Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: 9t6UsF6vmgtEOPSlbUhoZJKaS0G4qRkxQShwsiadLUc=
Subject key identifier: 83:B0:4B:32:B4:65:D0:B7:C3:A0:FB:5F:CD:E5:B8:ED:9B:7A:5E:F4
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 019A2F3246F5769703E4D1160CF129889B70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 16FD
Signing time: Wed 29 Oct 2025 09:00:15 +0000
Manifest this update: Wed 29 Oct 2025 09:00:15 +0000
Manifest next update: Thu 30 Oct 2025 09:00:15 +0000
Files and hashes: 1: mCm-KBIMQ6gtgsW9oEUxZqdGcRM.roa (hash: ItOlCehgUekOH/ud/IMp3e9dVCyKMOt54wV1YDUzoCg=)
2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: JT/Oir3u1f4gr4OgEjIqtRswm3Jzd9sHJjfDOvmxtAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 08:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2f:32:46:f5:76:97:03:e4:d1:16:0c:f1:29:88:9b:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: Oct 29 09:00:15 2025 GMT
Not After : Oct 30 09:00:15 2025 GMT
Subject: CN=83b04b32b465d0b7c3a0fb5fcde5b8ed9b7a5ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d9:55:5a:72:04:b9:ff:08:06:03:ee:84:0c:
04:98:25:f6:94:6f:47:07:36:9e:af:6f:77:75:69:
7e:f1:56:8f:1b:d2:58:8d:49:9f:1a:74:6b:53:f7:
9b:51:62:0e:9d:4d:54:91:ca:26:ac:02:c1:cd:c0:
0a:cc:b5:29:3c:40:25:61:d2:7a:9a:17:77:05:63:
4b:2d:7d:67:7a:3d:da:49:16:a2:e4:f3:60:d8:5b:
99:5d:5a:27:c3:9c:bb:49:8c:24:1f:ee:f6:39:94:
9c:24:82:17:0e:a1:75:de:fc:89:c6:f6:af:88:9c:
78:35:5e:1c:e4:27:16:79:8f:a9:7d:9d:65:06:e7:
31:c2:ae:40:d7:2a:c2:27:9b:b5:51:4f:3a:4d:4d:
33:86:0d:bd:07:17:06:64:65:fd:a4:26:b2:d8:a9:
74:4e:61:27:d3:bc:79:7f:fd:ba:bb:ad:d9:5c:76:
1b:27:b1:e2:a5:ed:4b:4d:f0:26:87:44:28:d1:c2:
52:dc:ce:bd:b5:8b:f7:8a:1d:c6:6c:23:d1:77:75:
a7:87:3a:f1:57:dd:d8:52:b0:84:ac:3f:de:63:d7:
3d:59:ef:86:29:ac:1d:e2:89:49:d8:28:50:71:e0:
69:2a:e1:db:bc:91:b8:26:3d:a9:a3:ee:b9:cc:a2:
2e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B0:4B:32:B4:65:D0:B7:C3:A0:FB:5F:CD:E5:B8:ED:9B:7A:5E:F4
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:29:26:53:91:21:5a:37:04:a1:d5:ae:d1:04:b6:e6:67:9c:
c7:f6:1d:33:be:5d:ea:77:50:1f:49:07:a8:b9:14:3a:6a:38:
31:51:d3:9f:a9:32:47:c2:2a:c3:78:3d:4d:a9:90:44:d8:8f:
cf:93:34:a6:27:b5:89:e1:77:c0:d6:05:f6:fd:3e:8c:d7:e7:
42:d9:b2:04:f5:e4:45:da:57:70:2c:80:cb:07:25:d3:76:78:
7a:9b:c1:25:c7:ff:3d:8a:85:b9:be:b5:c9:b3:8a:f1:37:16:
b0:90:c3:18:19:91:3b:55:67:c6:3a:3f:d4:9f:23:62:b1:0d:
ae:f8:64:7d:59:f3:01:93:6f:62:2f:11:69:f9:85:be:36:f9:
c1:4d:65:1f:25:25:20:5b:7f:2a:0c:a0:04:3b:f7:1d:0f:66:
ae:32:9d:02:4a:8c:ad:1e:4a:73:86:29:73:25:5a:dc:4b:d3:
f6:7f:bc:50:71:b6:07:1f:1c:dd:ca:13:dd:7a:68:5a:fd:9d:
36:cb:d9:d6:2b:b1:e1:f5:34:24:17:86:e1:43:6c:24:38:22:
08:45:3d:fd:9f:4f:cc:57:81:06:33:de:9f:ff:51:53:3b:11:
79:7c:df:f9:89:c0:4b:98:ca:24:d7:78:61:92:ac:78:2c:3c:
40:ce:8f:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 17:32:59 2025 by rpki-client