Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
File: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft (raw, json)
Hash identifier: H2k4E1fd5+d8hQDCGqTH7rhaQbBHwv/gZ2w6KdVK4zQ=
Subject key identifier: C7:46:F2:7A:E1:C1:3B:8A:DB:77:D0:6C:79:00:A4:4E:03:18:6B:34
Authority key identifier: D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
Certificate issuer: /CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Certificate serial: 019A7149CD41BE4B651C99AF9FD6D875F733
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
Manifest number: 0C66
Signing time: Tue 11 Nov 2025 05:00:53 +0000
Manifest this update: Tue 11 Nov 2025 05:00:53 +0000
Manifest next update: Wed 12 Nov 2025 05:00:53 +0000
Files and hashes: 1: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl (hash: KtvHiwJhNdS1g+kEBq4IzBgUfx10W5ctYl/kNlGdwig=)
2: It-Yns2Nwvw18OgbQ81pWbtQZ7M.roa (hash: 7H+X0erT0owXhcTltBjLEsiIIl6BxhT41pVVMePz04w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:cd:41:be:4b:65:1c:99:af:9f:d6:d8:75:f7:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Validity
Not Before: Nov 11 05:00:53 2025 GMT
Not After : Nov 12 05:00:53 2025 GMT
Subject: CN=c746f27ae1c13b8adb77d06c7900a44e03186b34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:45:cd:1a:81:fd:99:65:d1:57:35:7d:a0:90:
55:b1:35:1f:83:2b:91:91:cf:d6:5e:5f:1c:09:48:
bd:15:17:ff:da:cf:64:ae:3c:4f:2f:84:f8:98:4d:
1e:25:cc:52:fc:c1:d5:be:7a:f9:4f:c6:6e:17:a0:
4e:0e:f1:f8:85:48:76:cf:5b:73:9e:98:3b:e0:34:
bd:d3:22:78:2b:c6:52:7b:36:3f:a2:3b:bc:fe:28:
87:08:63:03:f5:fc:31:32:00:74:ab:df:f0:38:e8:
85:f6:5d:2d:3d:bc:c5:f6:40:22:8d:93:92:51:9b:
0d:f4:37:d4:0c:12:85:51:fa:ad:29:a4:ac:12:ba:
93:d8:c6:e8:cf:30:dd:5c:12:0b:75:78:48:3b:dc:
d8:72:68:c9:19:4f:15:59:dc:d6:6c:06:c3:51:cf:
dc:f7:5a:e6:a7:63:d9:a4:35:22:9b:9c:e3:2c:df:
96:33:57:5d:87:81:b0:46:c8:28:e4:09:e6:81:f3:
22:a5:16:bb:ac:30:02:cc:5f:65:7a:35:88:39:00:
3f:33:c6:00:03:f7:3e:2c:cc:8e:15:ec:21:ed:78:
b1:7c:f2:2d:b9:5d:d2:ef:93:f5:fe:7d:25:9d:32:
e3:b7:2e:ee:78:54:e7:d6:39:97:f3:9d:9d:37:5d:
fc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:46:F2:7A:E1:C1:3B:8A:DB:77:D0:6C:79:00:A4:4E:03:18:6B:34
X509v3 Authority Key Identifier:
keyid:D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:b4:4c:40:04:54:f8:76:09:9a:d8:28:37:88:52:6a:46:85:
71:95:15:bf:6b:0b:a1:51:fe:3f:d1:78:a7:a0:24:da:0b:98:
81:c0:39:28:3a:4c:92:c2:f9:a3:0e:5e:df:4e:36:11:25:f7:
e3:83:2e:ae:d4:0a:b1:d7:ba:ee:74:4b:0a:dd:b0:99:c5:16:
02:45:83:94:d7:a8:0f:95:20:ae:9b:ba:64:51:2d:7c:9e:54:
3a:e0:97:19:94:44:87:76:59:a5:4d:c7:56:ca:fb:2a:74:71:
4b:4d:bf:9e:ca:6b:0b:69:d0:20:bd:b6:4b:17:a4:b5:31:a0:
3b:7b:13:ae:0a:7c:b8:34:9b:66:1a:48:d6:1f:a3:9d:de:f0:
10:e8:82:f8:aa:aa:d8:40:94:3b:12:b2:7b:f7:95:b4:fd:c0:
36:5a:3a:2f:5c:3b:87:ea:a9:5f:a6:94:29:7b:c6:99:92:ae:
1b:e4:c5:da:bb:72:86:86:52:3d:32:2c:11:ba:4c:84:e0:a2:
3c:cc:d4:be:fb:e1:d7:91:c5:34:2c:6c:8f:06:c6:81:c6:83:
49:1a:a4:79:e4:f1:ae:8f:d0:3b:62:fe:1e:e3:d2:a2:1e:76:
e6:84:c8:f5:e8:a5:95:4f:a3:15:06:4b:50:4e:bd:5f:f9:20:
e8:e3:df:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:48 2025 by rpki-client