Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
File: raXVKzyodFRXW2W3IO74GiYqXzo.mft (raw, json)
Hash identifier: K2+Vh7rOGP3da8l1HeGGTsGHbIhwVUj1HxeQMAQdJ3g=
Subject key identifier: B4:E4:3E:34:56:16:F7:2F:83:AD:C7:47:AE:D4:4F:30:C5:54:E1:CD
Authority key identifier: AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
Certificate issuer: /CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Certificate serial: 019A7225E7CC772B10D9A62318E46F8132F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
Manifest number: 105E
Signing time: Tue 11 Nov 2025 09:01:18 +0000
Manifest this update: Tue 11 Nov 2025 09:01:18 +0000
Manifest next update: Wed 12 Nov 2025 09:01:18 +0000
Files and hashes: 1: YkyLNJe8eg5_ZWWXRqgb1FEedCU.roa (hash: yKbeF3cM/odTGzY3J6HPYew0I5seEJaLqL9iFLq9XbY=)
2: raXVKzyodFRXW2W3IO74GiYqXzo.crl (hash: XOX/N8c9AatZJtjEsW/5H3W99mK+PNmfPWG+48rzhas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:e7:cc:77:2b:10:d9:a6:23:18:e4:6f:81:32:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Validity
Not Before: Nov 11 09:01:18 2025 GMT
Not After : Nov 12 09:01:18 2025 GMT
Subject: CN=b4e43e345616f72f83adc747aed44f30c554e1cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:99:8d:35:e5:f2:89:15:74:f7:1f:72:39:99:
61:95:f3:1b:cd:1e:94:06:2f:0c:7d:c9:fb:49:33:
b5:67:c7:d7:de:90:72:10:e6:f7:0a:ce:47:55:79:
14:b3:6a:ba:04:4c:fe:b1:c9:c1:19:1f:66:5e:61:
95:44:52:bf:05:c2:aa:05:b7:a9:89:63:6e:fb:10:
ab:57:29:10:db:dc:89:fd:46:12:f3:aa:43:7f:bf:
7b:0f:01:c4:74:26:7c:69:7c:88:1f:06:85:f2:1e:
31:f7:e4:22:6f:de:5e:41:58:39:75:3d:dd:ad:b8:
5e:05:73:cb:60:f9:57:e2:25:09:ad:a9:86:cb:d2:
29:a4:21:8e:5e:dc:4f:99:4e:fb:c8:63:74:76:ae:
ae:de:56:b9:d4:1c:9d:a8:ad:fe:e6:62:a3:fc:20:
77:04:ff:0f:8e:36:a8:86:df:bf:89:b0:c0:ea:a5:
ff:3d:ae:d7:b7:9a:57:e0:1a:46:f5:8a:bf:ee:f0:
7a:a4:bc:d6:0f:fb:f8:f9:c6:15:58:d3:24:2e:14:
33:47:9b:cd:c1:91:15:f6:4e:78:36:1e:3d:87:9b:
5b:1b:0a:c7:f9:c1:ec:e5:af:5f:bd:6a:6d:0d:35:
70:e4:fb:ec:e1:79:6b:73:6f:d0:43:b4:44:78:87:
5b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E4:3E:34:56:16:F7:2F:83:AD:C7:47:AE:D4:4F:30:C5:54:E1:CD
X509v3 Authority Key Identifier:
keyid:AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:76:9c:a5:6f:04:64:58:80:91:88:50:8b:f4:9c:0a:90:92:
12:d2:70:c6:e1:db:46:75:1e:3f:b2:9c:0e:2b:69:6b:8f:38:
9f:9e:08:7b:1f:e1:5f:3f:c2:f0:0e:a7:fd:f0:59:6a:c4:c9:
d7:b4:76:fd:ec:1c:14:6d:48:cf:33:4e:96:6f:6a:be:62:46:
de:4a:96:5d:4b:12:b0:57:ec:a0:3f:aa:4c:90:52:8f:29:f4:
08:df:53:7a:0a:db:cc:28:38:a6:30:6b:3c:d6:6d:3e:c5:b7:
34:3e:9a:90:67:a9:4b:e4:8f:ef:9a:fa:05:79:40:d4:e6:9a:
6e:89:1e:d0:0f:7c:e6:fc:27:32:88:3a:69:20:6c:ce:e3:30:
ee:7a:4b:9c:38:71:4d:77:24:cb:eb:c5:f4:e7:61:10:e4:a9:
b8:0c:d8:e3:ab:bc:eb:6b:a2:ad:e1:c8:24:10:14:19:95:66:
20:6d:ee:fc:88:35:6f:53:05:0c:b1:04:64:92:f3:91:b9:ca:
dd:52:e8:89:f7:ee:cd:4b:03:0a:6d:26:db:63:80:61:c3:50:
28:1c:e6:2d:a3:ac:29:de:ed:9c:b1:9a:99:da:19:17:00:e0:
bf:45:ab:fa:a2:72:63:d0:af:5c:6d:fa:5a:3b:a4:86:59:b0:
73:f9:d8:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:51:32 2025 by rpki-client