Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft
File: cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft (raw, json)
Hash identifier: +PkEG585MbTwytiMPrC5EBJdB+ay93wmDt81MVSs/e8=
Subject key identifier: 56:E2:0F:4B:90:2D:3B:F7:82:7B:69:B9:7C:F3:30:DF:1A:F0:92:8C
Authority key identifier: 70:7A:F4:53:46:F0:6B:62:2A:0E:BB:B4:FF:9B:A3:3B:E6:F4:2F:1E
Certificate issuer: /CN=707af45346f06b622a0ebbb4ff9ba33be6f42f1e
Certificate serial: 0199FBEBE5B3A078A426BE54CFA4F4073A55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHr0U0bwa2IqDru0_5ujO-b0Lx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft
Manifest number: 14EA
Signing time: Sun 19 Oct 2025 10:02:44 +0000
Manifest this update: Sun 19 Oct 2025 10:02:44 +0000
Manifest next update: Mon 20 Oct 2025 10:02:44 +0000
Files and hashes: 1: Dg3_0N_QJLl_z9oMjas8amvsSl4.roa (hash: i//fT7WOmOH7LBZUXbS89Zg6KyN/Hg+cEJQRzh4C3DQ=)
2: cHr0U0bwa2IqDru0_5ujO-b0Lx4.crl (hash: mduRuOb8okmA2N870EagHguaaNrkdFWrXouo+BySVYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHr0U0bwa2IqDru0_5ujO-b0Lx4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:e5:b3:a0:78:a4:26:be:54:cf:a4:f4:07:3a:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=707af45346f06b622a0ebbb4ff9ba33be6f42f1e
Validity
Not Before: Oct 19 10:02:44 2025 GMT
Not After : Oct 20 10:02:44 2025 GMT
Subject: CN=56e20f4b902d3bf7827b69b97cf330df1af0928c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ff:78:ed:17:fa:9d:c1:b5:42:88:6a:62:c2:
73:22:b3:f4:17:b4:7d:3d:33:ed:ee:07:ec:f4:82:
04:d9:3b:91:3c:06:4f:14:15:62:7d:f3:99:43:fa:
db:43:4c:4d:2b:8a:9f:cd:7c:ac:42:84:3a:23:89:
73:23:bc:d8:e0:51:e9:02:20:5f:81:b9:33:36:02:
4e:bc:fb:ca:40:2c:8f:43:1a:9f:5e:70:b2:4d:d0:
d1:dc:5a:67:9c:f7:7d:85:a3:d4:72:ea:71:44:30:
16:d7:56:7d:39:fc:b6:06:d4:3c:1a:d7:f9:20:ab:
bc:ff:c9:38:92:e8:12:dc:a7:ad:8b:00:d6:86:b2:
e8:6e:02:6d:62:0a:71:e0:a6:ae:aa:0a:e1:bb:f4:
1e:2c:82:54:b0:26:5a:06:54:b8:22:92:99:91:b5:
f1:73:5b:37:21:5f:00:03:88:00:f7:02:4c:4f:02:
bb:dc:fe:19:3f:68:4d:57:b3:8f:68:09:e1:23:84:
c1:ca:6a:b8:e0:2a:70:41:60:e2:8a:57:99:88:e7:
0f:24:c9:3b:a1:b6:78:77:00:49:b7:21:67:88:ab:
75:30:54:40:16:38:be:5e:2b:45:59:76:ec:68:62:
6d:24:1d:78:b0:ed:55:42:95:b1:aa:18:70:d8:f0:
49:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:E2:0F:4B:90:2D:3B:F7:82:7B:69:B9:7C:F3:30:DF:1A:F0:92:8C
X509v3 Authority Key Identifier:
keyid:70:7A:F4:53:46:F0:6B:62:2A:0E:BB:B4:FF:9B:A3:3B:E6:F4:2F:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHr0U0bwa2IqDru0_5ujO-b0Lx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:fc:0e:79:8d:8b:e4:7c:be:7b:6e:a2:c2:41:03:f9:70:ad:
a1:78:d9:ec:78:49:a3:2d:c1:63:35:ca:2f:3c:3d:0c:58:44:
67:7f:5c:87:16:82:8d:8c:1c:b9:d1:16:a3:4f:f9:b5:cc:73:
a4:df:2f:52:b7:b0:98:29:ad:66:14:b2:00:89:8b:4b:5b:13:
c4:20:f2:8a:11:e8:16:dd:6e:50:d6:5f:e0:cb:b5:f6:35:fb:
75:b7:3d:09:a8:02:96:5e:fa:d1:af:2d:07:34:a2:17:a2:1e:
bd:eb:de:17:ce:a4:5f:e1:8c:d0:6a:0a:2d:fc:d4:ab:34:9b:
dd:0f:e2:ff:c9:ee:09:e7:cc:91:a1:aa:84:92:f7:24:40:9c:
3b:5b:82:7e:8e:63:b6:b8:bf:b1:83:d0:f9:de:24:7f:a7:fd:
07:f5:52:7a:d0:49:3f:be:73:ec:e3:41:7e:0a:38:23:ed:a5:
00:e1:01:88:87:72:3d:a8:ef:fd:32:ef:02:01:fe:ba:d1:1b:
e9:db:cf:37:ac:2a:8d:50:df:e4:0e:84:33:34:41:b1:26:06:
ca:5d:18:e2:9d:84:41:35:1f:fd:1e:86:1c:d1:ef:dd:14:46:
9b:ce:e4:3c:17:0c:a8:34:36:c1:7a:83:da:f5:d1:3a:cb:37:
f4:8a:ca:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:53 2025 by rpki-client