Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
File: jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft (raw, json)
Hash identifier: B3w3iL8oDquZCYJdubHGO11pvCh+Pmrdc1+RAIWde+Y=
Subject key identifier: E5:66:A3:A8:B4:FF:58:6B:40:C7:4F:CA:5A:EB:E9:90:BE:79:1C:5F
Authority key identifier: 8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4
Certificate issuer: /CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4
Certificate serial: 019A7293789F559DBFAD52D0642864BDA2C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
Manifest number: 1440
Signing time: Tue 11 Nov 2025 11:00:58 +0000
Manifest this update: Tue 11 Nov 2025 11:00:58 +0000
Manifest next update: Wed 12 Nov 2025 11:00:58 +0000
Files and hashes: 1: 4OlXHZjPNi_ZrlyOHLrnACz2H5w.roa (hash: WcKTWMqR73pqlk4NefweGCzhLoO2KaXXmg8w4iimJxY=)
2: jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl (hash: hcDl770Ejo/mMQBsE3cfFf4fizlTQLn1ltDKalw4ZfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:78:9f:55:9d:bf:ad:52:d0:64:28:64:bd:a2:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4
Validity
Not Before: Nov 11 11:00:58 2025 GMT
Not After : Nov 12 11:00:58 2025 GMT
Subject: CN=e566a3a8b4ff586b40c74fca5aebe990be791c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:4e:67:2c:4f:50:8d:d3:d6:b0:4e:b0:04:ec:
d3:a4:c9:3e:5f:2d:88:16:9a:d3:31:0c:0b:74:30:
a8:56:13:a7:b2:a3:7a:79:c1:6b:e8:f8:65:46:95:
4b:38:9b:2d:85:2e:3f:d2:16:52:7b:67:53:1a:77:
ea:68:d7:54:0a:d7:6b:0f:97:b9:c4:5a:15:f1:31:
3e:9f:20:80:85:d5:21:b5:69:13:ab:e5:e6:36:3b:
e5:59:78:c1:1c:a1:81:f1:d4:fd:17:78:c5:1d:f5:
98:56:fa:6e:ad:7d:87:6c:20:3a:eb:ff:80:f4:df:
46:df:22:ac:d3:78:d0:41:03:10:0b:a0:2d:3a:23:
e0:41:07:05:c9:16:3a:8b:12:e3:4a:d5:80:1d:27:
3d:48:48:b7:6a:d3:7e:a1:86:6f:92:3a:b1:c7:e5:
a0:06:f7:18:a7:35:59:a3:5f:4d:33:ca:b7:a9:35:
02:73:04:cc:75:b9:e8:a2:1d:7c:4c:74:5e:bd:a7:
de:fa:07:c6:14:5a:b8:0c:d8:18:1c:f9:6a:24:f2:
96:61:83:b1:79:2d:cd:43:c6:ea:7c:8a:40:c9:e8:
74:18:fe:43:64:92:45:f5:28:52:78:af:85:68:e0:
b9:28:cd:2f:2e:51:29:f2:b9:da:d4:e6:3c:f2:b1:
ac:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:66:A3:A8:B4:FF:58:6B:40:C7:4F:CA:5A:EB:E9:90:BE:79:1C:5F
X509v3 Authority Key Identifier:
keyid:8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:9b:ca:2d:90:e5:88:e1:0a:ac:db:a5:31:7b:43:d4:0f:35:
43:99:9d:e4:5f:b5:18:30:8f:ae:b4:aa:96:d9:0a:db:d8:99:
15:d5:e3:6e:4d:df:12:8b:8b:ee:8a:ce:0f:84:f4:89:af:f5:
3f:3f:d5:9a:bd:76:08:45:7c:4d:0e:ee:65:ff:91:e7:8d:68:
ff:d5:e6:a7:3b:f3:38:e3:24:9e:09:0f:ea:a2:f7:c8:e2:12:
f1:43:d8:72:26:5b:47:e2:c4:46:fc:e1:46:80:d8:1c:99:24:
0b:ee:44:36:dd:66:a5:09:33:9b:01:65:f8:cb:1b:aa:25:20:
d7:fa:8b:05:de:30:fe:c8:c0:72:bf:ed:72:8e:61:d5:9d:ce:
90:46:ef:42:ac:ac:d9:61:0d:5f:f8:21:53:80:0f:61:0e:67:
08:74:ee:e2:16:b6:55:e4:ac:6b:94:eb:a1:bc:a6:6c:ae:49:
5e:e7:82:0a:30:bf:39:bf:48:81:47:c5:72:d7:36:39:c2:f8:
c1:27:7e:1c:7a:6b:2c:19:72:ee:b1:31:25:78:62:09:4d:76:
d5:a6:84:6b:b8:1c:9a:a1:3a:88:98:ff:9d:97:07:ab:c3:c8:
a4:a5:b6:30:8d:4e:ae:3e:79:79:5d:d2:78:31:02:06:1d:51:
ec:b4:3b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:50:15 2025 by rpki-client