Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
File: 1873Xgl6YxiGszyB9kql67wMMqA.mft (raw, json)
Hash identifier: ZXpaZ6ZnkfYAtlHwC9MvDYEbvwg0qltJuguZzXJp2mg=
Subject key identifier: E6:8F:CC:60:E4:AF:59:BC:58:87:58:4B:36:90:14:50:40:19:76:F4
Authority key identifier: D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
Certificate issuer: /CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Certificate serial: 019A2F32197F4FFB765354F07112F253ABDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
Manifest number: 052D
Signing time: Wed 29 Oct 2025 09:00:03 +0000
Manifest this update: Wed 29 Oct 2025 09:00:03 +0000
Manifest next update: Thu 30 Oct 2025 09:00:03 +0000
Files and hashes: 1: 1873Xgl6YxiGszyB9kql67wMMqA.crl (hash: V31tXfbqrSoMTA3h0UwPz2qqeRJlKthkZFbHZfGDHMA=)
2: tavXsXu7Wm_kIdKnzfVPzxktMGQ.roa (hash: PDEUyoKVmJLpE4EXJZCm2eA6jcMg8DukO+sjxPMBeZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 08:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2f:32:19:7f:4f:fb:76:53:54:f0:71:12:f2:53:ab:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Validity
Not Before: Oct 29 09:00:03 2025 GMT
Not After : Oct 30 09:00:03 2025 GMT
Subject: CN=e68fcc60e4af59bc5887584b36901450401976f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c5:6c:85:ac:60:2b:2e:ae:ef:63:60:70:5c:
2e:dd:02:08:1a:93:ed:a6:f5:b6:0f:eb:b3:29:e3:
a8:b2:e5:d4:3a:ac:fe:57:ce:4d:ae:ea:7e:dc:37:
53:ff:99:17:ae:18:b1:14:ed:a2:c2:1a:3e:9a:06:
bf:e9:63:28:c9:c4:25:b5:02:c9:08:61:d6:5d:b7:
16:8c:73:f9:21:d7:ad:03:c6:07:2b:7f:de:be:6f:
df:74:2b:fc:10:6e:60:9f:fc:bc:3e:d5:55:cd:96:
70:0e:0f:bb:1d:c9:31:84:2c:fa:07:97:4b:2f:aa:
43:6a:b5:cc:6e:70:84:b2:32:bd:5b:a3:00:ed:3b:
56:19:39:6c:fb:16:d8:29:98:27:14:ee:d0:91:5a:
d4:99:74:d2:f5:25:b9:10:a9:55:71:e0:ab:d8:d4:
88:33:8f:31:ba:37:c1:d9:11:70:3e:64:61:06:7a:
f4:1c:bc:3c:5f:bd:d9:3b:60:80:c2:78:96:3d:d1:
cb:09:89:6e:f6:4c:44:25:dd:fe:24:e4:3c:40:ab:
44:ca:71:56:26:e1:e8:c4:36:0d:be:3b:59:fb:0b:
ed:38:90:4b:b1:ee:80:7a:90:7e:e7:93:a7:55:37:
83:2b:4b:08:69:9f:4a:88:fd:60:0f:74:32:e5:84:
74:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:8F:CC:60:E4:AF:59:BC:58:87:58:4B:36:90:14:50:40:19:76:F4
X509v3 Authority Key Identifier:
keyid:D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:3d:7f:17:f6:86:8a:06:55:aa:b0:e6:89:3e:b9:e5:e6:6f:
d0:96:b0:74:ea:4d:31:8c:95:74:a8:45:94:7b:12:dd:ed:db:
27:bd:f4:e4:d9:44:da:d8:33:b3:07:3f:ce:b9:77:18:55:c7:
d6:db:7f:50:98:19:78:74:54:8a:61:14:5b:b1:20:6c:5f:f9:
33:32:7a:d8:59:f6:3d:23:cf:d0:79:66:5c:38:d6:90:65:11:
16:e6:ed:ef:b9:94:0c:07:2c:68:8a:07:6e:fa:60:2b:2d:c9:
29:cc:dc:c4:19:91:80:f4:0d:90:4d:23:b4:e0:e0:2b:44:3a:
4d:f6:e6:79:3a:9b:00:97:fc:0f:2d:4a:7e:c6:26:01:ee:1f:
8f:0b:f7:45:ae:25:c5:fa:6a:89:ea:e7:e8:2f:67:b5:4a:46:
2d:9b:05:4c:b7:14:bc:ee:cb:f7:b7:13:4c:59:5f:19:62:4f:
3e:35:a2:12:9c:3d:f7:43:cb:b0:5b:6b:0d:af:4a:63:f9:fc:
f5:01:de:bb:25:df:50:86:fc:66:68:dc:b2:6f:55:86:a4:1b:
e2:5d:60:c1:bc:89:b8:7b:ac:d8:3f:c2:be:9b:a6:13:e3:ca:
2a:de:77:c7:3a:f6:bc:56:b6:c7:dd:8f:c1:0d:48:36:91:03:
3e:d2:fc:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 16:20:47 2025 by rpki-client