Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
File: p7He9pWIXq3lzMi0vioCuxYHnpw.mft (raw, json)
Hash identifier: UFvQ47COPnkAR3tTkDcklDEdqvHOyOeu+Nzq5cjNq+c=
Subject key identifier: 6F:B2:0D:B0:59:DB:4E:5A:B4:53:E3:E7:E9:D2:26:E6:1F:9E:C0:A3
Authority key identifier: A7:B1:DE:F6:95:88:5E:AD:E5:CC:C8:B4:BE:2A:02:BB:16:07:9E:9C
Certificate issuer: /CN=a7b1def695885eade5ccc8b4be2a02bb16079e9c
Certificate serial: 019A70A52610CD3794F458C56AE37EF9B865
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
Manifest number: 096F
Signing time: Tue 11 Nov 2025 02:01:02 +0000
Manifest this update: Tue 11 Nov 2025 02:01:02 +0000
Manifest next update: Wed 12 Nov 2025 02:01:02 +0000
Files and hashes: 1: 2ZXONPsq8Wq-C73Y4ZOdG8CP47o.roa (hash: 23qtSB8U1yvtJIhVOx0ex1wgA9IS3rvYP3HTfvaa5cc=)
2: p7He9pWIXq3lzMi0vioCuxYHnpw.crl (hash: CLqiGxG8/VH+5z7g/TJxVgpT7oFotq82LV6VfslfH98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:26:10:cd:37:94:f4:58:c5:6a:e3:7e:f9:b8:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7b1def695885eade5ccc8b4be2a02bb16079e9c
Validity
Not Before: Nov 11 02:01:02 2025 GMT
Not After : Nov 12 02:01:02 2025 GMT
Subject: CN=6fb20db059db4e5ab453e3e7e9d226e61f9ec0a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1f:c5:5a:d4:ae:53:0c:14:8f:61:c7:fc:6a:
8d:0e:87:1c:91:90:98:46:89:66:8a:72:1c:92:99:
54:d2:ec:79:58:4f:b9:8a:6e:46:a9:d9:4d:a0:db:
fd:90:22:6f:48:10:52:d8:0b:dc:9c:06:ec:b4:1f:
fa:e2:f2:f1:57:74:3c:fa:25:a3:b2:d1:39:db:52:
ba:12:37:69:95:07:d7:9a:3e:cc:85:76:16:e9:23:
c1:8d:71:54:da:83:38:54:b7:19:f1:0e:a5:e3:1d:
71:6c:fb:f9:a6:ba:88:02:c0:bd:03:e9:bc:48:05:
52:a9:6a:10:93:eb:e3:77:26:15:8f:05:ba:fc:99:
61:f8:92:f3:1e:ba:d9:d5:7a:7c:3b:18:d1:f2:07:
22:20:5f:4c:ab:78:91:c0:c2:8c:a1:c1:b6:0d:d3:
27:d1:5f:4c:5b:9f:3d:5e:ce:50:03:0a:66:91:33:
07:ee:7f:a1:7b:29:f7:49:bc:4d:f7:e5:6d:e8:3c:
1f:3c:0d:5c:b0:9a:ca:81:81:3c:0f:49:8a:38:98:
35:72:f5:af:c3:cb:08:13:24:14:ed:49:86:cd:7b:
c0:6f:31:06:44:28:0f:45:23:f4:52:e2:68:18:40:
52:98:2f:8b:c1:e2:c1:4b:74:a9:df:30:8e:1c:c6:
56:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B2:0D:B0:59:DB:4E:5A:B4:53:E3:E7:E9:D2:26:E6:1F:9E:C0:A3
X509v3 Authority Key Identifier:
keyid:A7:B1:DE:F6:95:88:5E:AD:E5:CC:C8:B4:BE:2A:02:BB:16:07:9E:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:61:5d:c9:ee:b7:e8:43:b4:7a:91:c0:27:fa:5d:33:8f:36:
bd:3c:fd:b7:a2:2b:ed:9c:75:00:9f:6b:f8:b2:5a:3c:51:2b:
82:ad:c0:fd:36:c8:d9:6f:07:e0:41:0c:f2:6a:07:a1:5f:3c:
6f:78:4f:59:50:15:66:9e:ab:96:f6:2d:79:5b:81:74:aa:7d:
c4:f4:82:ee:49:18:f2:1a:f7:a1:b3:3a:69:40:10:df:56:8a:
8d:91:80:d7:24:70:8f:87:fe:f9:97:e5:ba:e6:c7:ca:6c:3b:
f4:b6:29:21:14:6d:f5:80:a1:28:ed:2e:e3:4d:01:c7:0b:41:
1f:58:a4:0d:20:87:1c:bf:fa:28:cc:1f:9e:df:14:18:2a:7c:
08:cf:86:6f:0b:89:04:62:d1:3b:2e:b4:d6:a6:84:c5:35:0a:
ae:27:3d:08:59:6e:26:07:47:97:b0:e5:e1:8d:c9:03:51:f2:
ae:fc:d1:bc:5d:5e:42:f0:85:b3:b4:8e:1d:d7:05:57:ba:60:
d1:be:35:f4:b1:33:c4:b4:c3:ee:dc:e0:ea:57:8d:2f:05:4d:
31:cb:ed:2b:29:d5:ef:8a:a3:ac:05:7f:e2:5b:10:cc:3e:2a:
5e:a5:54:4d:ba:20:1f:bf:5c:7b:a2:c7:c9:63:a8:22:9e:44:
10:34:da:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:55 2025 by rpki-client