Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
File: R1oGyte9DD25-KOB8euc1sdaqyg.mft (raw, json)
Hash identifier: WzdqXdcdKknwzuogJayjiCFnFsSP66iMW/2ym5CYzmA=
Subject key identifier: FA:C8:64:2F:33:DF:AC:66:57:80:BA:A2:19:46:1A:87:0C:F8:9B:43
Authority key identifier: 47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
Certificate issuer: /CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Certificate serial: 0199FBEACFA8F669722BF6604831E07F75D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
Manifest number: 029D
Signing time: Sun 19 Oct 2025 10:01:33 +0000
Manifest this update: Sun 19 Oct 2025 10:01:33 +0000
Manifest next update: Mon 20 Oct 2025 10:01:33 +0000
Files and hashes: 1: P26izWnWykundEbYZ5JEBhpU0uU.roa (hash: cWV+pN/zcAshvYcQxK5v+o4IGsyjFJQg91I3ipirKBI=)
2: R1oGyte9DD25-KOB8euc1sdaqyg.crl (hash: SvlVo8jVWgYekLcnhmkEUGf2dgCzQayZ75eVE0eYl+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:cf:a8:f6:69:72:2b:f6:60:48:31:e0:7f:75:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Validity
Not Before: Oct 19 10:01:33 2025 GMT
Not After : Oct 20 10:01:33 2025 GMT
Subject: CN=fac8642f33dfac665780baa219461a870cf89b43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:61:3d:de:55:af:61:6b:2e:1a:93:6e:a3:d8:
4c:a0:41:31:93:6e:72:c3:ba:52:d8:cc:7a:2e:c9:
a0:86:cd:1a:9d:92:ed:45:a1:6d:3d:e7:4c:65:4e:
9d:99:e1:cf:0e:d0:f0:43:8f:7b:a4:ad:08:46:34:
0d:19:58:89:b3:e8:c6:a7:24:47:0d:bb:12:fe:83:
6c:29:c3:16:6b:aa:be:0f:37:f8:6f:4f:e3:8c:43:
1a:5c:43:3e:aa:96:36:f9:14:77:ff:48:8b:f9:95:
71:dc:78:47:15:5a:9f:ba:70:08:d4:a8:a4:31:45:
e0:75:f8:87:6d:dd:e3:7e:84:c9:0a:63:87:3c:d9:
9a:f5:0f:e4:4d:6e:8d:65:2f:d4:56:f0:1b:44:3e:
e7:b8:f2:cd:67:27:c8:3b:c4:81:28:06:42:4e:66:
c8:68:d5:2d:02:33:f8:05:94:41:aa:f2:7e:84:51:
f5:ff:b7:c5:14:ef:fb:52:52:86:2b:f6:ae:5d:50:
c2:54:37:60:dc:33:ce:41:71:9f:02:f4:75:bc:da:
e4:b9:c6:03:da:f5:08:fb:d1:d7:83:a9:88:ef:dc:
26:47:29:b4:d7:95:58:9b:6c:80:0f:cd:e1:94:a0:
af:05:6d:c1:05:43:50:f5:e5:92:bc:bd:98:fd:91:
06:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C8:64:2F:33:DF:AC:66:57:80:BA:A2:19:46:1A:87:0C:F8:9B:43
X509v3 Authority Key Identifier:
keyid:47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:3b:3d:be:24:23:46:35:59:c3:f4:64:f7:8d:68:5c:93:57:
e8:15:9a:41:ca:f9:be:6d:7d:4a:cb:0e:8b:43:00:8f:74:57:
d2:86:a8:07:f5:0b:51:e1:c4:99:a1:fd:15:79:60:be:53:9a:
19:e9:db:29:2a:90:c3:37:12:de:1b:3e:e1:73:a5:0c:98:e5:
f6:c4:a5:c9:4a:c1:8b:06:10:5d:93:48:0a:a1:71:85:ed:74:
08:a5:68:23:ad:e9:ca:bf:ae:d2:09:56:3f:8a:3c:35:0a:2b:
b8:b0:c3:ed:25:2b:aa:29:ac:08:01:8d:19:77:18:fc:50:5f:
48:7b:19:9b:23:6a:7c:48:e0:3c:f7:1d:50:b7:d8:df:aa:2a:
80:70:93:c3:85:e1:94:92:f3:03:31:d7:23:84:1e:cd:d9:3d:
7f:99:d9:01:60:ae:d8:e2:0d:08:fa:c5:30:47:12:c3:cb:b5:
6d:a8:69:e0:fd:35:5e:3d:17:d3:5e:74:ba:59:29:2c:55:a5:
9b:aa:89:3d:ab:3e:48:62:4b:31:fa:a2:5d:85:75:90:12:d9:
88:be:b2:c1:01:55:4f:ee:5e:ff:f8:6c:d3:d8:f8:91:70:09:
73:5b:d1:a4:7d:2c:8f:e8:32:b5:79:9f:7f:05:da:d9:e1:44:
65:76:c8:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:07 2025 by rpki-client