Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft
File: D4nIaX93ksqvWZZk6JrOZSRPiug.mft (raw, json)
Hash identifier: JF+4Cd8R4X7JZbJ5t1pNAmrtepNENfPF1Nywr/AOXvg=
Subject key identifier: 0F:E4:F2:80:60:C9:99:93:F1:0D:F6:F0:7E:2B:C2:99:F5:1B:A4:03
Authority key identifier: 0F:89:C8:69:7F:77:92:CA:AF:59:96:64:E8:9A:CE:65:24:4F:8A:E8
Certificate issuer: /CN=0f89c8697f7792caaf599664e89ace65244f8ae8
Certificate serial: 019A71B8B8827EA4AD953362BF04A97539B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D4nIaX93ksqvWZZk6JrOZSRPiug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 07:02:02 +0000
Manifest this update: Tue 11 Nov 2025 07:02:02 +0000
Manifest next update: Wed 12 Nov 2025 07:02:02 +0000
Files and hashes: 1: D4nIaX93ksqvWZZk6JrOZSRPiug.crl (hash: NlInsMDZ3fA1w1ZucHIL8D9hKJxbfmQ4+18BuJzxMns=)
2: M1fWkBIHAuVSUFxtDGIthqqmrJE.roa (hash: +6gCxjSejI/as6boiaKhDkfwSxB7S4u8Oz//yZsKkyM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft
rsync://rpki.ripe.net/repository/DEFAULT/D4nIaX93ksqvWZZk6JrOZSRPiug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:b8:82:7e:a4:ad:95:33:62:bf:04:a9:75:39:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f89c8697f7792caaf599664e89ace65244f8ae8
Validity
Not Before: Nov 11 07:02:02 2025 GMT
Not After : Nov 12 07:02:02 2025 GMT
Subject: CN=0fe4f28060c99993f10df6f07e2bc299f51ba403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:dc:d1:86:c9:61:c4:a3:46:69:bf:12:15:9d:
ce:fa:45:e1:38:98:05:b2:61:ce:11:15:2b:dd:6e:
05:d2:42:3f:07:b9:c7:f2:de:03:2b:9a:e1:cd:d2:
e7:53:e0:b1:66:bc:de:6b:5a:e8:cd:88:6b:b4:c9:
f9:58:8a:a8:56:f1:4e:3b:59:50:a7:b6:dc:b3:4f:
9a:24:ac:42:58:31:9f:70:64:d2:0b:c1:c3:74:0f:
e3:3b:60:fd:df:d6:b1:54:03:6e:e9:38:37:4d:7e:
bb:e6:f9:e0:b9:15:13:76:fb:48:db:c2:c6:3f:b3:
09:85:2e:0d:56:23:00:25:ff:bc:7e:37:44:ef:c0:
f0:79:3a:51:67:1b:9f:e4:d0:54:bd:05:30:52:7e:
bd:8e:76:3f:5c:95:c9:f1:b2:55:7b:dc:8a:3f:2e:
f2:79:b3:1a:09:0e:30:fb:06:ad:90:c8:e8:c9:0a:
b4:37:2b:f0:c5:f4:b3:a0:c5:b6:2e:01:34:95:c6:
e0:c9:e6:e6:e7:f6:3e:24:9e:ff:ef:22:72:aa:cd:
47:59:76:2b:65:96:b4:e7:d2:13:0d:27:9e:81:e2:
99:b6:a2:d7:d3:68:0d:93:a4:51:b5:80:38:8f:37:
0b:06:a3:41:2a:77:c2:ed:d4:26:92:aa:e0:19:f6:
03:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E4:F2:80:60:C9:99:93:F1:0D:F6:F0:7E:2B:C2:99:F5:1B:A4:03
X509v3 Authority Key Identifier:
keyid:0F:89:C8:69:7F:77:92:CA:AF:59:96:64:E8:9A:CE:65:24:4F:8A:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D4nIaX93ksqvWZZk6JrOZSRPiug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:6e:22:84:19:b1:33:1f:1d:2e:fd:5a:12:47:d5:3d:85:ba:
5b:a8:cf:8c:bf:68:be:67:c6:88:89:3e:42:ca:4c:50:4f:14:
c1:2c:c0:92:a2:d8:e1:e3:4c:fe:90:25:13:3e:8d:54:09:ff:
6e:a6:94:ec:39:4c:10:b0:77:2d:80:bb:b0:4c:97:6a:09:01:
21:fb:42:22:c5:8d:28:0a:0b:64:80:43:d8:60:8c:19:bf:9d:
d1:1b:8c:52:ac:f7:7d:42:3b:56:d9:50:e9:ab:5b:4a:2c:0f:
8c:ba:d5:b5:5c:91:21:c7:3d:ca:d3:48:1d:68:6e:8f:e6:c4:
a5:ec:d0:24:26:09:a9:de:2f:8f:7d:7f:ff:7b:cb:a5:8c:6c:
19:d2:e2:08:23:9b:1a:23:91:cb:25:c9:c3:95:3e:73:02:23:
d6:30:df:d4:8e:f1:0a:78:8f:0c:69:31:a0:bd:af:92:86:ae:
1b:4f:6e:00:ce:39:a0:26:47:66:b5:f0:e6:e4:a8:66:10:6a:
26:c0:08:d3:e6:00:c4:f5:b4:22:67:89:0c:f3:86:e0:4b:80:
e9:5c:31:9f:0c:61:be:00:1b:e1:23:0b:6c:98:0e:74:59:48:
da:40:e8:ba:63:05:bd:2d:f6:33:bd:aa:3b:31:9c:2e:08:79:
54:9d:8f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:20:09 2025 by rpki-client