Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
File: ruCNkzby5s0WXrcwKX_m0gyDw5o.mft (raw, json)
Hash identifier: C0kQoJPfH17/HR7lsGkiUuolGyUrt8aekywYgpQUeUI=
Subject key identifier: C1:12:CE:33:B3:C1:AA:4A:0E:A2:7C:F1:0F:1A:58:66:B2:02:D2:E8
Authority key identifier: AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
Certificate issuer: /CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Certificate serial: 0199FCC646AB398ADE31897DFBA3B4973C19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
Manifest number: 142D
Signing time: Sun 19 Oct 2025 14:01:16 +0000
Manifest this update: Sun 19 Oct 2025 14:01:16 +0000
Manifest next update: Mon 20 Oct 2025 14:01:16 +0000
Files and hashes: 1: BS_uFjltIa2QdarHmlrjr-N1lfU.roa (hash: In6YLEFgpwciZfoYuJdlvQqiCYVNTfn1vSODPqF0a14=)
2: KyGy1yiZWdO5Baarc34FhluuX6o.roa (hash: PluDSAEvqHUwzzXaYjhHiEYtCeH5Nq3YEFQLeyKhxg0=)
3: MTuQql9Rh88BHIoSEfi0N5xULhQ.roa (hash: c4KaJbDb+YQM6dcx+R5wyGu53GnRsEWM+y0F8Wui/6Q=)
4: aPIQbORfDqMdRus3FUsayPmmxSc.roa (hash: Bjwo2XfxvG4dmeK0piMxmJc9w9b8pe3Sc6uuX95IjTw=)
5: aTlzb3K-mNhSWkbEKv29Xc3ITT0.roa (hash: Y8Xw4D+ihA3z60B6zW48nfEFoOcri17+Bm+/jPd3INc=)
6: kL_2gvtUAFUX3-zbMD5AfdbkkFc.roa (hash: i5sBmgPlAzgh1HcdG7lTgrd/mdbOcJciFVKfQ5U2fAw=)
7: ruCNkzby5s0WXrcwKX_m0gyDw5o.crl (hash: s60khbH/Si9eEfFZEQI8kCZphV0/s13beW0j7TTpcpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:46:ab:39:8a:de:31:89:7d:fb:a3:b4:97:3c:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Validity
Not Before: Oct 19 14:01:16 2025 GMT
Not After : Oct 20 14:01:16 2025 GMT
Subject: CN=c112ce33b3c1aa4a0ea27cf10f1a5866b202d2e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a1:22:5a:be:f0:00:8c:f4:f1:0b:e7:40:5c:
a7:3f:cc:92:a1:20:78:b4:83:9f:2b:aa:79:e3:f5:
86:c2:71:ad:42:05:4e:80:18:04:77:e6:b2:2a:6b:
52:ce:dd:ae:da:3d:11:35:bc:b5:dd:47:66:12:c8:
e4:32:8f:a6:4d:58:61:ea:1b:b5:b6:bf:27:06:c1:
ce:94:84:e4:d3:f9:1f:92:d3:ea:ed:a4:1c:2b:77:
e8:4f:87:9e:20:23:9a:1e:8f:a3:c9:47:40:0e:65:
ea:e5:f5:62:11:c9:ab:cd:17:cc:b3:4d:d1:dc:99:
7a:ce:45:dd:09:8f:12:15:0c:f1:90:43:a7:04:0f:
85:7c:ff:d6:7a:f1:cf:88:29:24:09:d3:39:06:de:
5d:ae:5b:a9:fc:3a:2c:34:f2:eb:c6:c9:d4:c9:70:
9b:4d:b5:b3:c5:15:5f:ee:ba:78:7d:80:96:4d:5c:
e4:b5:bc:75:29:99:1d:0e:01:34:60:13:76:a5:da:
f9:08:45:14:ef:3f:d1:56:91:ca:83:e0:88:64:01:
3f:e7:af:df:cf:16:75:80:40:23:cd:da:43:60:62:
02:68:4a:6d:3c:4d:00:c7:9d:32:28:86:bf:5f:40:
5b:69:8d:d3:65:5c:b1:5b:ce:24:05:a2:40:a9:69:
f3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:12:CE:33:B3:C1:AA:4A:0E:A2:7C:F1:0F:1A:58:66:B2:02:D2:E8
X509v3 Authority Key Identifier:
keyid:AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:89:50:1b:a2:70:f3:c9:be:d4:fd:cf:f5:c3:c2:c4:19:b3:
e2:21:c9:12:6e:7b:32:b4:3e:79:32:48:3c:98:8c:9a:18:96:
33:2a:2a:6f:e2:a6:e0:ae:6c:a2:2f:b4:92:8f:6c:3a:db:76:
80:b7:e8:99:19:c7:e1:36:77:fc:76:32:1f:f0:fc:cd:99:0b:
d6:47:f7:16:7a:d9:6c:fd:59:4c:85:0e:9f:52:d1:fe:c8:97:
ba:d4:13:04:e4:87:3f:85:73:98:b1:b3:f4:58:22:22:93:b8:
d7:ee:53:10:1c:d2:fa:a4:bb:9d:d4:8e:dc:b0:77:72:12:5d:
bf:ad:cd:5a:3f:77:43:01:0e:35:b5:e5:5f:e1:1b:3c:dc:3f:
70:fd:4d:53:0c:59:d4:e2:a6:74:24:d4:e2:08:0a:68:20:3e:
d3:6a:3f:b3:7c:36:fc:32:e4:24:22:0d:9c:01:85:af:63:d0:
3e:ba:d7:35:34:92:85:78:4c:23:4e:69:13:9b:e7:0a:2d:70:
ed:27:77:e5:72:65:ff:68:c6:3b:c2:10:78:88:e5:74:41:ae:
87:68:be:3c:13:2c:08:23:da:a6:43:be:81:29:fd:c0:47:55:
04:14:c5:9c:bf:64:a1:3c:3b:1a:cc:38:e6:50:7e:ce:77:28:
71:95:3b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:17 2025 by rpki-client