Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json)
Hash identifier: ylRSu/5nrNfFs4tN6j2/JSe+EYTKF//M0m18jKJetbM=
Subject key identifier: AE:69:DB:D6:43:BA:86:BC:D5:97:40:43:45:7F:8C:69:6F:F9:7B:52
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 019A71B90A9A30B2DD9C759A237E346A0B59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
Manifest number: 1592
Signing time: Tue 11 Nov 2025 07:02:23 +0000
Manifest this update: Tue 11 Nov 2025 07:02:23 +0000
Manifest next update: Wed 12 Nov 2025 07:02:23 +0000
Files and hashes: 1: 0uVokjA0n-IKYM4dLwrHfcYoXtI.roa (hash: h5xCuikP/FGyLSLux1dmHiJam1SLoPwDAncSRikSHHc=)
2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: +/ApLJD42EYR8pi0fp8/im8cBbs1aHn/iOvV7McfXPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:0a:9a:30:b2:dd:9c:75:9a:23:7e:34:6a:0b:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Nov 11 07:02:23 2025 GMT
Not After : Nov 12 07:02:23 2025 GMT
Subject: CN=ae69dbd643ba86bcd5974043457f8c696ff97b52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fb:ab:13:fc:cb:83:40:3c:f4:4f:6e:78:ea:
4e:e1:f0:cd:03:aa:2f:de:98:7e:03:1f:f0:6e:fb:
be:54:a5:27:bf:8b:1f:5f:8b:44:b8:9a:27:73:ec:
05:d0:5e:36:9d:e2:a7:50:74:9f:9a:bb:b8:f0:e7:
d4:b9:35:c9:de:35:96:3b:b0:72:3c:58:91:9b:44:
17:5a:f9:f5:42:e0:e6:40:cd:75:53:ad:74:1b:f9:
86:15:fb:58:0f:7a:c7:1c:05:84:44:ae:69:0b:ec:
53:5d:7b:52:e0:8a:50:2e:14:f6:f5:82:ab:a6:4f:
cb:4c:96:05:08:fb:fa:f5:d8:87:08:66:29:9a:84:
ae:d3:87:48:e9:de:ad:15:b2:b8:8c:7f:23:2e:df:
1f:7e:18:c1:4c:d1:0c:0d:a2:2f:47:a8:b8:dc:2c:
53:8e:ee:5b:f8:f0:8e:c7:52:74:e9:cd:73:3c:2a:
fb:d2:3d:f1:fd:e6:1b:29:1e:ed:4a:a1:0f:8b:56:
f6:53:0b:0f:f7:4c:6d:a7:e9:59:cb:40:f2:51:e0:
ba:da:9f:6a:4c:e7:d3:40:cf:84:42:f6:13:de:38:
03:e7:20:03:a8:d7:a1:35:13:98:20:6a:d1:22:9e:
70:1d:79:42:8b:15:7f:f2:19:5d:72:ec:03:e9:0d:
36:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:69:DB:D6:43:BA:86:BC:D5:97:40:43:45:7F:8C:69:6F:F9:7B:52
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:a2:f7:a2:bc:ee:89:36:e9:1f:2b:0e:64:78:5d:eb:b3:c8:
f4:71:f9:fc:86:7f:72:a6:d0:1d:64:31:9b:6e:78:c5:22:4a:
40:93:d1:b1:23:07:63:25:7d:3e:91:a8:aa:5e:f3:ce:55:7a:
5b:b1:bd:60:cb:1d:f0:1e:f6:7b:15:81:92:6d:48:b0:58:e3:
ca:a6:51:6f:fb:29:e7:fe:15:3e:52:06:51:51:44:af:60:54:
bc:b2:fa:81:12:4f:20:bd:d5:ec:40:38:0b:87:bd:4a:0f:5e:
e9:98:cf:80:3d:78:95:73:23:9c:2e:00:72:30:1e:fb:ee:c7:
ae:c0:42:e2:62:05:0d:6a:c2:79:2f:b5:e3:37:24:7c:7f:1e:
21:d4:dd:f4:32:bc:60:1a:af:88:93:b2:3b:2c:d0:d5:09:c5:
99:08:7a:c3:ea:8d:f8:3a:1a:4f:cd:68:3e:5d:85:d1:b8:63:
84:be:62:b3:8a:fc:dd:ef:d0:ea:fb:a0:c0:04:97:c3:c3:04:
b3:23:ee:6f:76:39:63:c1:d2:06:fe:36:c1:95:e5:e9:01:fc:
a3:68:19:46:7b:c2:7c:ed:40:6a:a0:6c:d0:ab:82:95:eb:46:
8f:f1:3a:fe:27:6f:16:72:e1:49:f4:d5:bf:2f:f0:94:c6:dc:
c4:4a:22:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:38:13 2025 by rpki-client