Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
File: 9H0DN3zBCPRAkSa5oMIBYyQhxko.mft (raw, json)
Hash identifier: Ttn0TtdAMOOU37p/WfGslcXwdyAPqKRHnQIed9h8jxc=
Subject key identifier: 8A:57:14:64:B9:56:F6:62:F0:68:56:C4:4B:2B:A2:49:69:D6:73:5D
Authority key identifier: F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A
Certificate issuer: /CN=f47d03377cc108f4409126b9a0c201632421c64a
Certificate serial: 0199FBEA8374FDCCCBF08E791AAC885E8643
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
Manifest number: 16DD
Signing time: Sun 19 Oct 2025 10:01:14 +0000
Manifest this update: Sun 19 Oct 2025 10:01:14 +0000
Manifest next update: Mon 20 Oct 2025 10:01:14 +0000
Files and hashes: 1: 9H0DN3zBCPRAkSa5oMIBYyQhxko.crl (hash: +7JRCilchI/K39EI/sWFShDFBxX7VtjBg8UeXI+9qtc=)
2: yhhMqOayivlP0HqWgBqkxI1f14U.roa (hash: w/NNRo63VlTAmPeepIG4fNxKMWjZVte8F0Xs65Wc7u4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:83:74:fd:cc:cb:f0:8e:79:1a:ac:88:5e:86:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f47d03377cc108f4409126b9a0c201632421c64a
Validity
Not Before: Oct 19 10:01:14 2025 GMT
Not After : Oct 20 10:01:14 2025 GMT
Subject: CN=8a571464b956f662f06856c44b2ba24969d6735d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ff:8a:a6:67:20:da:89:d0:bd:c1:f1:49:c5:
f0:61:4d:a6:ba:80:12:4b:a1:c5:b9:16:6a:34:1a:
65:6c:db:20:0d:75:ff:52:d9:96:7a:d6:55:a8:3e:
5c:09:7b:4d:d4:41:97:97:63:0f:62:a2:b0:9d:49:
bb:00:8a:d7:f0:09:8c:6d:68:9d:8d:2b:29:04:99:
0e:30:d3:e7:e4:74:a1:60:9a:92:71:e7:43:6c:fc:
be:47:75:0a:c1:1c:f1:2d:38:e7:4c:69:e8:ef:45:
93:95:bc:90:37:08:25:9f:be:d0:94:32:e3:fa:29:
bf:e8:67:4d:ad:aa:8f:89:6a:0c:af:e5:17:62:30:
ad:11:62:c4:a2:88:89:ad:c9:f0:54:dc:e7:10:ed:
fc:a5:00:9c:da:3e:bb:81:1f:ea:77:da:96:2c:ea:
8f:35:96:f7:f7:90:d7:3e:b3:5a:e6:07:70:18:7d:
aa:76:40:8b:19:1e:ad:07:38:b5:bc:90:48:6b:26:
6e:2c:ed:18:06:97:db:56:83:93:e9:bd:f6:fa:8b:
1e:97:d7:f7:7a:4a:75:c5:13:90:30:2b:70:d3:ac:
12:0b:ee:46:d5:2c:ff:20:0f:c7:ee:80:92:f3:0c:
a0:9d:56:f4:e3:ba:d5:93:99:26:bd:a2:60:e2:22:
a7:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:57:14:64:B9:56:F6:62:F0:68:56:C4:4B:2B:A2:49:69:D6:73:5D
X509v3 Authority Key Identifier:
keyid:F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:0b:ee:0f:98:d3:3f:4c:9c:aa:a1:af:2e:c5:48:bf:ca:cf:
58:ac:d5:43:16:1e:5c:51:c9:25:2a:88:f2:0e:cb:c5:e0:d0:
d3:79:94:79:6c:71:ef:92:61:05:8e:6d:64:ae:e3:21:64:0d:
35:a2:fc:c0:16:0c:a0:99:23:c1:bf:b6:18:ef:d6:7d:4d:b8:
1f:41:48:51:b2:c5:98:dc:09:e5:f2:ad:0b:37:61:da:8e:ba:
11:3c:a8:30:6d:29:00:c8:51:0b:4e:f1:cf:54:71:e7:e3:0c:
ac:10:0d:da:a7:74:93:0c:9b:32:0f:8d:38:ba:cc:65:11:8a:
69:d7:50:5a:81:5a:4e:20:21:53:c5:41:7c:b5:38:8e:6c:bf:
dc:27:1c:6c:d2:2d:50:a2:87:ef:66:5e:5e:a8:4c:4e:c9:ae:
56:c4:90:e8:5e:96:3f:08:0b:40:6a:2d:ee:70:31:e2:4a:c0:
b5:01:47:63:41:f3:f0:5f:73:e3:92:9e:21:7c:f1:44:02:29:
9c:88:5d:9c:c2:cd:cb:d6:b9:7f:9f:a5:4e:0a:c9:e1:48:d4:
4f:37:89:1c:f0:47:a5:54:10:be:0f:8d:5f:c6:75:4f:f2:ef:
17:74:74:bb:25:72:85:71:1d:d5:68:69:b0:bd:22:0d:47:b1:
28:af:f4:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:44 2025 by rpki-client