Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
File: dI6Zox81gkAKtd-nd8YNFqyu3bM.mft (raw, json)
Hash identifier: qXq+EwAfsnHN5wSSg/Mvbi4uUe/epJvBYAFWxaCp0Ck=
Subject key identifier: E4:8F:5B:05:75:FB:0C:2F:FD:96:63:4F:D0:9F:55:A6:F2:AE:DB:91
Authority key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
Certificate issuer: /CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Certificate serial: 019A71B83E1DF1E65FEF73BBF280A4640D3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
Manifest number: 08EE
Signing time: Tue 11 Nov 2025 07:01:30 +0000
Manifest this update: Tue 11 Nov 2025 07:01:30 +0000
Manifest next update: Wed 12 Nov 2025 07:01:30 +0000
Files and hashes: 1: VWVp9Cs0S9PvQSERU4KTGGzQ8JI.roa (hash: SxWsENl0azYTplSpEg/TKtQu0dvHaU6Cl+WjOSHnKaA=)
2: dI6Zox81gkAKtd-nd8YNFqyu3bM.crl (hash: wvOw2YXH7/acZrCurl/InyyUT8yezDjjZTNYHdwgN/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:3e:1d:f1:e6:5f:ef:73:bb:f2:80:a4:64:0d:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Validity
Not Before: Nov 11 07:01:30 2025 GMT
Not After : Nov 12 07:01:30 2025 GMT
Subject: CN=e48f5b0575fb0c2ffd96634fd09f55a6f2aedb91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d0:89:9a:5f:5f:d6:48:27:b3:77:b1:c3:c2:
b4:5a:e7:51:c0:bb:df:1c:b0:53:78:8a:d9:05:eb:
d8:a5:7d:12:6b:a9:22:62:0c:45:f3:e6:26:48:89:
d6:f3:a8:6c:6e:fc:e2:91:d6:fc:1a:04:6e:2c:43:
1c:f6:ba:75:d6:5f:e4:71:23:fb:81:c1:49:5d:d7:
00:d9:db:83:77:1f:8b:78:c1:cc:f5:3d:32:47:6a:
52:c7:bc:ed:58:32:e2:87:be:93:bf:a9:46:ec:5e:
25:ee:79:e3:5a:f1:86:d1:e5:87:b3:6a:e0:c3:02:
de:ea:e1:88:3f:8a:1a:95:ff:b4:95:2b:57:1d:66:
9a:6d:ab:a7:f7:50:20:45:5c:db:94:ef:fc:e3:c2:
af:04:d7:99:8b:cb:82:a7:b4:58:20:fc:a8:7c:65:
64:6d:9a:4e:d7:1a:7e:28:dd:63:35:e7:50:b2:dc:
ec:01:e5:28:b4:6a:1d:40:99:bc:23:33:c2:65:f8:
9a:13:75:df:ae:d7:7f:06:1e:05:a1:f0:43:d9:1f:
b3:10:5d:a8:a1:a1:bf:31:7c:62:3a:57:74:3f:ed:
66:e9:0a:02:d1:d1:ce:5a:2e:3b:3b:fc:b6:29:b9:
b5:c6:e1:d9:6a:86:ae:60:99:22:be:0e:46:e8:ff:
60:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:8F:5B:05:75:FB:0C:2F:FD:96:63:4F:D0:9F:55:A6:F2:AE:DB:91
X509v3 Authority Key Identifier:
keyid:74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:4d:5f:34:27:af:15:34:a7:4d:de:7c:1e:02:58:ba:35:b6:
1a:7a:c3:bd:f2:fc:42:e9:a8:cb:34:96:7d:9a:f4:8e:77:ae:
f2:77:4e:5c:70:3a:f2:9d:92:8f:3f:30:fb:82:02:db:56:6d:
42:21:cb:e2:d0:8e:54:63:9f:92:d1:1a:8a:49:ad:c9:eb:bb:
81:0b:ed:6d:fb:0b:54:82:92:7d:a2:63:e3:57:9a:45:4a:e4:
9c:5a:4f:f4:81:3b:be:41:2e:90:4a:47:81:fb:7a:f9:a1:70:
c5:00:eb:51:7d:88:a1:9b:60:cb:f2:e4:12:9b:2f:27:a8:93:
2e:17:11:70:c8:41:01:c3:d4:5a:ea:00:de:6e:b1:8f:50:1f:
f8:19:e1:ae:32:43:6e:31:8a:0b:23:2c:fb:e5:05:ba:3a:bd:
93:13:36:0c:97:aa:4a:51:ea:59:dd:85:d5:61:e8:9f:15:83:
5e:1f:30:c1:11:4f:92:d4:9a:d7:c2:42:79:d2:b1:22:33:07:
e2:d4:a8:02:bd:dd:b4:40:46:52:a6:11:3b:b5:70:30:fc:8c:
d6:0e:88:88:0e:76:57:94:da:a4:3b:57:2b:1a:32:fd:83:5e:
88:aa:92:c9:78:e6:24:17:36:96:c8:fc:31:a1:c4:9d:85:e8:
f4:2d:e2:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:49:34 2025 by rpki-client