Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft
File: loH8jHM3xqHSC4SADfhion5f29c.mft (raw, json)
Hash identifier: 1nJfHxH5P6SQMsEZmfN13/1BMFyg+j58LBQMxuxn5/s=
Subject key identifier: C1:DF:C5:D9:54:70:A3:D0:F7:A9:F6:35:8A:B0:87:F9:6B:4C:80:5E
Authority key identifier: 96:81:FC:8C:73:37:C6:A1:D2:0B:84:80:0D:F8:62:A2:7E:5F:DB:D7
Certificate issuer: /CN=9681fc8c7337c6a1d20b84800df862a27e5fdbd7
Certificate serial: 019A27E706544F69B613BD204D5CB705F3F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/loH8jHM3xqHSC4SADfhion5f29c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft
Manifest number: 019A
Signing time: Mon 27 Oct 2025 23:00:43 +0000
Manifest this update: Mon 27 Oct 2025 23:00:43 +0000
Manifest next update: Tue 28 Oct 2025 23:00:43 +0000
Files and hashes: 1: F7JL5bHYyLaweW8pONIwm4V1Ta8.roa (hash: 9Al0+nQsmlduPmazSDY0bBkTJLPuHl1nJV+djdoKlfw=)
2: aOIjfYULj8ZZW-4gX-UQwdrDQ9U.roa (hash: 0raPVOn63vL6rgNpBZdFkEjdsenkXzmQ/PYsO0nF2sE=)
3: loH8jHM3xqHSC4SADfhion5f29c.crl (hash: zzqCBXMLAK/4QCMYZUGIaHvzeDENCfjQgaq0YTilmHA=)
4: qxk1xepxwGG51OB8xsnLC_37Uaw.roa (hash: ypZE1fVxTf8ts+4DLxa1x+J1+KV7fqtGzn+ax6Dq94A=)
5: w1BzHYlYCb3EG4ztspZKX_15RAY.roa (hash: ASsa3u4RFIDCrpyjiaJAOUJvMGU5bhKQs1/vB/xTB6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft
rsync://rpki.ripe.net/repository/DEFAULT/loH8jHM3xqHSC4SADfhion5f29c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 23:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:e7:06:54:4f:69:b6:13:bd:20:4d:5c:b7:05:f3:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9681fc8c7337c6a1d20b84800df862a27e5fdbd7
Validity
Not Before: Oct 27 23:00:43 2025 GMT
Not After : Oct 28 23:00:43 2025 GMT
Subject: CN=c1dfc5d95470a3d0f7a9f6358ab087f96b4c805e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:88:4d:4c:bb:d3:61:25:1d:76:ea:3e:1a:fb:
60:c6:2e:d7:f8:c7:1f:81:6e:c3:56:dd:de:4f:90:
d2:a5:25:7c:20:9c:8e:ff:62:83:36:1b:ab:80:7d:
29:36:c0:3b:2f:47:c8:ef:d4:64:38:b3:ec:4b:66:
cc:37:73:b5:55:51:71:86:81:1d:fe:27:25:25:3e:
02:db:10:5d:60:ae:57:5a:8b:f6:b3:fa:18:1b:4d:
2c:58:9c:67:7c:89:d8:3a:b4:8b:24:84:4e:0b:08:
eb:25:89:d0:73:5c:b2:cc:dd:34:26:ee:fc:f1:72:
e6:ce:a7:2f:dd:60:be:50:24:3c:41:56:28:f2:fa:
ec:72:13:54:b3:4b:e0:29:ef:49:2b:6e:cc:76:ae:
f0:db:12:76:65:c6:80:50:bc:6b:69:42:f9:94:0f:
55:44:0c:cf:0b:5b:3c:50:41:d9:9a:79:9d:d4:58:
09:c5:30:3b:96:f2:29:fc:e7:01:07:db:22:3a:2a:
c5:b1:11:a9:7d:3c:ae:38:82:b0:e4:64:5e:6b:17:
db:20:ca:1c:8b:e4:af:c6:ae:d5:9b:c3:70:b3:16:
8d:5c:2c:a4:ea:78:39:14:da:ed:b4:8b:f5:e8:84:
63:96:a2:53:89:6a:ea:3c:98:cf:9e:a0:80:8b:c8:
74:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:DF:C5:D9:54:70:A3:D0:F7:A9:F6:35:8A:B0:87:F9:6B:4C:80:5E
X509v3 Authority Key Identifier:
keyid:96:81:FC:8C:73:37:C6:A1:D2:0B:84:80:0D:F8:62:A2:7E:5F:DB:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/loH8jHM3xqHSC4SADfhion5f29c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:22:d4:66:eb:e2:48:f2:de:2c:3d:24:d3:5f:1e:8c:3b:5f:
75:13:1a:1d:46:60:b4:3b:2c:69:75:28:25:86:d1:d8:b6:95:
91:13:f6:eb:0b:79:9c:7e:21:ac:8a:21:c9:b9:d9:a4:c1:a4:
b8:17:7f:59:4b:66:92:6e:e4:31:4c:3b:6e:51:02:ed:51:19:
48:4e:96:ec:2a:99:34:13:6f:0e:cd:92:3f:26:26:cb:73:c2:
3a:b5:05:6f:78:9f:79:29:7c:cc:c2:2d:dc:4f:70:f1:9f:42:
b9:a7:8a:91:54:1f:dd:78:71:78:ab:1f:89:64:9c:0e:77:b7:
f4:22:18:fd:af:07:1a:6d:55:65:11:33:7f:8c:1d:f2:e7:25:
92:0d:0e:22:37:c7:c6:a8:6e:c6:58:3b:fb:a8:58:04:8d:ff:
80:d6:69:35:b6:84:fb:e0:0b:f0:2a:31:03:d9:35:50:b4:07:
a5:a0:ed:1a:f9:a5:aa:81:ce:42:3b:23:36:94:5d:49:87:5d:
bd:47:e5:9c:c5:db:41:d1:c1:d4:8a:af:02:81:0f:ef:e0:ff:
be:31:ab:c3:3a:24:f7:e9:b8:45:1d:97:c6:c7:90:1f:f6:c1:
87:cf:b5:93:af:57:83:c7:35:43:88:92:7d:10:6d:3f:07:a5:
81:f5:52:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 09:22:04 2025 by rpki-client