Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
File: r7oQsKZ20-H6tWUoQw-siRoINlI.mft (raw, json)
Hash identifier: 3H4DRU4fuSWF4ANTQM26vN4pXzzf8HS7snFMAtRLsfI=
Subject key identifier: 83:67:5B:5B:E0:82:85:F4:D7:EC:DA:3A:8E:2E:C8:97:CE:68:54:14
Authority key identifier: AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
Certificate issuer: /CN=afba10b0a676d3e1fab56528430fac891a083652
Certificate serial: 019A71B90ED355D642FE027B78CAAF4A0EB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 07:02:24 +0000
Manifest this update: Tue 11 Nov 2025 07:02:24 +0000
Manifest next update: Wed 12 Nov 2025 07:02:24 +0000
Files and hashes: 1: KrPbG6M_7Mm1PtcHhZI4wknQI1M.roa (hash: tjtqRRJLnNhIS/xM5FVWwtZTtirmBRvu7piQDYGy3mE=)
2: r7oQsKZ20-H6tWUoQw-siRoINlI.crl (hash: 1j8VaNFrlrlxzm6epg77kRfSIN75+P8gWxzhNyoaOE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:0e:d3:55:d6:42:fe:02:7b:78:ca:af:4a:0e:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afba10b0a676d3e1fab56528430fac891a083652
Validity
Not Before: Nov 11 07:02:24 2025 GMT
Not After : Nov 12 07:02:24 2025 GMT
Subject: CN=83675b5be08285f4d7ecda3a8e2ec897ce685414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d3:87:56:62:a8:c0:69:e0:82:8c:38:f5:d6:
41:b7:d2:3b:53:d8:f2:0f:4c:e5:9f:f9:76:7d:ab:
08:fb:a5:8f:58:06:95:10:23:64:ef:7c:ea:76:5c:
51:51:97:8e:c5:21:e6:c3:02:a3:8e:c6:55:f2:88:
a2:aa:36:8c:7d:47:32:dd:26:b9:66:79:18:77:73:
bf:56:59:0b:21:19:03:4c:c0:43:db:ac:a7:1b:b6:
1a:b3:26:71:97:80:a4:6f:76:8c:2e:dc:0d:ee:32:
19:be:63:a7:20:70:d2:9a:cf:82:b9:4c:0d:c1:e1:
0f:bf:18:c2:13:50:e0:d9:8e:98:38:7b:2b:51:5f:
e7:67:e0:69:64:19:8b:26:bd:12:01:f8:c9:93:48:
8a:59:e8:b7:cc:5c:41:11:67:8f:ca:51:e7:bb:37:
ae:21:ff:79:53:16:f0:bf:d2:bf:ec:57:43:cc:44:
46:e2:29:98:21:c4:12:de:e3:8c:c5:15:f8:67:1f:
d7:ab:6e:76:ec:cf:61:7d:77:89:e8:e7:59:34:2f:
48:34:5d:b5:9a:c0:6d:a9:6e:14:e2:98:88:9b:e0:
d2:9d:14:19:85:fa:e2:98:da:a9:1e:a9:51:3e:a5:
e0:97:f8:cd:50:ef:80:b3:d2:17:d5:a4:3e:ce:56:
14:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:67:5B:5B:E0:82:85:F4:D7:EC:DA:3A:8E:2E:C8:97:CE:68:54:14
X509v3 Authority Key Identifier:
keyid:AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:af:48:3e:ae:b0:87:58:31:b5:ef:89:68:35:76:19:0f:d3:
18:18:31:b3:47:44:e5:23:87:44:3a:aa:57:bb:bd:e7:5a:fa:
e0:5a:0c:e3:1d:c5:a1:ef:c6:8e:df:f6:76:2d:ea:06:63:18:
6c:6b:29:0c:07:f4:12:de:17:a7:8d:99:2b:fd:e7:9a:4e:1f:
16:84:6a:92:f8:67:c1:e2:fe:77:93:96:59:89:1c:09:81:ea:
a7:0e:31:fa:97:ac:fa:40:fc:90:ae:71:b3:3c:6f:24:e2:89:
8a:5a:22:9f:a5:14:5a:24:20:82:78:52:52:c6:d1:66:67:65:
a9:b0:49:d9:33:13:99:49:09:34:3c:96:ee:08:54:f7:6c:eb:
a3:cc:ca:68:5b:08:de:42:5d:26:ad:03:52:7e:65:80:d7:93:
f3:29:33:b5:82:b2:8c:ab:0a:b1:81:9c:c7:32:c5:cf:7f:39:
f9:17:f9:da:cb:2e:14:6a:ec:b1:f2:ef:e1:24:60:67:30:e5:
57:cc:2e:b9:6f:40:26:49:c4:fc:f3:3c:1c:98:5f:57:b3:4d:
4f:0a:0c:93:61:cf:fb:f4:46:87:c3:57:90:8f:04:27:ff:74:
0f:f3:8f:1f:0d:9a:c4:1e:b2:8c:8e:30:dc:aa:25:bb:44:37:
7e:30:08:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:26:59 2025 by rpki-client