Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
File: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft (raw, json)
Hash identifier: e0YTYCB+GjAWD2M0RmSIOzld4+83qt/n6D5Fn4oXsVE=
Subject key identifier: 76:55:F3:DB:84:8F:87:A0:9C:2D:34:9B:61:68:BC:CD:55:56:C2:7B
Authority key identifier: 0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
Certificate issuer: /CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Certificate serial: 019A4D05D51BCF4974598D3ADAD59DCFEF24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
Manifest number: 0782
Signing time: Tue 04 Nov 2025 04:00:19 +0000
Manifest this update: Tue 04 Nov 2025 04:00:19 +0000
Manifest next update: Wed 05 Nov 2025 04:00:19 +0000
Files and hashes: 1: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl (hash: mI60bGbAMCBxhDrzaVVjr5YQhq5Vs7wWiUiP1/H/UQA=)
2: PveX9WXxCJj9e18L9V5LXcSlf4I.roa (hash: Gc7ehRUF/Atprjxx4oQFsUeoQdkyLlSY7XL+/gL4J0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:05:d5:1b:cf:49:74:59:8d:3a:da:d5:9d:cf:ef:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Validity
Not Before: Nov 4 04:00:19 2025 GMT
Not After : Nov 5 04:00:19 2025 GMT
Subject: CN=7655f3db848f87a09c2d349b6168bccd5556c27b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ee:ca:55:ba:18:26:9c:e6:4f:c1:55:60:fc:
06:a9:7a:18:3f:b3:91:a8:65:6b:ac:a7:7c:90:4b:
4b:99:0e:b4:5c:87:8d:ff:d0:06:fc:88:9a:cd:40:
70:ee:5b:b7:81:75:20:bb:39:8c:93:bd:bd:2d:ac:
98:6e:ff:43:d1:98:9e:95:f8:b1:d4:28:db:a2:aa:
6d:41:f8:f3:08:47:80:cc:59:3b:88:8d:74:90:ac:
37:d6:b6:e7:59:18:7f:3e:bf:4f:a4:77:70:9a:c0:
ac:bc:49:6d:47:7c:43:65:2b:bc:40:f0:ec:da:73:
e6:8b:49:e5:31:56:de:be:13:36:79:0d:d2:d5:07:
22:d3:f7:fb:16:65:62:3d:4d:48:ce:45:4f:7d:3c:
19:84:27:c7:a5:5c:93:74:70:02:51:66:50:2f:46:
02:08:90:ad:1f:e5:7b:e7:2c:23:26:7d:47:1a:98:
5e:59:51:a7:9c:3d:5b:96:37:e0:98:ed:78:fd:c3:
79:56:02:34:ab:7c:d8:21:b0:4d:5a:d7:7f:ef:79:
72:61:79:fc:66:9e:1a:2e:06:71:f6:df:4a:be:d0:
a0:db:cc:ee:ae:36:f1:cd:52:5d:0b:56:fe:50:33:
65:b5:10:f8:61:6b:fc:37:fc:aa:74:64:f7:70:c5:
05:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:55:F3:DB:84:8F:87:A0:9C:2D:34:9B:61:68:BC:CD:55:56:C2:7B
X509v3 Authority Key Identifier:
keyid:0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:74:94:73:56:1a:96:c0:2e:9f:bb:5d:ff:37:98:4b:34:d6:
a0:6e:c4:ec:42:16:28:d6:f7:0a:49:af:35:fe:f1:cc:61:9a:
64:7d:c4:a7:84:51:31:fa:bd:6a:99:3e:08:ea:d1:d5:6d:f8:
61:a8:fe:ef:2c:d2:0b:5f:5a:41:1e:e1:62:1e:0e:7e:1a:2c:
d0:43:74:00:59:9e:12:67:5e:cb:67:f3:7b:25:38:3f:9c:0f:
0c:e1:0f:47:c6:b4:c1:61:6f:a9:e7:a7:a1:1d:1d:11:c0:61:
8b:2a:eb:2b:65:2b:28:90:1f:40:f9:27:c8:aa:96:ce:32:bc:
39:88:f2:1b:ed:06:c6:72:a1:d9:98:c6:ce:5b:b9:f5:0b:73:
4b:da:62:8f:93:bc:8f:b7:e6:43:9c:81:bc:33:e9:4b:9f:90:
89:bf:93:88:60:d5:ad:8e:80:2e:cc:2d:ac:ee:af:be:f1:e5:
d3:0c:c4:d1:12:e2:8e:9b:aa:b1:66:5d:45:18:c8:a1:95:a6:
2a:40:09:c5:79:f7:a8:fa:72:e4:f4:78:d0:ac:ad:a6:7d:17:
03:0f:fe:12:a9:19:df:5e:5b:3f:da:a0:9a:f2:af:8d:40:dc:
aa:5c:8b:72:96:bd:67:af:a4:96:fe:98:b3:18:58:e1:b8:e9:
3d:85:d6:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:02:45 2025 by rpki-client