Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
File: rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft (raw, json)
Hash identifier: JfQ/nIBSwsEittDquoTIM3mRxF8E/hUJGCI3hEghknI=
Subject key identifier: F7:6C:31:D4:CA:7B:72:F7:B1:A1:53:3E:25:89:91:F2:92:E1:6C:88
Authority key identifier: AE:1E:F3:D6:26:A7:54:E4:3D:07:C7:00:D0:51:3C:11:4B:66:0E:F5
Certificate issuer: /CN=ae1ef3d626a754e43d07c700d0513c114b660ef5
Certificate serial: 0199FBEC390C5CD82B8C190557EE6710EF19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 10:03:06 +0000
Manifest this update: Sun 19 Oct 2025 10:03:06 +0000
Manifest next update: Mon 20 Oct 2025 10:03:06 +0000
Files and hashes: 1: 4Z6xjw98hxZ8bvYUhmvQisZFvOM.roa (hash: j5d+sT1h6lzMh+Fw7CHOI9NqQUP8la0OU484/Ch6a44=)
2: rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl (hash: VrZDtk2u3M3KEok3WzhnAd0XBHZnUu1zXKw9AZHr4KI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:03:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:39:0c:5c:d8:2b:8c:19:05:57:ee:67:10:ef:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae1ef3d626a754e43d07c700d0513c114b660ef5
Validity
Not Before: Oct 19 10:03:06 2025 GMT
Not After : Oct 20 10:03:06 2025 GMT
Subject: CN=f76c31d4ca7b72f7b1a1533e258991f292e16c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:11:02:d5:09:e5:e0:ce:41:95:a3:15:34:70:
25:9b:e3:e4:65:f4:ca:ed:68:34:08:62:2d:73:8a:
4f:01:ee:ad:70:be:4b:ba:51:87:1f:81:c6:2e:fa:
c4:33:84:cf:32:42:7b:5b:af:bb:de:75:08:f9:74:
36:c4:a3:38:1d:4c:3e:a2:2b:92:4f:32:46:86:9d:
7d:06:fe:6b:f2:40:c1:4c:a9:0a:49:68:cb:58:40:
60:99:8a:63:9d:96:3d:0b:76:d0:02:cf:e8:fd:9e:
39:d2:71:d2:6d:4e:32:9f:e4:45:5a:4b:fc:86:cb:
34:b1:98:33:a5:ff:c9:61:da:78:2d:dd:bc:d9:2e:
96:f4:a0:36:c2:00:bd:d4:fd:4d:1b:32:71:f6:cb:
ad:65:c8:57:a4:bb:08:ce:41:a7:5d:d5:16:f8:39:
95:ed:27:88:a1:de:7e:1f:40:f4:61:d1:9d:cd:32:
d8:eb:78:a4:4a:0a:94:a4:07:2f:59:54:43:90:42:
16:a1:cc:f5:c9:65:4a:07:06:14:01:bb:51:0e:43:
e7:18:73:2f:e7:fa:cc:38:68:b1:77:24:e4:82:d6:
29:03:16:35:83:9e:96:4a:2c:2c:bf:e0:7a:68:dc:
7a:85:db:a4:d4:b8:56:cf:15:fa:b1:e9:bf:3e:42:
a4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:6C:31:D4:CA:7B:72:F7:B1:A1:53:3E:25:89:91:F2:92:E1:6C:88
X509v3 Authority Key Identifier:
keyid:AE:1E:F3:D6:26:A7:54:E4:3D:07:C7:00:D0:51:3C:11:4B:66:0E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:ac:f7:47:cf:64:c8:73:11:7f:4d:12:e1:9b:d3:cc:2d:fc:
a4:e1:68:ff:03:7d:73:dc:75:08:f0:fc:d4:f2:e7:f2:ab:70:
5f:15:8c:bf:08:6b:02:ff:4c:e0:b1:8c:ea:87:79:20:31:10:
39:92:ed:2b:f8:25:cc:68:de:2e:c7:c8:c5:e0:5e:ce:03:c5:
51:a1:70:3c:35:4a:70:8e:24:f2:fe:f3:0e:90:6a:18:c9:68:
76:95:b9:9b:26:26:f0:00:fb:83:07:83:4c:6b:48:a7:48:be:
d0:6e:19:ed:c2:b2:70:22:82:09:99:13:c8:0e:95:f2:87:7c:
07:22:c8:12:0c:c8:be:6e:d4:c5:72:51:56:3b:69:eb:39:52:
1d:a2:80:30:21:61:6c:7a:3c:f4:71:7c:2e:77:5b:b0:78:18:
16:9d:eb:df:50:6e:ca:ea:50:42:67:7c:58:42:39:41:78:d2:
39:c1:14:77:89:80:9e:3e:df:54:d1:94:ea:2d:4e:90:9e:67:
cd:33:b2:f8:a8:5f:ec:b2:ff:fc:33:00:e2:5b:78:9f:c1:d7:
56:27:b4:09:d6:e1:55:9f:d0:18:f6:f6:73:86:01:bf:3d:21:
06:34:93:30:e6:97:d6:b3:4a:23:fc:6b:6e:f7:62:23:85:3f:
e1:2e:6d:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:01:36 2025 by rpki-client