Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: n16H881HSVaqr9mSftwsz7TxX/Q0L5I48nROcNb0jt4=
Subject key identifier: 05:12:EE:D4:D8:35:3F:BF:F8:4F:FD:D1:D1:88:01:8C:05:91:0F:04
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 019A71B7E86DEB770EDDC93E1249291059E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 171B
Signing time: Tue 11 Nov 2025 07:01:09 +0000
Manifest this update: Tue 11 Nov 2025 07:01:09 +0000
Manifest next update: Wed 12 Nov 2025 07:01:09 +0000
Files and hashes: 1: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: 5Y5jUWNTeOQl8odj+Mk87/Kco0gxhXGDyioDht9YD+I=)
2: luaqw9G-VvVeUOUerH8hYnJDYmk.roa (hash: cGv6tVYRF/4yXJn3TxE1a8gXuaOG4Us7R7XWbyYOP1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:e8:6d:eb:77:0e:dd:c9:3e:12:49:29:10:59:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: Nov 11 07:01:09 2025 GMT
Not After : Nov 12 07:01:09 2025 GMT
Subject: CN=0512eed4d8353fbff84ffdd1d188018c05910f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ed:dc:3b:92:56:5a:2a:a2:25:93:ad:2c:97:
ee:32:24:bb:83:c0:a1:84:9f:1a:61:1e:b0:14:e8:
b5:29:db:04:1c:26:c5:f8:6b:85:8d:3f:06:d3:66:
18:e0:fd:55:9a:43:a8:b1:55:f2:80:56:ad:a4:95:
f4:56:f8:f2:62:f7:82:20:79:97:a9:36:3c:ef:c5:
ae:47:e9:9a:4c:81:1e:c1:45:6d:87:e6:af:c7:1c:
00:46:e5:1b:d5:2c:6b:63:06:12:85:25:58:b9:57:
89:94:63:86:93:86:73:db:00:8f:00:0f:8c:ad:f5:
d6:a2:9a:67:6f:80:4f:fb:fa:d6:d2:be:03:4f:62:
1a:89:46:46:2f:da:a8:62:f3:29:ff:b2:49:e6:a2:
e9:90:d2:5d:ab:a1:4c:27:e2:a6:98:07:c3:2e:d2:
7d:68:32:ad:28:94:4b:76:56:1d:e6:d1:72:8a:e6:
f1:c9:44:00:5a:ab:37:b3:9f:2b:78:84:c2:c5:c3:
6c:96:71:cb:37:67:1f:05:f9:51:c4:5c:70:94:cb:
bf:aa:0c:27:04:26:f0:6e:96:58:3f:8d:86:eb:76:
b2:c9:fc:20:8d:9b:15:71:c1:03:99:06:de:cf:90:
b0:80:d8:04:3a:47:f2:3e:d4:d1:8d:45:4a:8a:e1:
bf:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:12:EE:D4:D8:35:3F:BF:F8:4F:FD:D1:D1:88:01:8C:05:91:0F:04
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:b8:f6:55:de:33:5a:74:5e:1c:1a:ab:65:2c:07:45:b5:c7:
49:11:aa:a7:72:ea:21:4c:36:cd:c6:cf:2b:cc:25:48:31:a6:
f0:bd:c1:d6:04:7a:c4:e7:ec:ef:11:d2:61:37:f0:8c:7e:51:
be:99:d2:34:54:c3:e8:72:68:22:0c:51:1b:76:93:d7:45:49:
2d:bd:33:0f:2d:05:bd:c8:16:51:e6:98:05:10:a6:92:30:59:
4f:d0:f7:76:10:16:81:e1:69:ce:28:9e:44:55:cc:8c:c8:df:
53:2f:bb:0b:4f:d0:ef:66:a0:01:83:77:cc:09:e1:a5:18:c4:
6d:0f:1d:61:ef:d2:9b:b3:05:4a:09:ad:f0:5c:ad:69:86:4a:
99:0b:50:cb:0a:63:cb:4b:af:21:8f:21:b5:fe:56:2d:f6:58:
24:ca:56:8d:dc:d5:e2:17:03:36:97:e0:94:e1:24:50:e3:fd:
f7:c1:56:3d:e0:59:9e:ef:65:cd:0a:98:9e:9a:25:3c:3c:66:
11:f6:84:88:17:7e:c5:99:12:12:3d:97:cb:91:73:cc:99:0a:
08:0c:51:33:9f:0c:58:59:4f:ad:c6:5a:c0:09:81:2c:62:89:
50:86:76:55:eb:80:c0:1d:f0:63:45:39:7c:fb:1e:74:6a:b6:
aa:07:fa:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:04:51 2025 by rpki-client