Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
File: cKdpKcviHO3ZTAErpYuwtvEpci4.mft (raw, json)
Hash identifier: mniVhZ8V/Px6GoesyjIX+ekO+heNWqAQkfiTAK34jW8=
Subject key identifier: 8C:1D:8E:DD:D5:01:8E:2F:62:0F:0B:EE:11:3C:79:DB:5A:46:44:86
Authority key identifier: 70:A7:69:29:CB:E2:1C:ED:D9:4C:01:2B:A5:8B:B0:B6:F1:29:72:2E
Certificate issuer: /CN=70a76929cbe21cedd94c012ba58bb0b6f129722e
Certificate serial: 0199FAD7B64C8D61FB24E5ADF317466F5167
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 05:01:04 +0000
Manifest this update: Sun 19 Oct 2025 05:01:04 +0000
Manifest next update: Mon 20 Oct 2025 05:01:04 +0000
Files and hashes: 1: cKdpKcviHO3ZTAErpYuwtvEpci4.crl (hash: piBKGBEyUv+MuyGgS/+JQbJseKw2SZNAkEvk9GRc4vI=)
2: inuScwE1S9lEULUDFOPt0YYBMRU.roa (hash: hvD+jjYBAY5jZaJA8u8QgEl8M7kubkCEj9ntL0iNAX4=)
3: jP0oG4-lTwdPgvwQsai3xzsKBUA.roa (hash: cwxrU32A7FjEaD6Xb0+naWkVMI0iVDnV1C3ohgsG2Sc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:b6:4c:8d:61:fb:24:e5:ad:f3:17:46:6f:51:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a76929cbe21cedd94c012ba58bb0b6f129722e
Validity
Not Before: Oct 19 05:01:04 2025 GMT
Not After : Oct 20 05:01:04 2025 GMT
Subject: CN=8c1d8eddd5018e2f620f0bee113c79db5a464486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2b:2f:59:50:e0:b0:ff:59:49:fc:e5:af:7f:
0d:9c:fd:61:b1:32:a9:f2:f8:3c:99:e4:d6:1b:85:
0f:2c:66:66:5d:07:48:c6:34:db:99:3d:5e:35:85:
a4:e8:24:0b:8e:5e:c7:42:a2:0e:6d:8b:e6:ce:d5:
4e:13:8e:50:af:1e:e3:66:3c:25:28:9d:c7:8e:a7:
12:f6:02:39:a5:17:9c:cf:c9:9f:4a:96:58:dd:cd:
d1:4a:ef:18:38:9a:a4:8c:97:eb:6f:6e:40:00:bd:
55:b7:2a:e4:00:c1:4e:35:e9:55:e4:5a:2f:47:61:
91:37:5b:aa:cf:c1:46:21:bc:ba:a2:40:fc:b2:c6:
fb:44:e5:a6:25:15:2e:78:d3:b7:34:ac:79:7f:a2:
e0:db:c4:b1:ce:49:d3:ef:23:8c:a5:05:98:ce:10:
88:33:68:2e:14:44:d1:2f:72:77:5b:d6:54:40:4d:
f4:76:af:aa:58:8b:e5:b9:15:a6:1a:dc:d6:6b:84:
08:16:32:b7:0a:bb:d6:e6:df:84:6e:75:86:f8:8c:
3b:69:49:ba:fa:68:06:43:3c:7b:fa:d1:fd:04:8e:
5e:1d:02:88:3c:78:d2:1e:6d:d2:86:90:7f:60:dc:
49:4e:8e:96:3e:7f:c9:f5:7e:b3:d9:bc:b7:23:c7:
9c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:1D:8E:DD:D5:01:8E:2F:62:0F:0B:EE:11:3C:79:DB:5A:46:44:86
X509v3 Authority Key Identifier:
keyid:70:A7:69:29:CB:E2:1C:ED:D9:4C:01:2B:A5:8B:B0:B6:F1:29:72:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:7d:37:1d:7b:bb:68:2b:ea:3e:e5:f1:fd:94:a5:57:9e:4f:
72:82:de:60:7b:96:62:f7:53:40:f4:a1:11:82:28:b2:8e:ff:
5a:82:70:1b:07:ff:54:f6:4b:53:9b:5e:b6:c0:69:43:d8:46:
b0:fd:ea:9e:c6:12:0f:ef:9d:0e:56:dc:26:f3:51:e1:e8:b9:
cb:5f:f1:a8:03:51:8e:b4:f6:82:02:d2:d7:9a:0e:96:f5:51:
4d:99:0b:d8:52:67:e6:83:d5:a3:f8:d3:9d:bf:f6:24:1d:1d:
83:e5:21:a7:b1:47:2c:f5:41:e4:26:0a:7c:75:1a:0c:a8:6c:
f4:d9:7b:5c:0a:80:83:cd:01:18:a3:7f:88:67:e1:b3:c2:3f:
d6:3e:62:93:40:3f:7b:4a:48:b2:95:d6:b9:d4:b0:30:1c:bf:
f1:f6:36:2f:c8:04:d3:60:fe:3e:80:1a:5e:9d:09:b7:4e:ff:
cf:32:8b:11:d6:da:9a:0d:4f:da:ce:d5:cf:ac:38:a4:21:5d:
53:17:c9:0f:b7:95:15:02:7f:b0:f9:4d:20:00:05:bc:03:06:
b5:8e:0b:b1:30:64:67:3e:1b:f4:15:f4:aa:03:44:8f:28:bc:
b4:73:9d:6a:22:b9:c5:df:c5:eb:4b:0b:c1:23:d4:32:d3:c1:
ce:4b:4a:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 12:52:36 2025 by rpki-client