Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft
File: dK6PGUm6f0vCM-bCF6hBjKThEys.mft (raw, json)
Hash identifier: OAA1/8OhOtYH6n171qX3NLwcslmrlEhsnbNcCtdV+Lc=
Subject key identifier: 8F:9F:75:0F:88:61:AB:35:A5:95:86:2A:A4:54:E8:E8:86:45:6B:0A
Authority key identifier: 74:AE:8F:19:49:BA:7F:4B:C2:33:E6:C2:17:A8:41:8C:A4:E1:13:2B
Certificate issuer: /CN=74ae8f1949ba7f4bc233e6c217a8418ca4e1132b
Certificate serial: 0199FBEB4D0CDA2789FB7085B0DBD5A174D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft
Manifest number: 0D
Signing time: Sun 19 Oct 2025 10:02:05 +0000
Manifest this update: Sun 19 Oct 2025 10:02:05 +0000
Manifest next update: Mon 20 Oct 2025 10:02:05 +0000
Files and hashes: 1: dK6PGUm6f0vCM-bCF6hBjKThEys.crl (hash: fMUAg9SZALDp3a/ROYClO5vlpsJ34cMKbyToONeO5bQ=)
2: s5e-ZlSvSg6pPTZMod93h6uXFpI.roa (hash: OsYWmyTzqnpOCUuLjSbv55rjF6rP9l3X0fvalm8CtqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft
rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:4d:0c:da:27:89:fb:70:85:b0:db:d5:a1:74:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74ae8f1949ba7f4bc233e6c217a8418ca4e1132b
Validity
Not Before: Oct 19 10:02:05 2025 GMT
Not After : Oct 20 10:02:05 2025 GMT
Subject: CN=8f9f750f8861ab35a595862aa454e8e886456b0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8b:15:69:ce:48:e7:27:96:76:97:5d:1f:81:
5d:3c:d5:97:ea:a4:ae:2b:88:fa:91:aa:24:97:5a:
bb:76:ff:a0:74:2c:cc:d7:97:05:c0:3f:21:8d:00:
ce:a4:5e:34:5f:9c:ae:ca:79:cf:6c:a1:d7:69:15:
b6:3e:a1:27:6b:d9:96:90:53:55:40:72:5d:77:dd:
81:2b:61:e9:1f:cc:89:5a:ce:a2:84:46:6a:cb:19:
af:d4:45:82:27:31:ab:51:de:d0:0b:d1:06:c3:35:
32:ca:0d:38:27:83:ca:2f:c4:1c:39:44:82:2e:41:
15:b1:d1:28:08:2b:2a:d5:b7:91:c8:e5:79:59:fc:
08:4c:2b:8f:70:f6:52:41:70:67:33:5e:4c:ad:a1:
e5:86:80:f2:d1:54:ad:ff:37:cc:16:9e:d4:cf:83:
75:85:2a:71:27:b6:95:21:68:ea:08:0a:2e:18:45:
ce:1d:c2:9f:6f:53:78:e7:9a:0d:ee:ce:77:81:49:
e6:af:b7:b3:59:cc:4b:aa:09:e6:7c:be:5a:ac:fe:
21:18:94:e5:25:9b:0f:5c:23:b4:32:44:02:a1:93:
1e:ce:3c:f1:96:db:6f:b0:e4:e1:27:40:9c:24:96:
64:7a:48:18:1d:04:55:01:dd:d4:ae:1b:cd:80:b6:
5c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:9F:75:0F:88:61:AB:35:A5:95:86:2A:A4:54:E8:E8:86:45:6B:0A
X509v3 Authority Key Identifier:
keyid:74:AE:8F:19:49:BA:7F:4B:C2:33:E6:C2:17:A8:41:8C:A4:E1:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:29:8b:30:03:18:42:5d:d5:70:6f:c8:85:ec:27:77:09:99:
0d:7b:e9:92:9f:87:1a:43:89:38:7c:40:4c:6a:c5:f0:e8:1e:
4f:51:ea:27:4a:68:1e:32:d7:0a:55:fc:10:55:8c:31:54:53:
95:55:02:a7:1f:98:08:cc:6f:81:b3:6e:52:7f:42:20:a7:e1:
02:dc:5a:65:f0:ae:80:d3:1e:82:f0:3d:e1:68:1b:6c:71:0d:
18:66:ad:ff:1c:4c:9a:c6:ad:bb:f7:e8:f5:1f:e5:93:ae:c5:
a7:ec:bf:f0:67:9e:a6:d3:1f:2d:17:03:56:61:93:b2:57:12:
02:56:d9:7f:2e:88:21:6f:36:9a:b4:a7:c8:9c:ef:b2:cc:ac:
de:52:b8:07:f5:69:0e:79:5e:fe:b8:60:20:2b:cf:9c:c6:8f:
47:66:bf:40:f9:da:88:00:06:e0:d4:b1:05:53:95:ee:da:f1:
ef:4d:e6:f2:71:96:78:f0:84:19:80:17:ae:69:dc:17:32:05:
ba:59:9b:31:dd:00:85:df:9d:ba:eb:8e:00:5a:c8:07:24:7c:
68:29:fe:45:bb:01:18:b6:ed:72:01:25:83:b5:5c:4b:20:43:
a2:0c:6e:d7:3b:04:85:e6:06:19:37:3c:2b:85:f3:e2:8b:a9:
4a:fc:fc:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:39 2025 by rpki-client