Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.mft
File: Wddq-QkdoVgbul7BPl29tzYtnQ8.mft (raw, json)
Hash identifier: oN+bfBvUUEWWNkixx9zSyMmH0xrBxD/FovEjguV2HP4=
Subject key identifier: 22:5A:D6:CD:1D:E1:92:43:F7:C1:97:50:CF:E8:B7:08:3A:01:CC:73
Authority key identifier: 59:D7:6A:F9:09:1D:A1:58:1B:BA:5E:C1:3E:5D:BD:B7:36:2D:9D:0F
Certificate issuer: /CN=59d76af9091da1581bba5ec13e5dbdb7362d9d0f
Certificate serial: 019A7225CC915316067EB536BD80AA023936
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wddq-QkdoVgbul7BPl29tzYtnQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.mft
Manifest number: 11AC
Signing time: Tue 11 Nov 2025 09:01:10 +0000
Manifest this update: Tue 11 Nov 2025 09:01:10 +0000
Manifest next update: Wed 12 Nov 2025 09:01:10 +0000
Files and hashes: 1: Wddq-QkdoVgbul7BPl29tzYtnQ8.crl (hash: ocXDghJJ05JwBFfvdoLUKNsT5VVyPniXDeSg65sIovc=)
2: WxX1Hu2E5PBSUGmsXjK9hC9MNwk.roa (hash: yTqA3ZGTODQnxMnTADEBGt1VqhX3aMRxsME8/St0wzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wddq-QkdoVgbul7BPl29tzYtnQ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:cc:91:53:16:06:7e:b5:36:bd:80:aa:02:39:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59d76af9091da1581bba5ec13e5dbdb7362d9d0f
Validity
Not Before: Nov 11 09:01:10 2025 GMT
Not After : Nov 12 09:01:10 2025 GMT
Subject: CN=225ad6cd1de19243f7c19750cfe8b7083a01cc73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:18:85:d8:21:98:30:8b:20:2f:4c:5e:81:8c:
1e:24:56:4e:06:ff:6f:ee:48:da:40:77:78:ac:e3:
cc:e2:07:24:bc:41:c7:5f:e8:c6:01:83:bf:5f:bb:
d5:85:e3:c7:e1:62:91:60:f8:f9:0f:f7:90:4b:2a:
46:25:9b:09:49:8a:06:75:53:e9:f8:f6:cc:4c:64:
7a:e4:eb:74:36:bc:5e:98:07:a0:dd:f5:a3:80:1c:
42:c6:e9:20:7e:e1:6c:bc:52:31:07:a9:8b:46:33:
f5:1b:38:3a:80:d1:d6:ea:4e:c2:7c:29:04:bf:fe:
7a:08:58:bf:e6:b0:78:cc:c0:9d:46:bf:92:a5:f5:
7e:72:79:aa:d4:92:52:5c:be:23:f3:3a:b3:cf:28:
6c:32:8f:89:45:9c:0d:50:07:2c:b4:ff:06:54:49:
6b:e3:b1:ab:2a:b0:03:a0:c6:0f:44:96:51:52:d9:
ab:cc:6c:41:17:19:7e:9c:98:61:b6:c7:c6:d9:5a:
fa:f6:5d:1e:8b:9d:5a:69:72:bf:8c:a8:38:40:b6:
95:41:98:e1:be:93:ff:52:38:b1:ac:dd:c3:5d:5a:
5a:e7:52:bb:91:26:da:47:95:8e:cb:6b:26:53:de:
f2:fe:44:e5:9d:8a:4d:a2:9d:7e:1e:ac:a5:33:55:
b8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:5A:D6:CD:1D:E1:92:43:F7:C1:97:50:CF:E8:B7:08:3A:01:CC:73
X509v3 Authority Key Identifier:
keyid:59:D7:6A:F9:09:1D:A1:58:1B:BA:5E:C1:3E:5D:BD:B7:36:2D:9D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wddq-QkdoVgbul7BPl29tzYtnQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:60:10:8c:30:2f:0c:53:7e:0c:59:e7:45:f3:ca:3c:72:9f:
50:dc:6e:b9:a5:60:e5:2b:0b:31:71:34:1a:b3:76:18:40:ff:
f3:f8:e0:ec:0d:b1:b7:56:e1:c0:3c:79:b6:11:f3:d8:41:c1:
1a:f4:25:16:33:4e:7a:f4:7f:1b:b4:a7:6e:7c:8e:8a:f0:06:
60:3f:4a:1e:90:2c:7a:56:be:dd:0e:e5:91:d1:f1:42:6f:7f:
1f:e0:3b:07:3f:88:7b:ce:88:fd:e4:35:0b:0a:f6:d5:4c:f1:
2d:bb:8b:f1:35:57:d3:ef:21:8e:a5:d2:e0:cd:00:a8:75:f7:
0b:bf:1d:0f:89:a8:76:73:eb:ba:4d:f7:29:46:fe:d5:53:da:
30:22:8b:65:6d:71:d9:e8:4d:15:be:0d:86:e6:6e:64:10:5f:
f5:2b:ee:86:bb:12:82:6f:36:fc:ea:ea:43:cf:c9:dd:f7:4a:
c4:d3:8f:a8:f8:43:1e:9c:9f:87:ea:1a:0d:b7:49:b5:78:1a:
07:a4:a6:c3:65:ff:28:91:a6:a5:6b:c5:e4:dc:e0:6f:18:76:
f7:23:1b:18:f5:f8:c0:45:4d:ee:a2:b5:d2:0a:0c:c0:0c:aa:
24:d2:26:3c:0e:cb:2d:81:4f:23:d6:64:ed:c7:bb:80:d8:0e:
5a:4b:73:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:00:27 2025 by rpki-client