Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
File: wb80sZClHOUwAleRGvMEBPSVH7Y.mft (raw, json)
Hash identifier: TBFV+IfguLRy/0wtxD2ukbDKoSyeu2LQnzXop9IbIXs=
Subject key identifier: 56:71:FA:C6:0D:2A:58:A0:C3:5E:44:6A:0F:72:2D:0B:0A:3B:E3:CE
Authority key identifier: C1:BF:34:B1:90:A5:1C:E5:30:02:57:91:1A:F3:04:04:F4:95:1F:B6
Certificate issuer: /CN=c1bf34b190a51ce5300257911af30404f4951fb6
Certificate serial: 0199FFC7A986A4F7819B51F27D8CA2D5A639
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
Manifest number: 16E2
Signing time: Mon 20 Oct 2025 04:01:39 +0000
Manifest this update: Mon 20 Oct 2025 04:01:39 +0000
Manifest next update: Tue 21 Oct 2025 04:01:39 +0000
Files and hashes: 1: 0tyV27ZaRKIuc5h8kTDsBiv4BZI.roa (hash: 1dyOdZnQpGVWWsvnKswgEprRwbXy0vsePve+ulQremU=)
2: wb80sZClHOUwAleRGvMEBPSVH7Y.crl (hash: 6XF0ayaKM6N21Lzw9ZlrbAYtnWQbpY87nOyg6k1AGGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 04:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c7:a9:86:a4:f7:81:9b:51:f2:7d:8c:a2:d5:a6:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf34b190a51ce5300257911af30404f4951fb6
Validity
Not Before: Oct 20 04:01:39 2025 GMT
Not After : Oct 21 04:01:39 2025 GMT
Subject: CN=5671fac60d2a58a0c35e446a0f722d0b0a3be3ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ab:35:5b:ff:61:71:1d:b5:47:75:72:16:5d:
bc:18:32:3b:a0:b2:c5:ac:7b:87:05:0c:1f:70:7a:
a1:da:96:3e:63:63:22:6b:8b:9f:70:5a:3a:e5:3d:
4a:41:a7:5e:5e:63:88:ea:9d:2f:7c:a4:61:45:73:
f7:14:36:ff:fd:8e:7d:ed:8c:4e:13:14:de:0e:48:
d5:ce:83:e7:8e:8a:b5:17:ef:2c:e1:c9:af:79:da:
9a:a8:88:5f:b7:e9:38:44:07:ff:ff:7d:72:d7:b1:
7e:5c:6a:f3:a4:c7:8f:96:17:dd:87:3a:0d:72:26:
37:87:46:d0:69:bf:b4:a2:ee:07:9e:3c:36:46:e4:
fd:75:1d:cc:e7:8b:ce:39:87:e1:9a:26:8c:f9:2d:
42:b0:29:d3:22:a5:0c:4b:2a:cd:a2:c4:47:d4:8f:
98:44:0c:10:0d:9a:47:90:98:d2:f2:cb:68:44:95:
b9:bd:7c:25:55:af:af:29:cd:db:4a:f3:16:06:da:
85:61:4d:c4:78:c2:32:59:8b:85:44:d2:c2:27:2b:
8d:78:2b:e9:13:c3:29:9a:b8:75:2a:9a:90:f1:e5:
3b:70:c1:c6:8f:66:33:fb:84:66:b4:22:b8:8d:d0:
e5:86:f1:09:79:19:61:9d:ac:ae:1b:60:71:b7:0d:
24:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:71:FA:C6:0D:2A:58:A0:C3:5E:44:6A:0F:72:2D:0B:0A:3B:E3:CE
X509v3 Authority Key Identifier:
keyid:C1:BF:34:B1:90:A5:1C:E5:30:02:57:91:1A:F3:04:04:F4:95:1F:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:b3:ef:07:80:cb:74:d8:65:23:85:ba:50:e4:9e:7e:ed:1c:
e0:1d:a4:67:5c:8b:b4:96:91:91:77:c7:0c:cc:a2:a9:72:19:
0c:59:3e:13:78:9c:ff:33:d7:15:ec:3c:dc:80:ca:0b:c4:6e:
35:92:17:b0:47:13:9b:dd:43:e1:05:fa:63:74:f2:d2:79:98:
e5:af:88:0f:de:4b:5c:26:42:bd:76:97:db:f0:fe:cd:51:c1:
2e:4d:7e:2b:fc:c1:b8:99:01:a0:f7:a4:fc:7b:4c:88:81:8c:
52:4a:8a:2b:52:76:a1:3b:5b:d7:3f:7f:b0:08:61:1b:f1:1a:
b4:fe:26:68:fb:96:f6:38:7b:8c:89:95:8f:da:86:4d:94:f3:
3d:cb:f3:52:c7:af:b4:a0:0d:c9:b4:23:78:89:46:5f:54:4f:
49:47:47:f7:9c:fa:7e:8c:ab:6c:61:9d:f5:21:49:34:f1:2e:
90:71:3d:ee:ce:a9:2a:fa:b4:3c:35:a4:90:c3:2c:69:69:e2:
34:c5:cf:ba:d5:74:11:e2:37:24:b7:12:f7:e6:c2:57:f7:40:
d2:9e:49:28:3c:14:02:08:c9:7e:80:49:16:32:23:09:b4:73:
7f:8a:a8:cd:11:47:13:63:51:2c:b1:72:aa:8a:02:eb:fa:b8:
1d:a8:e4:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:07:19 2025 by rpki-client