Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
File: EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft (raw, json)
Hash identifier: 8ePDC4GuOYyBXqyc/dr+8rl5ovp4jj6IX9CqrUHHSbw=
Subject key identifier: 0C:51:CC:4C:4F:A1:FD:83:C0:B6:B9:F5:5D:B3:C9:C6:A4:82:15:2A
Authority key identifier: 11:70:35:61:35:AD:F4:7E:D9:70:8C:B0:A1:36:80:89:4C:23:39:EA
Certificate issuer: /CN=1170356135adf47ed9708cb0a13680894c2339ea
Certificate serial: 0199FDD90C576B37CA279470A77E8DD0CD34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
Manifest number: 1675
Signing time: Sun 19 Oct 2025 19:01:23 +0000
Manifest this update: Sun 19 Oct 2025 19:01:23 +0000
Manifest next update: Mon 20 Oct 2025 19:01:23 +0000
Files and hashes: 1: 8u57ArQxKO_4JRsiP8ig9E_nJLs.roa (hash: ifzsEyICQHhNmNaBIhgOvnazrnhVrug9jj3mLB5h7cs=)
2: EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl (hash: yLGRZ2FowFPXQNDfcZFt3nRGEdnUQpZAB5Bcog6XPnc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:0c:57:6b:37:ca:27:94:70:a7:7e:8d:d0:cd:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1170356135adf47ed9708cb0a13680894c2339ea
Validity
Not Before: Oct 19 19:01:23 2025 GMT
Not After : Oct 20 19:01:23 2025 GMT
Subject: CN=0c51cc4c4fa1fd83c0b6b9f55db3c9c6a482152a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:12:a1:f4:5c:5f:4d:fa:05:90:b0:74:86:59:
22:e2:6d:2a:cd:90:71:06:41:c5:5c:52:83:68:a0:
04:a7:8a:73:88:0d:f1:a7:93:0a:0b:4b:84:35:9b:
fa:da:93:79:8e:e1:24:05:47:9b:0a:d9:d1:0e:34:
83:6b:be:5f:7c:74:6f:4e:67:c0:4f:58:ce:63:f5:
17:6d:92:f3:6a:5a:26:1f:25:60:ef:97:31:3f:84:
00:0f:06:ef:0b:87:3a:1b:08:86:8a:64:9b:4e:b0:
5f:c5:0e:76:55:78:f8:10:f8:0a:e8:7e:c5:9b:80:
c4:a2:f4:04:14:a7:37:61:31:be:52:7a:8e:93:73:
61:f9:d0:3a:03:49:23:91:14:c4:09:30:1e:46:e4:
c9:26:7f:09:c6:9a:ec:c4:b1:a0:b6:3e:7f:58:e0:
e9:7b:23:22:6c:f9:db:be:85:b2:d9:dc:f3:c3:19:
73:b0:7b:02:50:69:a3:9a:59:cb:04:9f:18:f8:fa:
49:0d:4d:55:ed:b1:d3:11:37:6b:bc:a9:1b:87:44:
95:da:4d:d3:ab:d6:a3:b2:96:bb:74:ef:92:c9:05:
ce:4c:6c:c9:5e:e9:2f:b5:e9:42:72:7d:9a:c9:ec:
09:d3:01:fe:65:e4:87:44:c3:6a:fe:14:05:31:67:
0e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:51:CC:4C:4F:A1:FD:83:C0:B6:B9:F5:5D:B3:C9:C6:A4:82:15:2A
X509v3 Authority Key Identifier:
keyid:11:70:35:61:35:AD:F4:7E:D9:70:8C:B0:A1:36:80:89:4C:23:39:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d3:f6:ec:dd:d7:2e:3e:69:54:18:d6:2d:cc:94:ae:c1:2d:fa:
94:02:2e:70:ab:96:ce:e4:1a:90:cd:09:a2:8b:b7:47:2d:15:
51:f9:4a:71:f3:a4:0f:80:ae:05:54:61:af:a2:cc:14:95:93:
e5:de:4d:c5:c1:47:79:75:93:b3:00:00:ce:f9:c0:c7:13:37:
75:10:8d:82:33:40:f0:51:42:01:93:d2:9b:10:19:f4:f6:80:
72:df:14:e8:ff:db:60:b5:f8:25:80:b0:0d:3d:1d:89:80:b0:
46:11:90:f7:9b:4d:69:92:40:94:c2:2a:e5:ec:34:f0:5a:91:
2d:6e:a8:94:f5:00:eb:77:e4:ab:d8:7c:1b:9f:bc:ff:ff:61:
1c:cf:55:56:8a:9a:2a:30:2f:3b:a7:7f:3c:61:45:f2:37:72:
77:63:9c:95:e1:c0:58:5e:ac:1d:66:ca:6a:39:4e:5d:53:34:
04:8c:87:6e:b2:8d:b9:10:99:8c:53:85:8a:7a:ca:6e:e1:01:
92:6e:6c:9e:16:28:05:01:5b:1d:00:69:24:f6:e5:fe:15:29:
84:d5:39:c0:9a:ea:08:90:f2:6e:31:10:3a:c0:07:32:5d:50:
2c:55:37:cb:53:ed:9e:eb:3e:32:c2:8b:9f:bb:0b:79:2d:1c:
a8:70:ea:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:50:10 2025 by rpki-client