Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
File: CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft (raw, json)
Hash identifier: sxX69qSVMuK0Ng+QGGCDbAP1/JIutMNbCFY0hQx1KWg=
Subject key identifier: 0A:02:EC:0F:DB:56:73:4A:3A:25:BF:3B:9D:80:0E:95:6F:F7:9B:8B
Authority key identifier: 08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
Certificate issuer: /CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Certificate serial: 019A1B7514D5DAB0AE9DFE89AFD6E79459A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
Manifest number: 12F6
Signing time: Sat 25 Oct 2025 13:00:49 +0000
Manifest this update: Sat 25 Oct 2025 13:00:49 +0000
Manifest next update: Sun 26 Oct 2025 13:00:49 +0000
Files and hashes: 1: CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl (hash: ot8kaVM7dOLSmI0YYjfMnoX2PPJjtMGzIV8tg4zIoSs=)
2: NSQQr0dchBVb5NqeR8z3x_MXCeI.roa (hash: XPvSVq5h7mPPG5QqR8bg1ZJJPL/y/MfsW5VYh5EY4C8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 11:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1b:75:14:d5:da:b0:ae:9d:fe:89:af:d6:e7:94:59:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Validity
Not Before: Oct 25 13:00:49 2025 GMT
Not After : Oct 26 13:00:49 2025 GMT
Subject: CN=0a02ec0fdb56734a3a25bf3b9d800e956ff79b8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c6:05:1f:ea:8b:a1:0e:fb:94:24:01:bb:60:
0b:d0:f1:ae:e2:e8:05:e1:be:29:7d:ce:ca:ad:2c:
24:c5:d9:9b:60:a7:0a:d8:1a:b3:64:d2:40:38:1d:
23:e9:0d:ca:7b:44:39:fe:54:24:fa:95:25:4a:d6:
6a:64:b5:85:28:1c:3e:c2:ee:cc:78:65:5f:ea:4d:
16:09:ec:16:62:5a:2f:51:e2:93:67:8d:f0:1c:ac:
4e:72:35:a2:9c:6f:c1:6f:c3:4d:29:d0:50:5a:e9:
71:d7:e8:09:91:3f:19:85:7e:5a:f3:19:8e:e4:34:
a5:8e:e4:bb:21:29:87:25:d3:4f:bb:37:72:db:25:
d9:a5:a3:64:8e:79:58:19:4f:d3:f4:0f:0d:4e:98:
51:01:28:0a:3d:a4:5d:fa:69:84:5e:ad:bd:f7:e5:
a0:17:86:1a:4d:da:48:ee:4c:9e:76:5c:10:6b:49:
7a:bd:a4:61:27:ec:69:b0:53:a0:5b:c5:f8:43:49:
34:97:84:b2:30:9c:5e:de:5b:de:7c:0f:0c:1b:69:
9c:1c:e6:1b:d7:d7:59:07:b9:d3:83:0e:a9:0c:20:
e4:0a:45:1b:63:6b:29:5a:90:43:83:c2:13:06:30:
f3:0f:da:29:c6:62:51:f8:7b:df:fc:fa:2d:3e:59:
3c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:02:EC:0F:DB:56:73:4A:3A:25:BF:3B:9D:80:0E:95:6F:F7:9B:8B
X509v3 Authority Key Identifier:
keyid:08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:60:b8:2a:36:be:ad:f0:21:0f:0f:03:05:69:fb:84:c0:0c:
06:42:3d:d8:7f:f2:3b:87:4f:bc:b2:4c:78:67:71:f4:16:bb:
0e:79:fe:65:59:30:c5:55:36:e3:75:4d:3d:ef:38:e0:f5:cc:
02:48:ff:05:62:4d:b2:a3:5d:10:5c:ba:68:ac:20:7c:da:49:
8a:78:cb:3e:03:21:2f:d1:e2:81:73:27:2d:12:50:e6:2a:32:
8d:a1:90:28:14:a4:1d:c1:50:65:0d:d3:bc:59:e1:95:75:60:
c1:2e:07:10:0c:14:26:a4:ec:99:58:27:7e:96:66:3a:db:db:
fc:8a:59:3e:5b:57:9f:1a:54:ee:a5:76:d7:08:c7:fe:25:31:
5d:ad:13:03:7f:8b:c0:92:dd:75:c1:db:d8:66:40:b8:f5:99:
c3:3c:c7:fb:36:86:16:b7:88:81:27:e8:20:41:57:21:49:3f:
1f:3e:fd:cb:7d:b0:c4:d7:76:50:8a:98:ae:86:5d:e6:1c:d7:
ef:be:6d:22:57:f1:34:6d:03:97:07:f8:74:53:9a:c4:64:4c:
38:e5:b3:4b:5e:3c:7b:d1:f3:a8:7f:78:c4:80:a4:02:17:97:
97:f1:c1:6f:56:24:eb:cf:70:79:5f:06:18:35:6d:b1:5e:46:
67:a2:a3:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 20:16:21 2025 by rpki-client