Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft
File: m1GT2EOvGT4kh1aGZzyViW6uNJc.mft (raw, json)
Hash identifier: pJvEKHVKWrKLIxcqI0CS2lvwVwlpK/YbOJIINb6/OZQ=
Subject key identifier: 4D:2B:E0:60:CF:D0:7C:AB:DE:5D:47:B3:90:9F:C5:E0:6A:84:48:2A
Authority key identifier: 9B:51:93:D8:43:AF:19:3E:24:87:56:86:67:3C:95:89:6E:AE:34:97
Certificate issuer: /CN=9b5193d843af193e24875686673c95896eae3497
Certificate serial: 019A71EEC6482D864234BDF8C58AF8EE070B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft
Manifest number: 0B2C
Signing time: Tue 11 Nov 2025 08:01:04 +0000
Manifest this update: Tue 11 Nov 2025 08:01:04 +0000
Manifest next update: Wed 12 Nov 2025 08:01:04 +0000
Files and hashes: 1: fzDOyXHw4ThoTSAi7ljnYyky0WE.roa (hash: b1cHh8j1rPir42V6XsC+HO+A+XYb+IZWauUQFAQdg78=)
2: m1GT2EOvGT4kh1aGZzyViW6uNJc.crl (hash: F4CZa2WT7d/HQywGgUNo7gHie3SI33lwqWnK+Ukz3wQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:c6:48:2d:86:42:34:bd:f8:c5:8a:f8:ee:07:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b5193d843af193e24875686673c95896eae3497
Validity
Not Before: Nov 11 08:01:04 2025 GMT
Not After : Nov 12 08:01:04 2025 GMT
Subject: CN=4d2be060cfd07cabde5d47b3909fc5e06a84482a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:97:6a:e5:49:c7:bf:db:0f:73:f7:e8:84:76:
62:1e:02:59:3f:77:0b:27:b4:02:ab:1c:48:af:a3:
2e:84:dd:e4:2a:35:d3:7a:d5:cb:3a:ca:73:14:6a:
6a:fa:92:8c:ff:66:0b:60:4c:29:31:4e:1d:a7:ad:
d3:ed:28:46:ca:ee:c3:31:02:90:98:f5:96:00:98:
67:58:6f:0c:a9:15:c5:e7:cb:b9:56:4e:4a:0a:e1:
c6:23:43:9d:48:9a:23:f3:00:37:5e:e6:db:7a:a6:
7f:5b:86:49:ac:53:d6:72:27:77:0e:0a:98:39:f4:
02:ba:24:4a:b0:9b:32:77:c2:a8:c8:97:39:cb:16:
ed:b3:f3:b0:58:37:a4:31:33:c1:3a:88:e9:2f:6c:
a6:87:7c:e1:1e:60:69:39:91:f2:83:ca:a2:f7:f0:
56:25:94:95:8e:46:a3:da:65:98:05:5d:3a:73:1f:
f5:3e:93:13:80:39:06:10:de:7b:a7:5a:e3:36:9a:
cc:f2:00:6d:b2:0e:9d:19:e6:b2:ee:7e:5c:cf:f9:
2e:a3:bf:0f:f2:37:e7:04:d1:53:a6:99:a0:56:4b:
2b:1e:f5:71:b7:75:b5:7b:5d:3e:fc:90:74:ff:5b:
55:60:49:17:d4:aa:e2:76:94:b3:0e:cc:9c:f2:34:
24:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:2B:E0:60:CF:D0:7C:AB:DE:5D:47:B3:90:9F:C5:E0:6A:84:48:2A
X509v3 Authority Key Identifier:
keyid:9B:51:93:D8:43:AF:19:3E:24:87:56:86:67:3C:95:89:6E:AE:34:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:c5:bd:0a:a7:9b:38:08:c0:bf:a5:83:a2:ce:64:48:3a:fc:
c8:93:3c:4f:78:e7:d1:b0:d1:d5:22:e8:e4:d6:f5:b1:c4:67:
74:a7:2e:2a:96:2c:aa:8d:0d:52:02:47:36:88:96:52:a0:ab:
20:5e:5f:35:2d:de:ac:71:ed:05:af:ad:fe:47:19:6b:c8:75:
77:1f:b7:2e:13:10:ed:4c:42:73:98:d7:cd:03:95:ac:a5:97:
f7:bb:b9:b2:92:6b:f6:d6:dd:91:4a:f9:81:0c:4e:ae:12:91:
28:0a:58:ff:27:a4:fa:a7:cf:88:c4:bf:e0:20:33:51:7b:89:
78:e0:7d:52:3b:e4:2d:c4:90:13:8d:eb:19:37:dc:14:b7:bc:
4c:2c:c7:bd:41:f0:91:9b:b3:9b:73:2e:76:5f:ad:99:55:45:
fb:84:bc:35:56:58:4d:e0:6d:53:ac:2a:0c:ca:7c:e9:e6:3a:
cf:6f:d7:7f:74:ad:8b:c5:62:3d:b3:cc:53:f0:38:97:c9:80:
9f:da:7b:01:49:01:bf:64:46:7c:5a:c6:53:cf:fe:63:49:cb:
c0:6e:69:b7:78:ec:b4:ea:76:e5:72:8b:67:b2:bd:2d:5a:8f:
2f:7a:56:ba:ec:96:ce:3c:24:11:71:ce:a2:15:c7:ff:da:de:
46:06:2d:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:06:19 2025 by rpki-client