Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
File: R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft (raw, json)
Hash identifier: 9lDmRD5ND/dtsCQIn3AvlU3st20ZA5m68HL8uuWXxxk=
Subject key identifier: DA:09:14:EF:81:E3:73:B7:D0:0A:24:C4:90:A8:3B:9B:78:8E:28:33
Authority key identifier: 47:E5:D3:33:DA:D9:D6:2D:53:28:D1:25:78:A3:1D:EF:42:AF:8F:34
Certificate issuer: /CN=47e5d333dad9d62d5328d12578a31def42af8f34
Certificate serial: 019A71B907A975CD66ED382B5754FE8EC394
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-XTM9rZ1i1TKNEleKMd70KvjzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
Manifest number: 099F
Signing time: Tue 11 Nov 2025 07:02:22 +0000
Manifest this update: Tue 11 Nov 2025 07:02:22 +0000
Manifest next update: Wed 12 Nov 2025 07:02:22 +0000
Files and hashes: 1: I_0zk_rD0Gdq5jU6WeRSly4SVcs.roa (hash: JHLttM3n9KjjQEXLZtpKJI1GYGGri8Vj45nM2EhgE4A=)
2: R-XTM9rZ1i1TKNEleKMd70KvjzQ.crl (hash: 9kJ4NE0Zf7AfAqNLPEooc/aPLiyfM6BENPtAb1Xwpi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/R-XTM9rZ1i1TKNEleKMd70KvjzQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:07:a9:75:cd:66:ed:38:2b:57:54:fe:8e:c3:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e5d333dad9d62d5328d12578a31def42af8f34
Validity
Not Before: Nov 11 07:02:22 2025 GMT
Not After : Nov 12 07:02:22 2025 GMT
Subject: CN=da0914ef81e373b7d00a24c490a83b9b788e2833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2c:93:a2:20:ef:5e:28:32:23:38:f5:f8:60:
10:f8:00:8c:88:2b:8d:f6:cd:2e:3f:3f:77:63:b5:
6f:f1:a8:34:17:42:91:fb:83:f6:c7:aa:b5:ff:aa:
37:c4:5f:66:b8:d7:3a:b2:84:3b:e3:cd:fc:4d:1d:
bb:52:75:20:b8:40:10:72:3e:43:7c:52:4c:58:95:
b2:e2:d5:b7:23:eb:f0:76:b4:e8:62:a7:de:70:8d:
5a:f7:21:ad:d5:5f:96:81:90:56:35:32:87:d6:e6:
ba:28:72:8d:67:34:f0:b3:4e:d9:68:60:3b:ac:e2:
58:6d:c4:fa:1d:3b:6c:19:b2:53:15:83:57:c2:4d:
02:b5:07:ac:65:47:e3:81:cd:b1:f4:33:80:a4:74:
49:39:a0:fd:d4:7a:f9:4f:63:ca:e0:2f:2e:ad:96:
fe:bf:ae:28:95:4d:3f:6b:12:cb:2a:69:af:4b:21:
17:ac:94:1f:48:69:fc:c0:74:7a:6f:83:5c:29:2e:
a0:4e:a3:1f:53:3d:f4:f0:cd:fa:12:f7:94:70:e7:
4d:d9:e7:e3:38:f5:66:d4:82:bc:31:08:53:3f:a8:
6c:1b:e0:17:b0:ea:02:52:9c:6c:ca:7e:f7:49:e7:
c6:58:06:f2:91:63:51:65:c0:4a:8b:74:74:ab:ae:
58:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:09:14:EF:81:E3:73:B7:D0:0A:24:C4:90:A8:3B:9B:78:8E:28:33
X509v3 Authority Key Identifier:
keyid:47:E5:D3:33:DA:D9:D6:2D:53:28:D1:25:78:A3:1D:EF:42:AF:8F:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-XTM9rZ1i1TKNEleKMd70KvjzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:bd:bf:ba:6a:55:25:9f:24:a7:11:1b:b2:c0:df:f3:ab:7e:
be:58:f5:56:a1:bf:f4:83:05:ad:82:a5:16:fb:10:32:45:20:
6c:f8:d6:9d:82:bc:6e:78:b9:9f:e0:9d:40:5b:31:95:92:4f:
74:e7:89:66:0a:a6:3f:69:3b:c9:46:5c:18:9d:7e:3e:50:54:
3a:46:1a:38:b7:28:6e:ed:ae:67:3b:08:a7:19:50:a8:cb:35:
a2:8e:76:1e:99:ce:51:d8:77:2f:e1:68:e8:8e:6e:81:49:c9:
39:56:88:c5:26:f1:d7:9f:2e:29:6d:f1:5a:ad:6d:30:df:26:
fa:db:f5:2c:ac:cb:b6:ad:56:da:72:a3:93:e9:01:fa:94:7c:
74:f9:e4:db:c6:b8:32:37:be:cb:3a:65:42:5c:1a:cf:0e:c2:
c2:75:c2:22:05:7d:e3:91:fc:f4:b3:7d:29:5d:f7:3a:20:fa:
a4:3a:a9:45:cb:84:f8:8f:3a:42:ee:e5:ce:ad:ba:9b:b4:ae:
bf:50:41:45:e1:d8:e5:ad:b0:ec:88:98:21:0d:e8:e3:d2:49:
61:b4:d8:0e:44:02:5a:20:92:fa:39:bb:e8:69:75:ff:d9:66:
ea:5f:5e:81:cf:b4:57:76:22:7b:f5:e7:3c:63:33:28:fe:88:
2c:af:26:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:49:37 2025 by rpki-client