Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
File: i7dzgYUSSQpQCthD6irnF-8hsUw.mft (raw, json)
Hash identifier: 8dBN/cZ1/q+c2B8uHEcqXACpss5f0tZPN3teLnrDPHw=
Subject key identifier: F1:EA:A4:92:6B:5C:ED:62:70:A7:63:FF:98:E6:BB:B6:E9:83:B3:58
Authority key identifier: 8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
Certificate issuer: /CN=8bb773818512490a500ad843ea2ae717ef21b14c
Certificate serial: 019A71B807E7395E2ECF5470789F2A0016BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 07:01:17 +0000
Manifest this update: Tue 11 Nov 2025 07:01:17 +0000
Manifest next update: Wed 12 Nov 2025 07:01:17 +0000
Files and hashes: 1: L6BmwALeicC8VgFsadJhZLZOhdw.roa (hash: jlbIuI51ox4C1wny8/EXm0XGuTxyG7RmZ5JEvI5tNCo=)
2: i7dzgYUSSQpQCthD6irnF-8hsUw.crl (hash: dHg4l85Qta+p1YW4FULXVoCm8E9r31fuVR2iIAVb/gc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:07:e7:39:5e:2e:cf:54:70:78:9f:2a:00:16:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb773818512490a500ad843ea2ae717ef21b14c
Validity
Not Before: Nov 11 07:01:17 2025 GMT
Not After : Nov 12 07:01:17 2025 GMT
Subject: CN=f1eaa4926b5ced6270a763ff98e6bbb6e983b358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9a:12:e6:2b:44:57:af:60:aa:10:8b:28:ee:
de:e5:91:7b:2b:8d:47:54:9d:77:bf:4f:af:80:ed:
63:b4:98:0f:63:bd:a8:6e:e7:46:a6:69:13:9a:3a:
fa:b5:34:15:e2:20:3d:a6:80:df:08:7a:27:f9:93:
e6:10:f9:ef:3f:06:c8:26:0d:58:44:c0:e4:27:b7:
64:73:70:42:06:2e:e5:f3:90:a6:ce:db:d7:b8:22:
fd:5a:1d:15:6b:a8:dc:20:54:b5:e6:1c:23:97:e8:
cc:c2:41:76:42:e6:e0:3c:59:68:c4:ad:c5:08:e0:
d0:6f:5b:6e:76:03:9a:57:36:d7:b3:23:f3:d0:b6:
54:af:e5:e9:92:bc:10:53:d2:02:bf:47:58:36:12:
fa:07:b9:93:e0:ef:e4:3e:2f:87:25:f4:71:bc:2c:
50:85:c0:05:e9:42:ba:43:c4:11:57:4c:32:00:a1:
0a:be:01:cc:b4:8f:7b:d2:94:83:d9:a9:e5:14:1e:
f4:ed:06:43:28:27:ae:88:ff:d7:01:f3:bf:0d:87:
15:72:7e:69:c3:ea:56:4e:00:c9:ce:7b:09:0f:ca:
f9:48:ec:f7:68:4e:01:87:56:c4:f9:1a:3e:29:10:
d5:d1:8c:e2:1b:e0:b1:09:c2:ed:0c:75:9f:e3:eb:
a5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:EA:A4:92:6B:5C:ED:62:70:A7:63:FF:98:E6:BB:B6:E9:83:B3:58
X509v3 Authority Key Identifier:
keyid:8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:16:b4:14:c5:27:df:bb:28:30:4d:e6:85:4e:ba:b8:43:7e:
ab:88:a4:5a:3b:ab:b6:78:83:2f:69:83:63:6f:5c:3c:dc:56:
fa:6c:d6:57:64:ae:8f:2d:2b:6c:18:d8:ca:2b:93:53:b9:a5:
49:bd:13:4d:cd:45:36:66:a7:20:9b:21:42:a5:5d:86:63:be:
83:b2:d5:f9:39:21:d2:70:68:e7:b6:89:17:cb:c4:ae:5e:af:
8d:8d:46:74:08:51:91:06:7c:8d:5c:4e:3a:ff:a3:62:ed:04:
88:65:6c:89:6b:99:56:eb:cf:34:7d:fe:dc:77:4b:75:1c:8e:
45:49:e3:50:2c:dd:ed:90:25:a1:96:cb:be:f4:7f:0d:db:0a:
b1:48:dc:fc:e3:7b:c3:8c:ff:01:9a:c7:37:0a:d0:b7:d2:69:
9f:a0:93:c3:b0:80:72:b1:63:00:52:13:79:66:57:89:53:19:
f1:f7:93:7b:18:d1:23:36:28:56:13:4d:4d:75:83:a6:cb:71:
93:ec:c9:31:18:a3:12:a4:8a:4c:26:f4:6c:e1:95:38:24:50:
70:ec:e8:cc:c2:d2:95:6d:04:9e:48:cd:56:8f:44:87:79:60:
c8:c2:92:29:fb:83:7f:8a:b4:58:51:a3:d5:98:a3:e0:af:36:
b8:4b:9d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:12:03 2025 by rpki-client