Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
File: x0at2Nr-mfan14fUR5VFpkb23tg.mft (raw, json)
Hash identifier: EC8yoLKbO6JTRZlzMzhR04KkBguninEmjRny2MnHqYM=
Subject key identifier: BB:81:08:35:CF:E4:B8:BA:A9:38:42:F6:0A:1C:30:9E:1A:34:5E:B2
Authority key identifier: C7:46:AD:D8:DA:FE:99:F6:A7:D7:87:D4:47:95:45:A6:46:F6:DE:D8
Certificate issuer: /CN=c746add8dafe99f6a7d787d4479545a646f6ded8
Certificate serial: 0199FCC6AB08D8E8ED5FD17E6529306A3C37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 14:01:42 +0000
Manifest this update: Sun 19 Oct 2025 14:01:42 +0000
Manifest next update: Mon 20 Oct 2025 14:01:42 +0000
Files and hashes: 1: 5ew0AHvlVZKk-XGMQ-7_VQCyPko.roa (hash: r01XfwbxbtnFEz4LgMmHMoPfMeBX2hjKhEb9/b2NI+4=)
2: x0at2Nr-mfan14fUR5VFpkb23tg.crl (hash: XVzSJO4dczivpFloUD7SJPNQUioUfGjA0mZ376GXBuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:ab:08:d8:e8:ed:5f:d1:7e:65:29:30:6a:3c:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c746add8dafe99f6a7d787d4479545a646f6ded8
Validity
Not Before: Oct 19 14:01:42 2025 GMT
Not After : Oct 20 14:01:42 2025 GMT
Subject: CN=bb810835cfe4b8baa93842f60a1c309e1a345eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:42:ad:4e:fa:50:96:c4:9e:9d:d2:a6:86:71:
e3:22:52:ff:ea:a4:52:d7:11:e9:89:4b:c1:43:3c:
42:2a:c3:e5:5e:07:04:67:ac:c8:89:bc:01:86:ab:
c1:49:24:8b:e7:cc:48:88:c7:3c:5d:da:a0:0a:ac:
8f:89:ce:9f:4b:40:61:16:fd:04:25:a2:32:cc:aa:
e3:3d:46:bc:f3:8d:1b:b1:60:6c:9a:88:cb:25:46:
75:72:62:67:ab:b0:24:b6:29:d6:bc:46:eb:33:02:
31:98:66:0d:8e:a5:5f:de:c0:18:6c:01:89:48:bf:
98:40:ff:9b:b3:10:a8:71:05:eb:45:0d:be:c3:5d:
ed:90:59:17:fb:82:31:52:76:1e:cb:b5:af:6f:50:
37:90:5e:e3:bd:0b:5c:e8:d2:54:7f:ea:a0:24:ee:
21:9c:cb:f7:74:96:ac:ba:ca:13:ec:dd:fa:e6:be:
1d:81:76:ad:8a:9a:c6:b3:c8:6a:1b:6d:7e:eb:2b:
f1:5f:2a:6b:97:89:7f:8e:3a:59:40:83:a6:30:e0:
bb:43:a7:7d:07:34:9b:26:e3:fd:51:d0:2b:e7:cd:
c4:77:a9:ae:d8:ff:ff:06:11:72:c4:08:49:0b:41:
33:ae:4d:4a:43:c9:1c:7b:1a:ca:3d:ef:5d:c2:10:
33:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:81:08:35:CF:E4:B8:BA:A9:38:42:F6:0A:1C:30:9E:1A:34:5E:B2
X509v3 Authority Key Identifier:
keyid:C7:46:AD:D8:DA:FE:99:F6:A7:D7:87:D4:47:95:45:A6:46:F6:DE:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:48:db:d5:71:c5:8c:99:12:94:1d:9f:54:fd:c4:4f:e3:a1:
a5:7c:17:87:e3:90:56:a1:4c:6a:02:75:7b:80:b2:be:0b:02:
e3:16:8e:f4:e2:b8:df:30:e7:05:fe:5f:5f:9c:d1:d0:19:f4:
ee:8f:70:61:f6:6c:33:be:29:25:11:89:b0:c2:1a:6f:3e:e1:
dc:62:9e:b0:ef:c0:e0:01:21:28:2d:43:b5:6a:4a:0a:56:16:
0a:5d:a5:39:a9:81:ee:99:86:20:1b:4e:be:4a:bd:b1:4a:3d:
1d:b3:0f:ca:3c:92:9f:84:8b:03:8d:bc:80:13:b2:5c:57:b6:
3d:1d:c0:f7:8d:4b:76:69:71:d8:90:86:4e:23:ea:8c:dc:e1:
de:f5:74:8c:2d:cc:9a:0a:6c:57:02:70:7c:73:f3:40:d0:fc:
04:29:5d:97:b6:34:0e:3e:57:f9:8b:0c:80:a7:27:47:ca:ec:
03:f0:98:40:c9:53:6e:42:c4:8f:fe:10:21:f5:85:6d:89:21:
9b:fd:dc:cf:64:09:3c:6a:86:d4:ca:e9:c5:70:fc:52:03:6f:
d8:73:51:26:35:31:69:f2:a7:79:63:01:67:78:a8:30:d4:29:
2c:b2:95:56:42:4e:03:fc:5e:e8:8e:78:72:19:ee:2b:6f:7c:
d9:4a:f0:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:19:43 2025 by rpki-client