Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
File: r8GT7hHlRxYWn5TI-THq4fyFSSE.mft (raw, json)
Hash identifier: hvdyTxWvkKbmpAtT1p5i4A9f9K7QNT7T9m7VN21wde4=
Subject key identifier: 0E:C7:E6:55:9C:1D:C9:75:E7:53:8D:AE:A9:4A:4A:C8:9E:33:C8:4B
Authority key identifier: AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
Certificate issuer: /CN=afc193ee11e54716169f94c8f931eae1fc854921
Certificate serial: 019A71B8BDAF90971FB47C05E152E2770D0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
Manifest number: 0C72
Signing time: Tue 11 Nov 2025 07:02:03 +0000
Manifest this update: Tue 11 Nov 2025 07:02:03 +0000
Manifest next update: Wed 12 Nov 2025 07:02:03 +0000
Files and hashes: 1: AaiQ-SNQmt6l5xOeIk4PwVHWfh4.roa (hash: 6CQTrWnDAV45WpOAHO1NfVL9iDI/ELlZY8vizp+bA9s=)
2: r8GT7hHlRxYWn5TI-THq4fyFSSE.crl (hash: o8L8Fims4RELd04LAd7XJ3KhWvc1J3j6ZtCHjwVgCls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:bd:af:90:97:1f:b4:7c:05:e1:52:e2:77:0d:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afc193ee11e54716169f94c8f931eae1fc854921
Validity
Not Before: Nov 11 07:02:03 2025 GMT
Not After : Nov 12 07:02:03 2025 GMT
Subject: CN=0ec7e6559c1dc975e7538daea94a4ac89e33c84b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f3:5c:b1:3e:bd:0b:a5:58:71:c5:b8:d9:b0:
ed:f0:36:54:44:2e:a9:68:18:88:d0:ae:91:bb:1a:
66:e1:e0:22:c2:b8:dc:9c:c9:4f:53:35:20:4e:6c:
ac:08:ae:2c:87:de:28:36:ac:f4:03:b9:7f:5e:fe:
8d:8a:78:d8:7c:56:63:99:5e:cc:ee:8f:bc:ce:22:
63:92:78:20:30:47:d0:eb:db:dc:15:fb:48:89:84:
9a:b9:14:9f:51:3f:aa:cb:36:ec:48:6c:9b:f7:87:
1a:f5:24:03:c0:ac:79:d5:0f:59:21:fc:76:c3:84:
e1:22:ac:92:e7:b7:0a:a7:2d:21:98:0d:7f:84:04:
7b:06:50:b1:b2:80:4e:77:97:ff:3d:fc:d7:ef:5f:
64:a0:05:e6:d2:3b:d3:a8:76:5b:c3:59:c2:7c:f4:
f3:48:76:12:c3:a3:fc:70:87:17:c0:3c:6b:89:3d:
be:36:51:cd:96:72:e7:99:50:62:f7:48:5b:4d:d8:
dd:0f:d2:03:0f:95:0b:37:20:d5:23:f8:b5:1c:e7:
ab:34:5f:a8:bc:89:f0:79:91:f2:3e:7d:32:62:99:
48:6e:d4:27:d3:e1:25:88:93:eb:5a:6e:ba:0c:21:
0a:48:c1:4b:9d:55:9e:a7:a4:ff:60:7f:4a:ad:a3:
23:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C7:E6:55:9C:1D:C9:75:E7:53:8D:AE:A9:4A:4A:C8:9E:33:C8:4B
X509v3 Authority Key Identifier:
keyid:AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:3a:f5:d3:7d:62:ed:79:ec:91:50:b4:c1:e2:53:5f:ca:3e:
08:52:ca:cc:eb:d4:4e:fd:e1:3c:88:c2:ba:5e:d5:4d:00:27:
b2:49:66:e3:45:a4:15:98:9b:3a:d5:49:f4:5b:6d:02:0a:e4:
8b:a7:51:e1:49:ab:c5:92:df:c7:42:b9:e8:62:48:70:5b:33:
d0:d3:44:c8:20:13:64:be:0c:67:3b:e5:48:b6:af:5b:f3:63:
23:71:b7:a4:7a:24:4e:a5:ac:b8:c5:54:da:23:7e:47:53:be:
81:6c:de:7e:f7:82:44:96:c5:6c:9b:0f:09:26:93:1a:03:33:
10:fc:ca:f9:90:a9:3d:ae:24:0c:1f:11:55:c6:81:36:82:49:
e9:d5:e0:60:fe:43:1b:3f:71:a6:2a:14:5f:68:0e:02:96:5b:
e9:da:e9:91:a2:f5:6b:dd:94:96:7e:27:6a:bb:4b:8b:46:9d:
3b:50:cc:37:8e:71:d3:17:86:5e:43:d0:2a:21:a1:7f:92:39:
e9:38:e0:33:16:b7:9a:59:45:b3:83:e3:f3:2c:47:90:d3:c3:
6c:f7:a6:09:e6:db:e7:16:56:d5:e0:f1:3a:12:a6:b8:50:4a:
59:af:9f:03:9a:a3:c4:46:16:35:42:8b:6e:d7:a8:3b:7a:c5:
dd:e1:ab:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:53:36 2025 by rpki-client