Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft
File: 9LdilQ63kWZou_qNG4cFYLHKdzk.mft (raw, json)
Hash identifier: RNpNuethZtMFZ+zhWX6RyDju0DjPhctr4e+sdTHGCEI=
Subject key identifier: A9:87:CC:D0:51:8F:A4:2B:BE:D7:42:C5:CC:13:93:23:E2:BE:B6:1D
Authority key identifier: F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
Certificate issuer: /CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Certificate serial: 019A19BDBF4624F180A83FFECEE0864D6448
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft
Manifest number: 1590
Signing time: Sat 25 Oct 2025 05:00:56 +0000
Manifest this update: Sat 25 Oct 2025 05:00:56 +0000
Manifest next update: Sun 26 Oct 2025 05:00:56 +0000
Files and hashes: 1: 2I_gyEpNZ4JuV81yJRUXBVu-KOA.roa (hash: r49ywNskr+Vb41Ou7x0XARQgE2G5ZH5biPRfE9u4cAc=)
2: 2tZ8QlZM2m2IpNLIvJ0W7pbf-Z0.roa (hash: 9Uhvy9O+l0zHDpQPVkCj98q8JIdj7ZhjiR3rxLVvfII=)
3: 9LdilQ63kWZou_qNG4cFYLHKdzk.crl (hash: O8Pkst9e8iAhQ0IstC/xrqdFurg0zs/zNxBW0OJtc58=)
4: Cqe38rpbTYcW3IBIj3GE-axW20k.roa (hash: rFb4HKGqgMrSh0TmO+Kz12Dni5W90nAeu/GsQNE5QbI=)
5: RW6wxE8PmfS_l7583dlKYTuULiM.roa (hash: NA5N2aFRPb0HCLNpvXiULoI8i28V3/zHm+oTFj2hW9U=)
6: XViXWtM4Qca08fEngqnKAjV8_6k.roa (hash: FX1LXPYDV9yZbUiSRuPd/ffSUdla1CU7pMstvEpaovA=)
7: cg5wyW1XUiTE1cAkUrbH-_fslDk.roa (hash: zkUw4K8Y/lRpRyDIEZKZW+jZfl1kW8PgsmLXFHW0Eco=)
8: pYT69ekFAz6AyMxjupc4L7m_By4.roa (hash: Cer1nHXkBg7TmA4VluMF+Bs6hly21XolmwIlPkVMAss=)
9: t292OmKp-GnX0MyFpL72FnDc9MA.roa (hash: uIDL5vQGM8ia+mjLC9CmEE4toRqUWbIawZ8YzQbIFpY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 02:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:19:bd:bf:46:24:f1:80:a8:3f:fe:ce:e0:86:4d:64:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Validity
Not Before: Oct 25 05:00:56 2025 GMT
Not After : Oct 26 05:00:56 2025 GMT
Subject: CN=a987ccd0518fa42bbed742c5cc139323e2beb61d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:66:51:74:27:60:a3:e3:14:aa:c0:2f:e2:8e:
28:72:ac:27:09:55:e9:da:52:ed:51:ae:a2:47:b4:
a9:6d:59:f6:86:c2:4c:2b:a3:ba:c1:9b:14:79:1e:
bd:ee:71:62:d6:26:5b:bb:8c:46:5a:86:a8:2d:80:
81:0e:ac:b7:94:7c:f8:da:66:c5:23:8e:07:a4:ff:
e0:0a:03:45:bc:3a:a0:ac:3e:82:ac:16:ce:a3:b2:
2f:9e:2d:57:99:96:a0:15:59:17:80:4c:4b:1f:32:
0b:fc:8b:5c:ab:33:83:77:b9:f5:b4:b5:68:38:f1:
5f:fb:83:76:91:90:f7:df:ca:b6:f9:70:be:be:17:
68:e1:30:42:f7:be:9f:04:41:ed:63:f7:bd:8e:6d:
67:ec:ff:b0:66:38:f3:50:ed:a0:b9:ed:4a:65:68:
0b:1a:fc:ca:8a:06:42:2e:95:13:14:db:d8:1e:fa:
40:45:83:51:5b:06:fd:10:67:8b:c4:28:55:9d:37:
e1:96:ed:3e:80:50:70:f1:36:69:06:3e:4a:5f:6c:
05:56:3f:0a:5b:fe:1c:f3:aa:b1:8e:3c:79:6a:86:
e8:15:e3:08:22:af:df:ef:f2:5b:5a:d9:a8:40:ec:
4a:d0:65:73:e8:f6:77:9f:01:a8:53:ac:70:16:6b:
b3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:87:CC:D0:51:8F:A4:2B:BE:D7:42:C5:CC:13:93:23:E2:BE:B6:1D
X509v3 Authority Key Identifier:
keyid:F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:88:f6:d5:5b:27:97:21:8b:0c:8a:d0:9a:f9:26:18:1e:bb:
e2:12:1d:72:80:28:c0:65:07:b7:79:24:0b:a7:20:ce:dd:95:
ef:83:2b:f9:4e:84:fd:a9:3b:a0:09:ba:d0:bb:82:53:c2:8c:
e1:8b:a6:8e:bf:f3:5a:b0:3d:48:e5:11:e9:bd:56:fe:e7:e6:
86:ed:e8:36:85:84:dd:77:db:be:08:65:f9:6b:45:92:02:56:
75:92:3d:03:32:bb:5f:9c:02:a9:67:88:8e:99:dc:af:2f:9e:
2c:6d:d6:1a:c4:9c:e1:cb:3a:22:15:43:86:42:fe:d8:4d:81:
50:18:5c:f6:53:a7:97:ed:67:01:56:a1:1f:6a:6c:26:07:f1:
35:45:2c:76:38:ed:6f:0a:65:98:3e:39:eb:42:94:d0:ca:c0:
6f:ca:77:4a:04:db:00:4a:c0:2f:3e:77:64:5e:aa:8c:1c:62:
a5:f5:32:14:36:25:59:32:ff:96:92:b1:c6:1f:00:50:22:34:
be:ea:2e:94:26:7b:99:3d:fb:ad:c5:35:bf:c1:3f:6c:6e:a8:
ad:b0:bb:2d:aa:89:e7:97:c6:75:78:f8:94:6f:50:4f:30:54:
e4:80:73:c3:b7:ba:29:63:04:54:f3:34:c8:1d:9f:69:8d:4c:
67:78:53:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 11:21:38 2025 by rpki-client