 12 04:00:41 2025 GMT
Subject: CN=e2e3c2f91955b6cb83a6918d6250f0b29f01bca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3f:b1:21:c9:4d:b8:97:88:48:c7:f6:82:dc:
c2:e7:53:2f:ce:16:a6:8e:25:19:bf:53:ed:31:da:
c4:99:0c:40:14:b8:65:89:94:12:9e:a0:7a:22:79:
71:c0:38:5c:17:8e:47:0a:a7:4a:5c:b2:92:33:33:
93:2c:96:c6:de:21:34:0d:66:05:af:bb:f6:27:76:
f6:63:36:b0:d5:bf:99:b1:13:b4:05:1f:81:85:ae:
6d:45:ef:fd:47:37:43:58:67:a2:33:8c:48:52:ea:
63:82:45:f4:54:82:78:ea:e4:0d:76:d4:18:04:32:
2c:61:df:e2:34:fb:47:e6:d3:06:1c:27:bb:c6:20:
1a:ca:90:bb:07:5a:56:f3:69:29:01:8b:b8:a0:aa:
75:ee:90:1b:ff:b9:7c:5c:e3:15:92:f5:2a:ad:ac:
04:8a:80:94:90:03:c4:42:9f:a6:89:99:70:64:4d:
78:04:d0:45:ff:df:03:96:47:7a:46:53:59:fe:5e:
06:57:b6:82:5a:c7:b4:ab:8a:ca:09:20:d9:a7:c2:
30:b9:41:41:e1:08:38:37:2a:98:27:25:0b:c8:9f:
e8:ad:5b:3e:47:8a:a9:65:4b:26:72:b1:3c:f1:28:
45:3e:80:85:e9:6d:79:4c:bf:81:51:9e:62:61:ec:
e5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E3:C2:F9:19:55:B6:CB:83:A6:91:8D:62:50:F0:B2:9F:01:BC:A5
X509v3 Authority Key Identifier:
keyid:AC:FB:BC:A8:52:B9:57:38:59:09:F6:BD:28:8C:DF:36:3F:21:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:a7:dd:68:93:eb:6f:9a:ed:94:5b:31:fa:53:6c:bd:e2:46:
4d:e2:de:67:dd:64:6f:29:3a:b4:4f:49:ff:89:4d:f9:19:1f:
f3:53:40:c5:45:1c:2e:44:37:46:16:8d:a6:4d:25:3e:a7:db:
e9:27:43:64:ac:c6:1e:b7:7a:54:4c:9d:ae:0e:23:f9:f3:4e:
72:c1:d5:33:cc:22:41:82:6a:45:e1:fd:55:9b:2f:a9:2f:e1:
2b:8e:65:2f:3c:15:9a:08:c6:6b:01:ef:33:8f:cd:c8:16:ad:
7c:e4:0c:46:60:c1:50:6b:07:b4:fd:95:c9:d7:56:4e:ae:67:
c4:94:0e:6c:7c:de:06:b2:10:67:3d:fa:47:0b:c2:a5:c7:67:
b7:ff:0b:59:a9:36:93:d6:24:1e:8e:85:96:7e:77:a4:6d:ed:
eb:a4:1e:75:d1:d5:b2:b4:3a:9e:37:ca:8a:99:d4:1a:76:13:
69:f1:0c:2c:c4:3f:84:c9:4a:ad:31:0d:d5:84:4a:e0:eb:61:
85:a1:97:51:f0:70:10:ba:bd:84:e7:27:a3:2e:73:5b:e7:30:
00:7d:35:b2:9a:b9:7a:b2:ac:e4:da:41:02:bb:79:56:b0:8e:
21:c3:d2:3e:b8:1d:04:9c:01:42:39:09:36:b5:11:dc:4d:f2:
a9:59:c8:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:00:27 2025 by rpki-client