Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
File: rCGhE9G6AdEH_feRMIwKUfPQbdo.mft (raw, json)
Hash identifier: cPdzP+iSIitRDmvIwMBESk3S9mrXdMiP9040fE/6udU=
Subject key identifier: C8:DB:40:4D:7F:4A:A7:8D:3B:46:F1:5F:06:87:FA:3B:06:3F:77:A6
Authority key identifier: AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA
Certificate issuer: /CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda
Certificate serial: 0199FAA10176646601DBACB21FEDD9B382A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
Manifest number: 05CA
Signing time: Sun 19 Oct 2025 04:01:19 +0000
Manifest this update: Sun 19 Oct 2025 04:01:19 +0000
Manifest next update: Mon 20 Oct 2025 04:01:19 +0000
Files and hashes: 1: 0Yi_JnLw94TXhrC5nYi7nz8aE9Q.roa (hash: PcfAm6zv9EFMWgISV3l4XmKFXD7W1Vvh/DKcICx2Ck4=)
2: rCGhE9G6AdEH_feRMIwKUfPQbdo.crl (hash: 6c0+rfDN0n7lLAGWdSIr6CJtpnvimPFts+Kq+cu2mt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a1:01:76:64:66:01:db:ac:b2:1f:ed:d9:b3:82:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda
Validity
Not Before: Oct 19 04:01:19 2025 GMT
Not After : Oct 20 04:01:19 2025 GMT
Subject: CN=c8db404d7f4aa78d3b46f15f0687fa3b063f77a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:85:2a:f1:b4:ee:de:82:55:fc:a8:f4:b9:6f:
0e:85:2f:4c:7b:0b:5b:cb:03:7a:72:c6:8a:58:10:
16:bf:a7:30:e0:98:54:5f:cb:fb:8e:25:86:b2:04:
a5:77:b7:6a:88:d2:2e:0f:cd:67:85:27:b9:08:52:
d5:13:04:6e:34:17:10:1a:b7:d1:79:9c:16:21:5b:
93:5a:54:a9:cd:04:1e:60:85:7e:9e:50:5c:3e:64:
0b:b2:6d:7e:c0:7d:06:bf:03:bf:59:c5:3a:8a:bf:
d4:87:b4:41:0e:31:17:4e:81:6d:3e:84:cf:ca:c7:
73:7d:b4:bb:c5:1c:da:2a:31:93:90:2c:b7:a3:91:
07:27:15:37:77:35:62:89:ab:05:3f:6f:d0:e0:88:
9f:dd:47:31:09:4e:83:49:6f:41:c4:79:b8:87:d5:
65:05:6a:23:f9:48:46:a3:44:ac:e6:ae:08:27:14:
8a:fb:5d:2a:30:02:c0:43:73:d1:4f:1f:68:f2:fc:
dc:16:01:d7:5d:12:9f:4a:9a:ba:32:d0:ea:4d:e2:
0e:b0:ff:86:7a:3e:60:1c:fd:80:1c:d0:a3:7c:c6:
cf:5c:48:37:46:32:3e:e4:fa:54:8a:30:f7:dd:da:
cb:4e:b3:43:1b:a5:7c:d6:7c:cc:cd:41:2b:09:52:
73:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:DB:40:4D:7F:4A:A7:8D:3B:46:F1:5F:06:87:FA:3B:06:3F:77:A6
X509v3 Authority Key Identifier:
keyid:AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:f7:30:b7:02:52:61:b1:16:5a:eb:40:89:bf:3d:c9:3b:e2:
5c:3b:a9:41:4b:e3:4a:91:ea:38:8f:c8:fc:bf:24:f2:d8:7a:
0d:29:41:b5:78:7f:8b:12:95:59:8d:30:b3:8a:53:dd:28:5c:
e9:ac:0f:73:da:f9:a0:1d:00:d4:79:02:b6:0e:9f:8c:6a:fa:
fa:f8:c5:18:f5:f3:2d:28:5d:09:04:21:7b:25:d7:71:a3:ac:
ea:54:79:32:96:e5:b1:11:bd:83:d6:b9:20:94:14:8f:17:42:
3b:00:7d:21:4b:f5:29:39:8e:58:21:93:09:5f:b8:22:ce:86:
06:24:ad:5b:95:d8:d5:a9:5a:79:87:d0:6c:2c:2c:e3:33:b8:
4c:88:35:57:65:10:3d:1a:ae:56:59:7f:c3:75:ba:02:5c:23:
73:a2:77:42:95:5a:45:25:02:0f:b5:01:d1:2a:09:bd:fd:fc:
58:2b:ec:ae:1c:ba:45:8b:f8:53:9b:ab:68:78:0a:44:dd:c4:
20:f1:97:3d:0a:f5:4c:4b:6d:f1:16:e4:1d:da:06:c4:5e:27:
8a:6a:fd:1b:df:c5:24:fa:ad:96:98:02:8b:e7:41:76:f5:53:
7d:e8:45:21:7f:79:7d:43:de:cb:9d:87:02:b4:ba:4a:be:be:
11:e0:07:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:14:08 2025 by rpki-client