Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
File: rWUjcvDl0WnCAPfR0IDoVw_-23E.mft (raw, json)
Hash identifier: Ynlj9AmWoE4U5du8WZAkZb01TQuRU2/cn+tmtxQLl3E=
Subject key identifier: 90:6A:55:EC:4A:96:32:EC:0B:32:3C:05:9F:43:2A:F0:0A:BA:9F:6D
Authority key identifier: AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
Certificate issuer: /CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Certificate serial: 019A05932FCEF16D820E6A6CB453AA91CB38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
Manifest number: 0452
Signing time: Tue 21 Oct 2025 07:02:03 +0000
Manifest this update: Tue 21 Oct 2025 07:02:03 +0000
Manifest next update: Wed 22 Oct 2025 07:02:03 +0000
Files and hashes: 1: nQ9AG6h0t4BBBHaY1oIQ2Z7HXiE.roa (hash: bmhEBNk6LesEwcu8xwGODwFl5oPTmJlYZFKxsnvzgRU=)
2: rWUjcvDl0WnCAPfR0IDoVw_-23E.crl (hash: wlGx3o2D5JIPsYjLKxPohtd1zk07wrnKlHuY/P0xkmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 07:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:05:93:2f:ce:f1:6d:82:0e:6a:6c:b4:53:aa:91:cb:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Validity
Not Before: Oct 21 07:02:03 2025 GMT
Not After : Oct 22 07:02:03 2025 GMT
Subject: CN=906a55ec4a9632ec0b323c059f432af00aba9f6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0e:c0:2f:22:b6:3b:f8:34:37:39:d9:6c:7b:
bc:bb:0e:c7:42:50:8e:86:a8:b0:15:73:2a:ab:f5:
29:d8:d2:4d:03:26:94:53:a1:83:87:fd:6d:fc:68:
fe:14:a9:7c:f0:cc:0b:8b:68:ae:ee:52:74:10:f8:
1b:56:d3:34:bf:c7:7f:1e:43:e2:48:cc:c6:97:92:
b3:9f:a2:60:d1:a7:19:a0:e5:76:d2:bf:54:cf:92:
d0:e1:48:e9:96:1b:1b:d3:27:cb:eb:6e:01:be:ff:
c7:72:d5:00:4b:cd:f2:e2:c8:11:a5:93:be:13:54:
85:33:54:73:3a:36:6d:e4:22:f3:c5:e5:fc:32:91:
31:79:aa:ba:06:1c:f5:f2:18:a4:65:c7:36:92:da:
86:6e:7a:b3:60:40:6a:af:08:6e:d4:fc:5b:7a:a9:
98:ed:1e:68:5a:1a:99:ee:07:39:d8:7d:b3:e7:58:
48:17:f2:7b:29:4f:08:c9:0a:6f:05:75:ac:1e:84:
be:ff:c7:c3:c7:1b:47:09:f2:d6:92:e6:d7:d1:b5:
a9:7a:c0:ea:f5:46:40:08:02:4b:96:5d:e3:93:5c:
0e:ee:6b:4d:64:09:1e:de:9a:4e:c1:9c:3f:a2:0c:
d2:12:6b:81:29:50:67:ea:6d:c4:99:bb:be:a3:97:
cd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:6A:55:EC:4A:96:32:EC:0B:32:3C:05:9F:43:2A:F0:0A:BA:9F:6D
X509v3 Authority Key Identifier:
keyid:AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:ef:a0:84:fe:76:6d:7c:5c:95:f8:ef:de:8a:75:4f:68:89:
f1:8e:4e:8f:27:3b:81:65:d9:b8:de:d9:38:04:d6:af:22:f7:
4b:d6:35:9a:61:c3:aa:8e:d2:c2:ea:17:1d:11:fc:21:d7:da:
c7:54:49:03:bf:a2:8a:cb:79:c8:0b:21:13:24:32:7d:51:95:
d7:f0:2c:c0:0e:c9:57:0f:79:52:f1:d1:97:1e:00:a8:52:50:
88:79:f6:dc:bf:08:22:d7:9b:e2:eb:7e:d0:81:91:24:3c:24:
dc:44:2b:5e:12:b9:47:8e:4a:52:c4:6a:0e:58:63:73:f5:1e:
ee:09:d6:5a:57:98:8c:4d:dd:e7:1e:1c:1c:ad:45:d5:3c:a9:
ae:39:bf:da:8b:39:ef:d6:82:a4:4d:d5:a2:74:7a:ac:3a:a0:
21:3a:32:90:1f:de:2b:89:e3:13:2b:31:99:61:16:00:9e:f8:
fb:ed:f4:c2:70:90:7b:a5:00:47:17:d2:09:d9:56:c1:43:4f:
d9:78:4f:9e:be:a1:5a:1f:81:3f:e2:0b:17:d3:e9:4a:96:36:
a4:d4:c4:5a:84:1d:cc:4a:95:50:01:7c:b6:8d:43:b0:e3:96:
46:6e:7a:d6:3a:f7:b4:bf:2d:fe:46:03:d0:73:81:6d:85:5d:
ca:e9:30:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 18:08:41 2025 by rpki-client