Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
File: geTmB1l46pR2tkHOAIx4erKOXRM.mft (raw, json)
Hash identifier: Db6o4rk4ojwqdVo5wp3UaijdA9PIWFI5u/WJBle+1E4=
Subject key identifier: F6:8C:06:59:9B:A5:BA:1C:47:27:D9:B0:2C:95:2E:E3:27:16:29:88
Authority key identifier: 81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
Certificate issuer: /CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Certificate serial: 019A0034FD6D0900EF3A20EBE3E5E9AE5F36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
Manifest number: 16E3
Signing time: Mon 20 Oct 2025 06:01:03 +0000
Manifest this update: Mon 20 Oct 2025 06:01:03 +0000
Manifest next update: Tue 21 Oct 2025 06:01:03 +0000
Files and hashes: 1: dBbI1Z81Mloa7W2OzhoKXchOrRQ.roa (hash: cFMz5yq3xJCpOCH1TXFzmCMMTxw6N/8cLdoB9ZDvza0=)
2: geTmB1l46pR2tkHOAIx4erKOXRM.crl (hash: kOCjLMk6stn9sPIS+06tnYxUAN5VLJpB9g2JI6Yqms4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 06:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:34:fd:6d:09:00:ef:3a:20:eb:e3:e5:e9:ae:5f:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Validity
Not Before: Oct 20 06:01:03 2025 GMT
Not After : Oct 21 06:01:03 2025 GMT
Subject: CN=f68c06599ba5ba1c4727d9b02c952ee327162988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:61:1f:5a:6a:c0:1f:d9:35:5b:8c:08:15:0e:
ff:60:84:0d:69:79:cc:a6:91:1c:73:a8:27:ee:81:
f3:2a:58:65:a6:a4:30:ab:6f:c1:96:69:88:8a:ba:
7a:4e:77:61:0a:ce:8d:50:67:0f:1c:81:f8:08:e3:
94:c4:94:b8:f2:91:ab:8d:7b:d3:4a:91:29:0a:a3:
36:13:bb:5f:63:2b:9d:3f:32:b1:13:12:47:0f:9c:
02:22:5a:a6:b1:aa:63:3c:81:07:28:44:ad:e5:93:
78:ad:e1:0c:cb:b3:23:05:18:f7:62:97:21:75:5a:
42:fc:7b:be:26:ed:6c:b7:a8:88:6e:08:da:27:9e:
c5:96:49:f0:b3:15:a2:18:b4:a5:f4:0a:0f:37:6c:
8b:8f:78:82:fd:61:ad:06:58:09:7d:7a:a8:0e:ce:
d6:61:50:90:5c:da:e9:1c:58:a1:e9:16:44:bb:ff:
7f:76:6b:44:82:87:3d:48:eb:e5:5c:46:44:17:a8:
0d:39:ef:00:eb:70:c0:6b:27:4c:10:00:b8:91:05:
23:24:ee:b7:f9:a4:95:ab:3a:66:94:7c:7b:73:30:
8b:b9:d6:ad:7c:f1:8f:ca:59:68:8b:b4:6a:14:b9:
54:07:e7:23:07:79:f9:44:53:0d:3f:77:45:e2:59:
2b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8C:06:59:9B:A5:BA:1C:47:27:D9:B0:2C:95:2E:E3:27:16:29:88
X509v3 Authority Key Identifier:
keyid:81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:35:96:5e:11:f8:01:f2:36:81:b1:a9:79:50:ab:78:7d:7a:
fb:e2:e3:60:2f:b6:ba:da:40:26:f6:56:dd:c1:20:89:1e:06:
a4:23:2d:9d:e5:f3:88:35:22:69:23:db:14:fa:a4:89:5a:79:
a0:50:f0:00:37:35:49:27:4d:35:c5:c9:09:f0:4e:67:d1:3c:
48:b6:3e:2b:89:3a:2f:46:c7:2e:61:bc:35:a8:c3:cb:f5:b7:
66:59:d6:07:0b:37:f1:12:51:2c:7d:e9:d2:53:db:c7:7e:94:
56:7e:43:4b:99:0a:93:b8:ef:f6:98:91:58:48:95:f6:18:61:
f6:a1:09:74:38:4e:48:e6:19:23:e1:bd:3f:c9:15:22:ef:86:
b6:f6:c3:d1:77:b8:11:09:0b:97:e4:f2:f6:3f:b3:b9:d5:82:
03:d5:bd:1f:6b:f2:55:cc:58:f3:16:8a:c3:83:73:ae:f7:bf:
17:7f:60:5e:ac:e6:b8:e3:3a:9d:44:3e:9b:2b:89:98:11:f3:
43:87:0f:5a:80:00:58:2b:19:e6:3f:79:b1:68:1c:bf:a8:bc:
92:77:48:cf:62:67:e7:98:d2:51:06:ab:55:3e:9a:c9:a9:77:
80:b6:12:2f:0c:87:8c:4d:8e:6a:07:1c:b1:1d:f1:3b:a3:f1:
86:13:5e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 11:40:36 2025 by rpki-client