Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
File: ctdCYWpoBB9_D80HkvOOQQOnncI.mft (raw, json)
Hash identifier: n58N6s5T7TwyD2MkFccVX7dzNyjk1wYudc7z+F/J29k=
Subject key identifier: 12:08:54:30:30:CB:0D:31:7F:70:6B:4F:88:BC:08:8E:46:52:CA:08
Authority key identifier: 72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
Certificate issuer: /CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Certificate serial: 0199FC582DBE5A81F4B0D8DAF96C981FBE84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
Manifest number: 03B5
Signing time: Sun 19 Oct 2025 12:01:01 +0000
Manifest this update: Sun 19 Oct 2025 12:01:01 +0000
Manifest next update: Mon 20 Oct 2025 12:01:01 +0000
Files and hashes: 1: ctdCYWpoBB9_D80HkvOOQQOnncI.crl (hash: RaqDyQHxswtsRBdkkYyQSsO6pbr7AAYe5af5wZ25fvw=)
2: zto4NeQB1_I3QORAJXQ-oNO5db0.roa (hash: 4X/MAtxcgqfp8hiwe6Iai+qfAWiiXuU0LC7+GPHFtZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:2d:be:5a:81:f4:b0:d8:da:f9:6c:98:1f:be:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Validity
Not Before: Oct 19 12:01:01 2025 GMT
Not After : Oct 20 12:01:01 2025 GMT
Subject: CN=1208543030cb0d317f706b4f88bc088e4652ca08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:7c:84:bb:56:60:fb:11:3c:41:73:c5:75:3c:
25:af:40:18:ef:5e:af:6a:3a:a8:ad:a1:6f:e2:a8:
f3:85:c5:0a:34:6e:8c:05:ef:ba:c0:35:ff:0e:82:
20:82:ff:40:b2:5d:64:a9:c9:f0:56:bd:b4:bc:91:
26:59:88:fc:ef:72:47:38:b8:cb:6b:bb:76:4b:c1:
e4:b6:25:3b:5d:77:f1:b5:e2:2a:5e:6b:0c:47:70:
cd:99:2f:72:f4:a5:f0:e8:66:5e:5a:2e:a8:0b:e3:
7a:ff:35:ea:18:de:78:92:69:3d:b3:0e:6a:5b:02:
e6:eb:34:ce:30:86:41:c9:83:6b:4b:bb:c0:92:58:
49:8d:38:26:e6:3f:4f:1b:3c:39:d0:34:10:8a:80:
2c:8e:fe:23:42:e6:5b:25:cf:a6:d2:1a:09:74:c7:
e0:f4:a5:c7:70:d4:93:2c:c2:6d:ba:ce:ee:e7:50:
f2:fc:c1:c9:f4:89:69:02:f2:38:ae:11:b6:7e:4b:
70:05:af:26:70:fd:0f:e9:00:ea:78:c8:0c:06:88:
50:1a:49:c9:24:ee:52:6d:6e:18:93:b8:51:14:90:
47:b3:89:ab:1d:35:40:a5:e4:b8:7f:76:8e:e4:fd:
f8:b3:62:e3:48:87:bf:b1:bb:bc:02:e4:b1:c0:04:
7f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:08:54:30:30:CB:0D:31:7F:70:6B:4F:88:BC:08:8E:46:52:CA:08
X509v3 Authority Key Identifier:
keyid:72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:26:b9:5d:f1:90:06:9a:b5:1f:01:c2:c9:ef:3d:d0:65:98:
72:33:90:72:f9:f6:d4:cc:1c:bb:8b:c4:e0:17:9c:57:4b:3b:
24:2c:02:31:cc:45:34:d0:35:7e:d7:26:be:10:b2:2b:70:27:
34:2b:5c:fc:bd:20:6e:c2:46:dc:af:17:fe:5d:98:ec:a3:3c:
85:a4:3d:3b:f4:5a:4d:96:dd:4a:95:a6:09:4e:11:86:0e:e0:
51:61:a0:a3:7f:39:66:48:87:97:6b:96:c9:23:b4:7d:33:d5:
41:61:34:7c:ba:71:21:6c:d7:6f:bb:22:ce:19:97:6a:ec:97:
8a:40:cb:ca:2a:4d:6b:db:31:7a:a9:62:4d:bd:9e:0f:ec:06:
cc:ca:31:e4:6e:bd:a2:76:2e:fb:50:53:2e:2e:c1:a6:25:62:
a6:ee:53:8e:1b:24:89:80:8d:6b:e7:c4:db:51:e2:be:6d:0f:
84:b4:02:a0:7b:3a:23:68:2b:7e:4e:71:0c:26:93:65:c8:a5:
24:57:81:43:03:61:ef:f4:62:cc:53:9e:0e:0b:95:79:8d:9f:
97:f5:b0:ba:3f:ae:54:4a:f0:fc:61:11:10:e5:1c:b7:13:99:
70:d8:7e:65:e4:11:57:d3:3b:84:01:d8:d3:de:93:66:ef:a8:
b7:0f:ac:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:27:30 2025 by rpki-client