Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
File: 7FNfTIaAzg26SgPZXmZck8yZzrk.mft (raw, json)
Hash identifier: GRtVRkwTSFPJuRPX5w1CZuP+yo1UydFzUXSdvPCyTFU=
Subject key identifier: CE:9C:A1:B7:5A:78:46:0A:B5:24:1C:5C:27:F9:53:19:81:8A:95:9D
Authority key identifier: EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9
Certificate issuer: /CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9
Certificate serial: 0199FFC7981D244B35F5DB1B2766EA22AD54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
Manifest number: 0257
Signing time: Mon 20 Oct 2025 04:01:34 +0000
Manifest this update: Mon 20 Oct 2025 04:01:34 +0000
Manifest next update: Tue 21 Oct 2025 04:01:34 +0000
Files and hashes: 1: 7FNfTIaAzg26SgPZXmZck8yZzrk.crl (hash: Lhhg30ULnV2dFsWVDJ0HiX6A+Jvn9cctATyC9vnrAxc=)
2: xmQ5skD8YtPqUxW5yzoA6bHhREg.roa (hash: JOTsRiuQWzCXcl+Wr2hE6xVJO7LXDTormwzqqmVX6eE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 04:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c7:98:1d:24:4b:35:f5:db:1b:27:66:ea:22:ad:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9
Validity
Not Before: Oct 20 04:01:34 2025 GMT
Not After : Oct 21 04:01:34 2025 GMT
Subject: CN=ce9ca1b75a78460ab5241c5c27f95319818a959d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f4:35:59:f6:87:90:0c:d7:fd:c9:c8:5c:7a:
cd:40:8a:8c:15:be:a1:78:ef:31:bd:15:6d:0f:26:
0a:e2:28:06:80:0b:a9:1e:62:e6:4a:b9:ef:02:19:
b5:35:fa:c2:63:65:96:fc:9a:fa:16:24:28:9d:97:
b2:66:59:07:41:21:ae:13:dd:cb:df:81:0f:53:fc:
25:77:dd:18:79:ef:d6:e8:33:b3:13:ac:d4:ca:d2:
b5:32:80:dc:fa:f0:49:b6:e2:57:b0:29:d6:36:62:
f2:1a:9f:e2:3f:e0:cd:5e:34:a8:36:9f:52:f3:d7:
fa:21:e3:77:2e:4e:62:01:dc:da:87:2d:e9:b8:86:
29:30:21:ef:51:37:e7:24:b7:4f:24:12:00:00:95:
cd:54:0c:9b:88:15:0f:ae:2e:92:fc:a9:5a:73:e3:
fb:cd:e2:48:57:c1:c5:3a:91:87:1b:49:d8:a9:99:
d3:28:45:5a:0b:46:15:7e:5f:79:61:a7:58:43:71:
fc:63:d6:e3:44:97:61:a0:e6:e3:3d:37:c0:cf:06:
ce:f0:75:71:bd:13:92:27:0b:ef:4f:f7:32:98:69:
67:b1:6a:63:f8:17:68:39:2b:d8:a3:a1:56:46:e7:
31:a7:2e:65:37:4f:1c:73:3b:f3:32:8f:85:39:3f:
74:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:9C:A1:B7:5A:78:46:0A:B5:24:1C:5C:27:F9:53:19:81:8A:95:9D
X509v3 Authority Key Identifier:
keyid:EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:71:c7:89:85:e5:38:88:14:d5:3b:40:42:cd:ee:0b:d9:2e:
07:1d:61:e3:6e:b9:d6:94:65:3d:f7:0d:46:c9:92:9f:f1:83:
d4:f9:b7:da:bd:3d:8c:dd:4a:fe:02:be:f9:8b:04:2e:94:e0:
23:d7:8d:b2:00:ae:07:15:a3:e0:4f:53:b1:c7:9d:cf:79:0c:
d3:1d:ee:92:12:08:a0:0f:9e:6a:da:27:a0:55:cb:c9:5d:b1:
be:b7:11:f5:68:4e:fd:45:44:c3:b7:bd:a4:d5:34:65:87:ac:
21:58:5e:af:05:04:23:8e:3b:31:56:d4:de:7c:50:3e:33:05:
d8:db:c6:f8:c8:d5:b5:71:1b:fc:83:47:e4:2f:fd:9f:cc:d5:
78:93:34:fa:0b:70:ff:ed:b4:a3:1c:a6:fd:48:a7:77:85:45:
c6:4c:bb:98:6d:5f:a4:fd:62:e6:8c:7d:21:99:d7:ea:d3:46:
d9:95:0b:9f:89:00:fb:96:5a:64:0a:e8:6f:1a:27:59:dc:bb:
a2:99:c1:51:b1:ce:d5:fd:b6:00:76:4f:1e:a1:26:d6:26:36:
a0:df:c1:eb:d6:05:66:52:30:93:96:86:cc:0c:46:1d:5c:d3:
bf:f2:ee:0c:a9:e9:56:2a:00:8b:d7:8b:2a:59:61:1b:50:2a:
22:2e:99:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:00:27 2025 by rpki-client