Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
File: mRQlj7nTZXszdhQr_GPazk-CEcQ.mft (raw, json)
Hash identifier: PV5JJOYjlQ2oi1+REnYia+h34Su5Ls0IBVTan2qaBwM=
Subject key identifier: 90:6F:2D:C9:1C:29:BD:6C:BB:5D:C0:3C:EE:51:64:FE:21:EA:76:4F
Authority key identifier: 99:14:25:8F:B9:D3:65:7B:33:76:14:2B:FC:63:DA:CE:4F:82:11:C4
Certificate issuer: /CN=9914258fb9d3657b3376142bfc63dace4f8211c4
Certificate serial: 0199FB7C979CFBCEEE0A05EDAEE303676E4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 08:01:10 +0000
Manifest this update: Sun 19 Oct 2025 08:01:10 +0000
Manifest next update: Mon 20 Oct 2025 08:01:10 +0000
Files and hashes: 1: 2JXcaA80r7d-EIDaMijpbBPasoc.roa (hash: gf95/nywAYIZdNJbfxynwrtY4coqSX3R7aiF8YJONgo=)
2: mRQlj7nTZXszdhQr_GPazk-CEcQ.crl (hash: 7py05LGXDtqB3l3kG/2PxFMtu39HgxEcrGi10zo+v8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:97:9c:fb:ce:ee:0a:05:ed:ae:e3:03:67:6e:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9914258fb9d3657b3376142bfc63dace4f8211c4
Validity
Not Before: Oct 19 08:01:10 2025 GMT
Not After : Oct 20 08:01:10 2025 GMT
Subject: CN=906f2dc91c29bd6cbb5dc03cee5164fe21ea764f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9f:60:37:03:ff:c1:12:69:c1:55:d4:85:88:
aa:11:c5:20:96:69:93:fe:10:2c:69:33:48:aa:1d:
b5:4e:fb:11:07:b3:3f:e8:26:4e:4c:13:e6:76:b7:
05:f3:8a:70:33:b5:fd:f4:0f:ae:4b:56:e7:a0:83:
8a:e8:0e:bf:ed:f2:07:c0:e5:16:d7:2e:89:42:0d:
63:e8:f9:92:4b:7d:30:fd:be:be:1e:e1:ee:47:5c:
8d:33:1f:3c:97:08:66:7d:2c:d6:a1:29:21:78:98:
2b:c0:dd:dd:c5:ac:2a:31:c7:c1:7a:9b:77:b2:50:
9c:f7:00:db:06:a7:21:7f:a9:11:ea:1e:e4:fb:bd:
c6:1a:12:c5:8e:8d:68:f3:06:2b:ea:75:5e:4c:63:
53:8e:b1:b0:0e:f7:58:45:91:39:d9:b4:4a:ac:f1:
0e:72:23:ca:29:85:35:31:f8:76:98:e7:dc:5a:c9:
00:96:63:55:6d:14:ea:5a:0e:2a:84:39:3a:0c:38:
97:bf:d9:74:f4:d9:0a:87:a6:bd:b3:11:83:f8:7d:
54:0d:70:25:07:d2:73:ab:fd:87:67:6c:f8:82:43:
d9:1a:a6:6a:44:48:d8:e8:66:8b:31:b5:2a:40:dc:
77:43:d7:76:8d:a7:d6:60:3f:d5:dc:30:d8:d6:5b:
02:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:6F:2D:C9:1C:29:BD:6C:BB:5D:C0:3C:EE:51:64:FE:21:EA:76:4F
X509v3 Authority Key Identifier:
keyid:99:14:25:8F:B9:D3:65:7B:33:76:14:2B:FC:63:DA:CE:4F:82:11:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:ad:61:f0:8e:de:44:a5:81:9e:e0:08:53:b7:a2:30:cf:fc:
77:e7:5f:cc:43:94:2c:f3:23:49:4f:0a:07:8e:27:d7:ae:7b:
78:23:b0:8b:3c:af:79:43:9f:45:61:a8:9f:4c:b8:99:72:f7:
0d:aa:7f:d2:72:ee:94:ba:5f:72:13:9e:ab:c9:21:de:ef:e8:
d9:8b:8c:5b:38:e3:b4:f1:96:f3:b1:e2:ca:f7:e1:a3:65:75:
4d:8a:e3:42:b1:11:12:d0:62:1b:6d:a2:8b:ef:b1:0d:2d:6c:
a3:01:e0:c8:1f:df:e0:96:30:3d:90:6c:ef:16:0e:b4:e4:e2:
d2:5b:97:cc:6f:3c:9f:9f:a4:99:fe:17:82:b7:6d:30:54:15:
6d:58:ae:1b:0a:c7:2a:e3:b8:a8:91:bf:33:b0:c9:1c:37:f3:
1d:78:28:ee:1b:8d:f6:10:9f:76:46:58:34:74:16:0d:72:d5:
b9:75:70:e8:5d:ac:43:a0:6a:47:fc:9d:63:26:ee:b0:1e:1a:
5f:ce:dd:8c:d2:a6:e9:74:1a:13:b1:b7:37:6f:4f:cb:ed:36:
1c:ae:58:e8:3a:3e:83:bc:fa:5a:f9:fb:42:05:75:ea:a0:ab:
23:9e:40:1d:c7:2d:b1:fc:d4:af:8f:1d:4b:f6:c3:c8:ec:c4:
1a:6e:f5:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:48 2025 by rpki-client