Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
File: dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft (raw, json)
Hash identifier: nB1Acaw+KRdd1WU7pOY3awHr43wMNhCivJp91UMrAN0=
Subject key identifier: FB:C8:E0:9D:87:87:C2:79:40:07:71:D4:3F:6F:77:26:A9:83:1F:5C
Authority key identifier: 74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
Certificate issuer: /CN=74ae941a681c1586379e07247dcc19f3f41035d8
Certificate serial: 0199FD340386D624F300A95FA0D492390E7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
Manifest number: 0E80
Signing time: Sun 19 Oct 2025 16:01:08 +0000
Manifest this update: Sun 19 Oct 2025 16:01:08 +0000
Manifest next update: Mon 20 Oct 2025 16:01:08 +0000
Files and hashes: 1: aRphps94ueev9_cb0Fbr1t6EWos.roa (hash: qY/6yr4D72wfd0je0UgbA5pXBnLSwy4IbEDXkYKHi6c=)
2: dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl (hash: jUAelbyhXPwMf7JoR+8dGWhCJOGFb8aj5AMMom88jUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:03:86:d6:24:f3:00:a9:5f:a0:d4:92:39:0e:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74ae941a681c1586379e07247dcc19f3f41035d8
Validity
Not Before: Oct 19 16:01:08 2025 GMT
Not After : Oct 20 16:01:08 2025 GMT
Subject: CN=fbc8e09d8787c279400771d43f6f7726a9831f5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ca:e2:ea:b8:86:ad:a7:99:7e:4b:91:95:d5:
24:cf:af:2f:2f:ba:ce:10:c8:82:4c:92:f2:26:0e:
ee:8e:42:0e:5c:54:4e:a3:3a:92:33:e2:d7:fb:3f:
c5:62:2a:13:6f:26:ba:ae:92:3b:9d:c3:9a:39:2b:
bf:dd:0c:a6:24:b8:a1:29:ee:2a:dd:ec:24:25:31:
eb:f4:af:58:5e:93:71:c0:a5:66:03:4c:a0:97:7f:
cc:c5:3f:23:a8:27:bd:c5:50:a5:31:33:87:14:23:
3c:e6:b3:52:4c:6b:4c:cc:a1:62:15:cf:7a:1a:2a:
c9:6b:e0:96:61:77:fb:3a:c5:a4:a6:18:c3:44:73:
e8:1b:94:de:19:7a:41:42:ac:a9:7a:c7:c6:ee:1a:
dc:ff:b1:be:3d:cc:57:f6:2d:90:1a:89:0f:a0:23:
b0:6e:21:a0:c7:50:a4:6a:66:db:26:a1:19:e6:55:
43:36:77:0b:fb:ad:b2:ea:ee:95:15:0b:f6:d2:36:
fd:be:55:40:f7:56:18:cc:56:71:91:98:6e:29:fd:
c6:ed:5a:7f:80:b1:1c:e8:69:00:fa:a5:96:d9:a1:
e8:55:d6:91:27:35:5f:d3:bb:e5:ab:a9:ca:0a:05:
b2:36:7d:3b:ea:12:06:94:c3:f0:fa:16:97:ab:48:
53:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C8:E0:9D:87:87:C2:79:40:07:71:D4:3F:6F:77:26:A9:83:1F:5C
X509v3 Authority Key Identifier:
keyid:74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:e8:be:34:e5:97:fd:38:a4:ed:3a:e7:89:71:aa:24:d6:80:
51:36:49:98:9d:f6:30:69:be:1b:23:1f:46:19:84:eb:99:15:
6d:41:66:95:4d:b3:4a:f4:0e:a2:29:a5:24:f9:c9:c3:05:ff:
99:bd:c3:c3:40:33:9f:b5:5f:73:6e:15:c9:04:53:f9:72:f8:
d1:ad:45:82:06:45:95:15:8d:47:f5:83:64:30:29:0e:fd:56:
40:d1:f4:31:21:87:4f:6c:5d:c9:4c:c4:4e:c9:c5:2a:d2:ac:
39:68:0e:d9:d3:d7:1c:7a:ae:9c:56:7a:92:8b:5d:0b:c7:f9:
61:28:17:48:58:88:a6:66:1b:e7:c9:53:40:32:a6:ea:a5:d5:
d7:7c:55:d3:13:50:88:11:e3:9e:52:87:d2:89:9c:f5:36:ca:
55:ff:6c:77:d9:e8:c2:7f:fc:c7:14:8f:be:51:95:bc:42:f4:
81:c3:79:2c:41:4f:0f:17:02:85:c2:17:45:4e:b5:71:af:5d:
7a:ae:86:c6:84:b2:e8:22:a3:ff:99:d2:6f:48:10:3a:be:78:
13:98:30:ed:6f:8e:ec:fc:f6:5e:d2:df:89:1f:06:2b:42:03:
d5:cb:76:eb:6a:34:41:ad:27:71:fc:98:4e:4e:53:31:48:65:
ed:a7:4a:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:39:41 2025 by rpki-client