Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
File: tE-FORdNAL-ov95JBD9IXDpYdSU.mft (raw, json)
Hash identifier: Ghph81aoYi9rTXnv7Wmw7zf4+MkImDej8BgSFZwKi8o=
Subject key identifier: 66:F0:81:A6:C0:2F:B0:9F:91:62:32:E4:86:60:3A:04:EE:5C:28:6C
Authority key identifier: B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
Certificate issuer: /CN=b44f8539174d00bfa8bfde49043f485c3a587525
Certificate serial: 019A71B8F79389574C495A29D1A4082C28D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 07:02:18 +0000
Manifest this update: Tue 11 Nov 2025 07:02:18 +0000
Manifest next update: Wed 12 Nov 2025 07:02:18 +0000
Files and hashes: 1: tE-FORdNAL-ov95JBD9IXDpYdSU.crl (hash: 2bMVwylg2zRayKnSeQq9/FokpB30usmgk2HpwwKY3Hs=)
2: xUV-1OBQ9tZ_Xv0-wwfyT7s6w0s.roa (hash: kyqwYkE6bzY0EYwjT0bnHVarYHy1IZctjgwIpdkE7zI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:f7:93:89:57:4c:49:5a:29:d1:a4:08:2c:28:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b44f8539174d00bfa8bfde49043f485c3a587525
Validity
Not Before: Nov 11 07:02:18 2025 GMT
Not After : Nov 12 07:02:18 2025 GMT
Subject: CN=66f081a6c02fb09f916232e486603a04ee5c286c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:31:a9:90:9c:4d:30:a5:7e:d3:6e:0a:88:e0:
ec:c1:6c:09:40:36:56:a6:03:47:f6:88:92:b8:b5:
c7:d1:c4:37:9f:94:88:6d:97:5f:0e:96:c9:a2:3a:
42:e7:68:36:49:d6:3c:65:61:28:88:55:1e:8c:21:
b8:c3:a6:e4:cd:8a:49:35:0a:74:44:fa:07:64:17:
ab:d7:54:02:77:41:19:d2:d5:13:af:d5:52:20:ac:
76:f2:49:25:b2:4b:83:fb:18:52:50:1e:cb:4e:ef:
03:e0:e1:bd:ab:4a:23:33:df:58:6b:d3:c1:50:0e:
06:19:6f:0e:ea:a9:6b:e7:ba:7d:ea:cc:42:5b:b1:
c5:73:3a:d5:54:9b:8a:4c:8b:eb:9a:b1:d2:28:63:
d7:13:bc:75:8e:bb:8f:92:2a:2b:3c:32:d6:67:ae:
82:1d:9b:13:7c:23:7b:d5:f7:05:64:40:af:b4:e0:
28:7d:b7:23:40:f0:8b:53:cb:af:f0:4b:7b:76:65:
12:a7:41:88:bd:c0:71:db:a4:8c:9e:9b:e9:c8:54:
07:12:6a:ad:fb:ab:7d:59:02:6a:f2:78:f5:30:21:
95:1c:84:c7:25:ba:d8:14:93:da:4f:17:b2:82:58:
83:3c:3b:f4:64:ee:9a:67:4b:a0:84:8b:28:48:da:
b0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:F0:81:A6:C0:2F:B0:9F:91:62:32:E4:86:60:3A:04:EE:5C:28:6C
X509v3 Authority Key Identifier:
keyid:B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:b5:cc:69:af:e6:94:3d:39:91:39:88:6e:6d:1b:dd:ec:af:
10:9d:6a:55:98:62:0c:ec:b6:9c:e7:25:df:34:ee:b4:9c:a8:
7b:06:a3:2b:15:17:fc:94:b6:74:7e:8f:36:d1:7e:69:02:b8:
f9:c9:0a:b3:95:d9:55:96:1c:dd:01:c0:ec:3a:e7:d6:51:56:
ec:2f:22:d5:b4:22:cd:93:3a:80:7a:2c:3b:35:da:aa:3f:05:
7f:ba:f4:09:73:4b:9b:39:c7:8e:b7:40:6f:ce:3a:36:1f:7d:
6e:5b:63:34:89:a9:3c:f7:f3:89:fd:cd:c0:9c:e6:20:44:f8:
f1:eb:30:b0:63:39:00:1d:ce:2f:f3:ea:e6:ff:2e:22:18:4d:
37:38:41:43:50:82:8f:07:10:b9:6a:11:0d:a2:57:01:2e:e5:
25:7f:e1:9e:50:99:50:5f:47:a6:8a:c0:25:4c:49:90:37:0b:
9e:cd:df:ca:3d:26:ee:2e:c2:f1:15:bc:58:80:ce:68:2e:c3:
89:cc:b0:f8:3b:ad:38:70:ff:0b:9e:c5:15:d8:43:2c:9e:af:
53:ff:aa:b4:a0:fd:16:b7:0d:e3:d8:4c:c2:2c:a0:f6:02:84:
92:ce:52:df:5f:dd:5d:00:70:e3:93:a1:3a:f4:75:24:95:c0:
0d:7c:b0:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:22:34 2025 by rpki-client