Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
File: rXz7zh1tOmok8lZSBl0xV1go7bU.mft (raw, json)
Hash identifier: P8539uOdjzDXm8j4f8GPzEa9VFOCKO6DJoe7tB4gOq4=
Subject key identifier: A1:04:EE:A0:DA:54:53:FC:05:D7:98:4B:72:44:B3:A3:66:DA:52:DC
Authority key identifier: AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
Certificate issuer: /CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Certificate serial: 019A71B7822B2CE0D2898891C68ADE1C65A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
Manifest number: 0E30
Signing time: Tue 11 Nov 2025 07:00:43 +0000
Manifest this update: Tue 11 Nov 2025 07:00:43 +0000
Manifest next update: Wed 12 Nov 2025 07:00:43 +0000
Files and hashes: 1: Im3NuoFQdX7egdBojqG76hMiXq0.roa (hash: MBZCzXbY6/6xAtTJ9sYOEhNyw2Jnz8TgfEJHylhcfdM=)
2: rXz7zh1tOmok8lZSBl0xV1go7bU.crl (hash: cXvuJL8VMClWGYEGoIBnJ19FwKr64QL/Tn+b8ny0Wyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:82:2b:2c:e0:d2:89:88:91:c6:8a:de:1c:65:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Validity
Not Before: Nov 11 07:00:43 2025 GMT
Not After : Nov 12 07:00:43 2025 GMT
Subject: CN=a104eea0da5453fc05d7984b7244b3a366da52dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d8:32:34:0b:aa:16:fc:26:75:af:81:64:5d:
be:9c:e2:67:bc:7f:44:81:bd:84:e5:b4:44:db:df:
0a:a7:6b:57:89:00:37:4f:d6:52:3f:47:65:45:f9:
6b:65:7e:37:a2:5c:27:e0:b2:1f:4a:ed:9a:f0:8e:
a9:e8:9c:b3:18:3a:35:a2:78:87:0f:01:34:bf:3e:
e2:6a:d3:35:0f:07:d7:63:76:e2:1a:44:80:77:25:
7b:c5:de:17:18:78:6e:f8:b4:83:dd:ec:50:18:c8:
a5:77:05:ee:d4:c7:ee:12:9b:ac:5c:ac:7c:e6:91:
f9:f0:b6:8a:8c:1c:a8:da:b9:a1:15:a6:be:78:3e:
fb:bf:d4:16:ad:00:2f:58:fc:5f:64:4e:84:84:9c:
ba:25:6a:7f:ac:c7:46:fe:56:3f:8f:3a:f6:a2:d2:
14:15:8a:50:98:7c:45:79:3a:97:78:d7:78:54:93:
c0:28:6f:72:90:24:2d:27:01:39:a0:fe:14:3e:8c:
1e:82:8d:b0:0e:38:7e:b8:74:f5:55:90:6e:e8:ee:
e0:06:ea:11:2d:2f:ea:68:ed:df:e7:14:db:ba:60:
a5:e3:5c:5e:33:57:9e:c1:17:5d:74:ff:91:cf:6d:
92:98:03:30:a1:6a:6d:16:6e:bb:7b:79:0c:ac:7b:
a4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:04:EE:A0:DA:54:53:FC:05:D7:98:4B:72:44:B3:A3:66:DA:52:DC
X509v3 Authority Key Identifier:
keyid:AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:e1:1f:e7:b5:3c:ad:6e:ff:c5:47:34:52:dd:5a:6c:fe:ec:
39:7a:81:38:88:04:8f:26:37:02:71:3b:04:ea:3b:f7:02:d4:
fe:4f:df:78:93:c1:3b:a6:7c:01:2a:b9:06:52:4b:e1:28:04:
8a:c9:b4:be:f2:a4:40:ab:22:1b:09:bd:68:3f:25:79:a6:13:
00:8a:d8:e3:ba:de:a2:58:36:e6:1e:10:81:0f:ff:23:ee:12:
fb:2d:15:38:f6:4e:3f:07:7c:38:2b:e8:9c:41:1d:91:77:a3:
37:5a:6e:bc:80:21:48:30:a0:a0:5f:b7:59:6b:58:6a:98:bd:
2b:a4:b6:d3:5d:d2:37:4a:b3:ca:c1:03:35:6f:56:be:38:86:
e1:c4:24:5e:4c:e3:2b:63:1c:23:21:80:cb:85:1a:16:45:a7:
f9:16:9a:67:e4:ef:4f:e1:76:42:63:c4:14:38:4f:45:1a:7f:
8e:b3:44:8c:ae:c3:cb:a2:69:8c:48:b9:2a:50:09:f5:b3:b1:
82:60:d2:b0:e8:6e:42:3e:ca:a0:82:b5:ae:ee:00:86:aa:d4:
18:57:4d:1b:8c:f4:92:f6:c4:eb:f3:41:6e:ce:a6:1b:41:ec:
d2:05:cd:08:13:b1:2f:dc:b5:f4:05:e8:c8:31:34:ab:9f:cc:
01:8b:f8:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:52:33 2025 by rpki-client