Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
File: wQdbeoGvSd7_tsg1xWCO4LiEMso.mft (raw, json)
Hash identifier: gzN5SeYPSE1nMFhMNrYHkU8NV0LxSdURLyk0Nx098Gg=
Subject key identifier: E8:66:2B:D6:F6:33:6D:01:23:B6:62:C9:A5:2C:77:07:7F:85:AF:D6
Authority key identifier: C1:07:5B:7A:81:AF:49:DE:FF:B6:C8:35:C5:60:8E:E0:B8:84:32:CA
Certificate issuer: /CN=c1075b7a81af49deffb6c835c5608ee0b88432ca
Certificate serial: 019A711368F7A77673E3BC72D4702FF958EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
Manifest number: 024F
Signing time: Tue 11 Nov 2025 04:01:28 +0000
Manifest this update: Tue 11 Nov 2025 04:01:28 +0000
Manifest next update: Wed 12 Nov 2025 04:01:28 +0000
Files and hashes: 1: YfJtBuAEzwrAwSN_J7xGNSKCjCE.roa (hash: XmpRYRo5Vs4yfW8P8k8ClzDTbvhLktOQ+0fCN4Fj/SI=)
2: wQdbeoGvSd7_tsg1xWCO4LiEMso.crl (hash: 2zK+Gy1z9Nu9msS7jIHzHl8ZYjGIgZyOUAovLLTtNEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:68:f7:a7:76:73:e3:bc:72:d4:70:2f:f9:58:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1075b7a81af49deffb6c835c5608ee0b88432ca
Validity
Not Before: Nov 11 04:01:28 2025 GMT
Not After : Nov 12 04:01:28 2025 GMT
Subject: CN=e8662bd6f6336d0123b662c9a52c77077f85afd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:67:4e:4d:1a:7a:32:bc:f8:17:cc:28:0e:bd:
8b:b5:d7:34:ea:d4:98:03:94:c0:11:48:20:b4:ed:
80:03:ae:1d:23:c0:19:d6:2f:8f:24:65:04:f9:b5:
23:53:99:fa:78:4b:b7:47:06:4d:72:09:03:f4:91:
54:16:cd:26:76:c4:15:ee:07:d3:44:b1:98:42:56:
d7:be:c9:37:d6:59:1e:9e:b1:42:4f:00:d3:de:1c:
dc:a9:72:dc:39:31:97:53:5d:e2:60:0d:b7:00:df:
b1:a8:bb:6f:15:df:92:69:0f:c9:f1:01:78:f2:aa:
3a:18:17:1a:e1:8d:b8:52:77:f9:37:e1:c1:b7:65:
8f:9a:f0:c5:c3:d5:72:b3:8d:c0:8b:f4:bb:0c:c2:
b6:f9:6f:5d:1e:fc:b2:82:dd:f0:10:35:7d:2c:17:
71:ed:43:a2:6d:bd:84:f9:84:fc:1c:99:ae:c9:45:
fe:89:f6:db:eb:30:fa:b5:5f:21:2d:22:47:8b:ed:
dc:e8:3f:d6:c5:31:d4:37:a5:97:45:9c:de:3f:6f:
99:29:8f:2f:24:c0:88:8d:7a:c2:b7:30:59:28:71:
54:1c:fd:d5:e8:1d:45:f8:5c:c3:68:30:7f:39:6b:
05:fb:1e:2e:79:c7:72:1f:5d:dc:4c:50:76:a0:ea:
7c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:66:2B:D6:F6:33:6D:01:23:B6:62:C9:A5:2C:77:07:7F:85:AF:D6
X509v3 Authority Key Identifier:
keyid:C1:07:5B:7A:81:AF:49:DE:FF:B6:C8:35:C5:60:8E:E0:B8:84:32:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:d7:00:a8:4f:66:c6:64:71:56:dd:5c:e7:ab:de:21:b9:71:
ba:9d:21:16:5c:35:22:ec:35:4f:a8:0c:e9:53:03:d5:7d:ea:
12:2f:83:10:53:95:35:b0:d1:22:88:5f:e5:f7:7e:6b:a5:32:
81:e7:62:c0:8d:15:1f:13:43:33:be:9a:08:c6:56:8b:52:bc:
00:7f:3b:89:fa:c7:e3:47:70:3c:b0:2a:ed:25:b5:9b:66:24:
fe:49:dd:d2:31:ee:8b:70:68:53:bd:27:37:b6:ff:5c:42:11:
aa:0c:8b:e9:86:60:27:e7:20:97:3d:a0:99:c2:18:76:f2:39:
66:5f:e5:bc:0c:b5:b5:4c:ed:83:da:1d:ae:78:09:2c:39:78:
0e:46:93:92:28:ae:9a:40:56:9b:03:f4:d2:3f:92:13:fb:8c:
30:6d:6f:6b:14:ed:84:a5:30:9a:06:dc:91:10:49:81:8b:42:
ca:5b:13:88:4e:a6:3f:79:49:05:56:04:ab:09:04:e5:b5:f6:
8e:58:71:b9:e3:c1:d9:ee:6c:6b:ad:bd:1d:81:82:b6:52:97:
85:54:a4:67:27:10:ba:2d:1e:f3:9a:ff:30:72:80:03:4d:85:
94:37:df:d5:76:91:6f:75:f9:1b:23:2c:90:bd:69:75:ce:50:
30:68:f9:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:10 2025 by rpki-client