Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
File: cHdwf2aXiCaodeuNLrMzvthWlmc.mft (raw, json)
Hash identifier: yc9yR/dArkEnNkFnn6+/VP/7xezpCT9us09KvsMiqVM=
Subject key identifier: AF:DC:AF:65:15:74:79:C6:BC:A7:35:52:E8:1B:FD:51:64:BA:1D:69
Authority key identifier: 70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
Certificate issuer: /CN=7077707f66978826a875eb8d2eb333bed8569667
Certificate serial: 019A2478E268D38F0BC923F2C4C56D751C95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
Manifest number: 08DD
Signing time: Mon 27 Oct 2025 07:01:33 +0000
Manifest this update: Mon 27 Oct 2025 07:01:33 +0000
Manifest next update: Tue 28 Oct 2025 07:01:33 +0000
Files and hashes: 1: ZBqGiL5Lwt5_4rzPo7SO0cTda9c.roa (hash: KELG75sz8Tw2WawKyeiPVA4v+ezxNcK7f4e9XzFuUUw=)
2: cHdwf2aXiCaodeuNLrMzvthWlmc.crl (hash: RQ3edD0uc3II8nCZ+kDI2nPaoaoHEosYqrRf9gC7mac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:78:e2:68:d3:8f:0b:c9:23:f2:c4:c5:6d:75:1c:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7077707f66978826a875eb8d2eb333bed8569667
Validity
Not Before: Oct 27 07:01:33 2025 GMT
Not After : Oct 28 07:01:33 2025 GMT
Subject: CN=afdcaf65157479c6bca73552e81bfd5164ba1d69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:15:cc:78:7f:ad:b8:36:be:8b:2b:5f:89:ac:
5e:57:d8:ab:ba:c5:37:a1:06:93:12:53:47:22:17:
48:f6:89:68:73:83:d6:b7:ab:30:7e:ec:ec:b1:4b:
ca:e2:63:f0:bd:09:46:d0:a9:e0:c6:1f:67:11:cc:
d1:54:18:dd:1e:ab:8a:62:0b:68:75:dc:54:53:46:
76:89:af:a9:b7:55:c7:50:ed:bc:38:6c:15:ce:01:
c5:46:fc:8a:e5:22:76:45:16:61:23:94:63:18:c1:
8e:44:2e:52:1e:57:16:68:03:4c:2a:5d:63:c1:48:
17:03:fd:cf:63:bf:d9:ac:53:84:22:7b:6e:a7:93:
63:23:cb:1b:f5:db:76:d6:c1:d7:81:be:5c:12:d8:
5d:82:3f:7c:a4:82:e4:ff:7f:bc:38:db:bd:cf:a3:
e4:00:ae:1a:0b:56:1f:a9:84:64:0d:fd:49:f9:dd:
b1:ef:71:f3:6e:46:59:0f:a0:ec:52:2e:37:e2:aa:
03:d7:c1:48:4f:86:0f:a9:d1:20:6a:a1:2c:df:dd:
c2:2c:b8:a3:6c:2e:d6:d8:1c:d6:a3:04:85:61:10:
59:3b:08:f7:9f:42:0b:76:6b:b7:5e:92:20:8c:00:
64:f0:92:57:44:c9:c1:7b:1b:53:de:4d:99:2a:bf:
25:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:DC:AF:65:15:74:79:C6:BC:A7:35:52:E8:1B:FD:51:64:BA:1D:69
X509v3 Authority Key Identifier:
keyid:70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:24:e0:c0:ed:b3:bb:53:4f:c9:09:9f:64:4b:ec:f8:e2:c0:
8f:b3:c4:69:e8:b1:22:ea:b4:f5:74:3e:c4:95:1e:2c:78:f4:
ac:0d:75:ee:65:6a:3c:b3:1a:de:dd:c3:c8:54:02:f7:e3:87:
c5:a9:69:ec:f5:38:9b:70:35:6c:22:e3:cc:65:95:51:61:cc:
1e:0a:c9:5c:8e:77:96:13:de:8b:34:37:20:84:ad:be:ed:ad:
0f:32:7e:ac:0c:57:1b:1a:03:98:ef:9d:3a:de:49:01:68:9a:
ae:af:20:32:2a:c4:bf:39:78:d5:51:db:d9:12:37:78:4b:9b:
13:55:2f:40:b9:7e:87:33:bb:94:95:29:96:03:45:0a:43:87:
17:9f:0a:42:ef:16:1b:c1:4e:cb:d5:69:6e:1d:44:aa:46:66:
7a:31:a2:4a:58:b7:f0:c0:43:c4:0b:a3:6b:37:d3:1c:6d:d0:
76:be:81:da:78:23:58:02:77:24:f8:8c:e8:94:50:d1:c3:b0:
22:7a:1b:ab:f8:62:44:c5:1c:0c:67:35:3a:3a:60:b0:c8:cb:
6c:d1:fd:c7:b2:c1:06:a1:a0:91:9b:05:db:d6:4d:4b:7f:19:
c3:64:69:7c:67:91:3f:43:f2:3a:fb:f7:cb:f1:4c:1b:89:a1:
6d:98:4e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 09:24:43 2025 by rpki-client