Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
File: MjFs1IgVYto785JbSRi24R12UUw.mft (raw, json)
Hash identifier: ngAyjUCibVaeEGNhUNrEMF5aoC1lJpXGMixVo0d+H/Y=
Subject key identifier: C1:E5:B0:84:96:B5:B3:78:FD:95:BC:25:24:DF:23:B1:F6:65:10:C2
Authority key identifier: 32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
Certificate issuer: /CN=32316cd4881562da3bf3925b4918b6e11d76514c
Certificate serial: 019A05933F46AF91C7AAD87404AA24D75937
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
Manifest number: 0E43
Signing time: Tue 21 Oct 2025 07:02:07 +0000
Manifest this update: Tue 21 Oct 2025 07:02:07 +0000
Manifest next update: Wed 22 Oct 2025 07:02:07 +0000
Files and hashes: 1: MjFs1IgVYto785JbSRi24R12UUw.crl (hash: OjeIAqMZ8+d+Mluu4j6S51gAT3AHP75MbW4UyIMKR+U=)
2: O3osI0EMQ6lE3X_ye8aviCt4iTA.roa (hash: 9DOrDt/vfxy297yCahpwE4Xa/8MH6AlQc6vnFQ987B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 07:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:05:93:3f:46:af:91:c7:aa:d8:74:04:aa:24:d7:59:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32316cd4881562da3bf3925b4918b6e11d76514c
Validity
Not Before: Oct 21 07:02:07 2025 GMT
Not After : Oct 22 07:02:07 2025 GMT
Subject: CN=c1e5b08496b5b378fd95bc2524df23b1f66510c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:98:4b:ec:b0:5f:fd:6d:4e:a0:c6:58:9c:d1:
64:28:3b:5d:ae:9a:d0:7d:1a:60:52:89:15:90:88:
44:a7:a8:cf:74:ae:b2:ac:07:27:8f:e7:e0:0e:4d:
c1:e2:35:7c:72:8f:87:ec:e5:b1:d6:82:b2:06:75:
95:d5:21:c5:13:88:3e:05:e9:bc:2b:1b:b7:a4:f1:
7c:5b:64:8d:5e:f2:c7:b7:53:b4:e1:f0:0d:29:68:
98:d4:44:d1:db:a8:d7:55:5d:fc:80:eb:2c:60:89:
74:d0:ca:57:8b:74:b9:9b:e3:d4:0f:fc:84:57:ea:
0e:68:a9:0c:c8:a6:32:04:80:69:c7:fc:4e:51:5f:
94:86:3c:73:12:bb:8f:2b:07:28:4c:fb:58:c3:de:
9e:7b:7b:79:de:a0:70:dc:18:51:ab:25:cb:91:2e:
22:01:08:20:e6:09:01:90:df:8f:a4:35:49:49:59:
38:37:c5:76:40:9f:bc:f5:80:8b:7a:42:64:93:0c:
72:07:60:e2:b1:3f:a3:5c:a0:db:06:4c:7d:8f:88:
01:f4:12:db:2c:7a:87:b5:e3:f1:0d:7a:27:0f:7b:
c8:67:98:bc:27:31:fd:02:5d:a1:cb:8a:6d:9e:6b:
47:47:48:21:97:2f:45:3d:50:88:8e:1c:b3:ae:f4:
b3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:E5:B0:84:96:B5:B3:78:FD:95:BC:25:24:DF:23:B1:F6:65:10:C2
X509v3 Authority Key Identifier:
keyid:32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:db:70:f4:24:06:cf:8d:c9:53:11:5b:8c:38:cd:84:6f:5c:
ca:84:29:99:96:a6:1d:44:d7:a7:71:f1:73:a7:a4:43:7f:4a:
f0:77:38:fb:7b:3e:89:9e:70:8e:c9:cb:87:06:3b:81:1b:52:
55:76:0b:8f:21:e2:d5:bc:69:a6:f4:54:3a:cb:14:d8:96:7b:
a9:58:8d:d7:69:96:02:e2:25:c3:e4:28:65:a8:59:77:5f:51:
8e:1c:64:84:a4:5f:e7:66:4d:65:aa:3f:ea:e6:d6:5f:f0:f8:
dc:bd:54:fa:cd:91:d0:9d:31:f0:dd:93:1b:14:2c:b2:e5:36:
f0:01:19:51:09:38:9c:61:fa:44:81:51:0f:59:2e:8e:1d:21:
51:b3:02:f5:f2:07:9b:a8:5b:91:bb:f0:74:61:64:15:bf:af:
30:2f:7c:e2:c0:a2:78:ef:26:60:58:a4:bc:79:8f:4b:2c:a4:
72:2b:19:e3:35:7d:5c:80:c0:b7:7e:cc:4b:56:32:c6:a4:bb:
a8:43:2f:1b:aa:fc:de:88:f5:3a:3d:3e:31:e8:79:09:e6:6d:
41:fd:7a:ff:63:11:4f:1b:1a:dd:ab:f2:dd:8b:22:a2:a6:27:
d9:67:47:37:57:b9:20:43:b4:81:32:9e:48:7b:81:df:6b:f4:
3f:a0:ed:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 11:02:41 2025 by rpki-client