Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
File: CFeH5l60_NZuM0C2Kt5HygCRnc4.mft (raw, json)
Hash identifier: IowAksU2qkrdWJBatQpAV42c3Og0OxwnApLDL5n887U=
Subject key identifier: 76:70:95:CA:DC:E3:C3:54:C5:44:E5:21:5F:C6:BD:B8:B4:D4:0D:AD
Authority key identifier: 08:57:87:E6:5E:B4:FC:D6:6E:33:40:B6:2A:DE:47:CA:00:91:9D:CE
Certificate issuer: /CN=085787e65eb4fcd66e3340b62ade47ca00919dce
Certificate serial: 0199FB7C8D35ECA731CBE4793CB72A432474
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
Manifest number: 0652
Signing time: Sun 19 Oct 2025 08:01:07 +0000
Manifest this update: Sun 19 Oct 2025 08:01:07 +0000
Manifest next update: Mon 20 Oct 2025 08:01:07 +0000
Files and hashes: 1: ADwJyFTnSoqJo76cybY4gze7w-A.roa (hash: ywnZb2Gs7P4sK9InqI7FaEEZlSRwjtQHnM1qlayDDgw=)
2: CFeH5l60_NZuM0C2Kt5HygCRnc4.crl (hash: brHDPYLIl8767le7PHEx1u+14zDzSrEQOK/gljgHv9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:8d:35:ec:a7:31:cb:e4:79:3c:b7:2a:43:24:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=085787e65eb4fcd66e3340b62ade47ca00919dce
Validity
Not Before: Oct 19 08:01:07 2025 GMT
Not After : Oct 20 08:01:07 2025 GMT
Subject: CN=767095cadce3c354c544e5215fc6bdb8b4d40dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:82:c9:99:7a:3c:db:ef:af:9b:b9:d8:d3:40:
8c:24:0e:e4:bc:ba:11:0a:95:48:e2:dd:cb:5e:d9:
d0:c5:b0:2e:4b:f4:e8:d3:7a:40:af:7a:27:17:87:
d6:6c:8e:d1:4b:a3:8c:57:57:ab:58:08:f1:e6:b3:
1e:fc:61:0e:bc:b4:97:62:62:79:b3:cf:4d:f4:0e:
d5:ac:fe:57:80:a3:53:2d:78:dc:ad:48:f9:f2:f6:
8c:95:64:4e:d6:38:01:32:25:71:44:95:71:44:85:
8d:fe:15:9c:7a:c5:99:38:23:2e:be:e0:bb:05:25:
84:75:0a:10:a7:01:3d:23:c9:6d:00:68:1e:52:7a:
c3:88:b0:8d:60:3b:de:b4:3f:42:57:1a:4e:3d:e6:
f1:77:e9:9f:ea:59:fe:3b:b7:f4:b6:2b:9e:cb:19:
85:a0:6c:59:ce:1c:91:0d:f4:63:84:50:e0:01:5e:
05:86:e3:ae:dc:54:62:5c:ba:22:ce:cd:94:60:74:
19:b6:94:06:73:c3:46:ec:e0:63:95:cc:f5:65:51:
db:10:11:23:0c:6e:e1:4c:87:21:42:f2:d2:46:0a:
76:b1:20:ac:ff:fe:01:21:eb:1b:56:4b:ab:fd:ce:
77:09:5e:e0:e4:3b:da:1d:87:50:c6:cf:65:2a:b8:
48:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:70:95:CA:DC:E3:C3:54:C5:44:E5:21:5F:C6:BD:B8:B4:D4:0D:AD
X509v3 Authority Key Identifier:
keyid:08:57:87:E6:5E:B4:FC:D6:6E:33:40:B6:2A:DE:47:CA:00:91:9D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:2c:b9:31:13:34:d7:b0:c2:38:e6:e9:df:2c:11:8b:69:a0:
eb:0a:19:83:4c:83:93:10:4e:0e:f3:ba:17:ff:cf:5f:80:c8:
6d:de:f1:e0:54:6d:8d:d8:82:27:72:9e:80:d3:f1:c3:64:1c:
ea:a0:c7:07:18:ab:fb:1f:35:4e:76:56:10:c7:63:34:2d:ea:
03:3b:86:87:56:32:52:0a:ae:22:6e:8d:a0:b5:ef:2d:f5:03:
7a:cb:61:8d:78:2e:29:af:15:61:7b:5e:5f:f9:8c:60:33:8a:
16:a0:31:e1:12:12:f0:95:5f:cf:b8:9f:34:69:d1:5e:4f:03:
6f:26:7d:00:b9:e4:b5:41:3d:2d:36:4c:5b:b9:df:78:6b:c8:
d5:55:cb:e2:be:1c:21:15:54:4f:a7:ab:c1:1c:bc:a1:8d:bd:
79:ba:33:95:0b:77:2f:d3:7d:0b:62:c8:e3:57:1b:bc:85:9f:
ea:84:74:50:2f:89:16:33:42:cc:e9:d8:7e:37:5e:5e:d8:c8:
84:9f:d8:05:6f:b6:48:26:8a:20:2a:01:3f:24:49:a6:86:44:
d9:2d:6b:5e:56:83:70:e1:80:cb:a7:c9:bb:34:03:3e:bb:90:
83:90:2f:a0:5c:a2:e8:2c:22:2a:3d:84:97:90:f4:69:89:e9:
b2:cd:7f:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:26:02 2025 by rpki-client