Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
File: wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft (raw, json)
Hash identifier: ZRU/N6Y1sLOFlY1dBaeBEbVsMCzIqOvDOnhrzHY74IM=
Subject key identifier: BA:3C:86:B6:CB:24:B1:7F:7C:8D:EE:9F:BA:D2:57:AC:84:1C:84:B9
Authority key identifier: C2:1E:32:D0:47:C5:D1:B9:E2:67:70:C3:84:03:04:CF:69:71:DE:1C
Certificate issuer: /CN=c21e32d047c5d1b9e26770c3840304cf6971de1c
Certificate serial: 0199FB457CA57C90815AACCE086BE9C66752
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
Manifest number: 0A04
Signing time: Sun 19 Oct 2025 07:00:59 +0000
Manifest this update: Sun 19 Oct 2025 07:00:59 +0000
Manifest next update: Mon 20 Oct 2025 07:00:59 +0000
Files and hashes: 1: 0YAlpXVId3LHx7bUr5xQcDkFv50.roa (hash: TFSQN0O8fIRBDFY4jZJFLp3OndkfiZIj1gXdcop7ZBU=)
2: wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl (hash: CLZwnB3CchWQLeccCFSZgu+2XaSB0XYn+lt0/KWzHx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:7c:a5:7c:90:81:5a:ac:ce:08:6b:e9:c6:67:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c21e32d047c5d1b9e26770c3840304cf6971de1c
Validity
Not Before: Oct 19 07:00:59 2025 GMT
Not After : Oct 20 07:00:59 2025 GMT
Subject: CN=ba3c86b6cb24b17f7c8dee9fbad257ac841c84b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f3:81:ff:c1:39:18:cc:2f:7c:9e:d2:5c:f0:
85:8d:b1:b4:92:37:84:8b:44:95:f7:43:08:c7:0d:
81:c9:be:2c:3a:a2:f2:bb:b7:0a:4d:0f:68:c4:3b:
7f:67:fe:8d:3a:2d:67:62:cf:c0:a3:0d:cf:45:a8:
5e:81:d4:c6:1c:d4:fe:7d:56:85:36:ee:f2:34:69:
7a:b5:d1:a0:6d:8a:04:23:25:21:0a:37:3c:66:07:
f1:2e:25:e7:f2:00:d9:ab:09:ed:9e:4d:fa:c3:48:
07:06:97:da:ab:4e:19:d3:66:5c:c6:09:87:b4:3b:
b1:04:3a:7e:fb:d2:aa:ca:a1:09:c0:37:9c:23:18:
33:fc:cb:e2:27:a8:ce:ea:52:de:81:9b:fe:b8:f3:
8b:36:b9:7d:2f:b7:04:af:e8:d7:cf:f6:b4:c7:a2:
fa:6f:4f:30:82:43:ed:25:13:36:3b:23:84:07:f1:
39:e4:20:b9:60:34:b6:75:04:bf:0c:35:c3:99:a5:
d1:7d:24:83:99:29:c5:07:63:1e:35:0b:e4:fb:c8:
46:e6:33:fa:b5:a8:88:49:b3:fe:49:b6:3d:84:48:
f7:67:f8:54:92:8e:12:d3:75:fc:b3:a9:f2:3c:f3:
17:b4:c3:5f:24:e7:b4:d7:66:7b:e0:59:94:34:a4:
fb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:3C:86:B6:CB:24:B1:7F:7C:8D:EE:9F:BA:D2:57:AC:84:1C:84:B9
X509v3 Authority Key Identifier:
keyid:C2:1E:32:D0:47:C5:D1:B9:E2:67:70:C3:84:03:04:CF:69:71:DE:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:74:ef:ee:be:78:2e:fd:2d:a3:2f:cb:5b:2f:fa:f7:60:5e:
03:19:22:6b:08:7e:df:ba:a7:3a:c6:cc:1c:c0:df:ef:4a:e2:
e3:a5:1c:e9:c0:43:83:33:8a:99:cd:ad:1e:0c:a6:27:5a:66:
6b:87:44:8a:d8:24:3e:3a:1d:b0:ab:1e:7b:ec:0a:05:15:07:
b7:c6:14:fd:e4:68:31:cd:2d:80:cd:3f:80:d1:f1:ad:aa:8f:
09:02:4f:af:e2:89:f2:9a:06:df:b7:b6:e0:30:5c:e6:7b:74:
5c:1b:3e:6f:63:67:d6:47:7c:46:4e:b9:b1:e8:ab:d5:07:0f:
76:4b:49:c3:1a:57:92:e7:d0:f7:82:05:64:3a:98:53:64:da:
13:cf:42:d2:e3:cb:d9:9c:35:d1:36:c8:6c:c4:3c:72:ef:ff:
fa:60:5a:32:71:90:6a:f4:c6:19:5a:51:14:62:bf:08:a6:2e:
a6:fb:7e:ca:46:63:e6:93:ab:fc:1d:7c:64:ab:8b:7b:8b:c7:
5a:fd:49:4e:7e:2a:bc:b8:29:93:6d:c1:64:a6:63:fe:0c:cc:
93:76:2c:09:47:de:30:d6:77:57:af:32:46:f4:72:b6:d5:aa:
f8:57:e2:2f:b0:da:30:eb:1f:4e:f7:bc:b3:45:43:c6:9a:ce:
88:f2:0d:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:30 2025 by rpki-client