Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
File: d_u84sIID4H1oPmPJ5Ipgm3khQs.mft (raw, json)
Hash identifier: eeLjx/TGvkMJ5dEvJ8I4NSy4qaR84FsnPzBO8BOlBn0=
Subject key identifier: 60:3C:21:25:D7:1E:E6:BE:A2:F8:08:B5:E8:1A:BF:B6:78:31:58:D8
Authority key identifier: 77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B
Certificate issuer: /CN=77fbbce2c2080f81f5a0f98f279229826de4850b
Certificate serial: 0199FCC65B3F28E8F3C0B26A799CEE50A52F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
Manifest number: 0E07
Signing time: Sun 19 Oct 2025 14:01:21 +0000
Manifest this update: Sun 19 Oct 2025 14:01:21 +0000
Manifest next update: Mon 20 Oct 2025 14:01:21 +0000
Files and hashes: 1: AOhn7xhM2kSUfRAFFhvDCxU-O20.roa (hash: 1VAhBGtFhGjWFmWSsORfWNgJJ1LUT2F54ZQ/3ep5zho=)
2: d_u84sIID4H1oPmPJ5Ipgm3khQs.crl (hash: MWgUJQ4BJ8/bmyJhar8ADFfS0pTy23ucVLv4qn2sut0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:5b:3f:28:e8:f3:c0:b2:6a:79:9c:ee:50:a5:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77fbbce2c2080f81f5a0f98f279229826de4850b
Validity
Not Before: Oct 19 14:01:21 2025 GMT
Not After : Oct 20 14:01:21 2025 GMT
Subject: CN=603c2125d71ee6bea2f808b5e81abfb6783158d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:63:82:0d:4f:25:a2:07:a2:6f:09:44:78:93:
f5:5b:bf:6c:24:91:b0:7d:df:3a:22:88:c9:f3:80:
20:99:fb:0a:24:8d:0e:d8:21:b7:dd:a4:89:9d:b8:
e3:63:6f:56:db:eb:91:ad:d1:b4:68:0e:f9:ae:35:
25:3a:56:1c:a7:c0:60:4e:b0:51:f9:4e:c2:86:e4:
ba:71:52:5f:37:3c:24:cd:cf:82:99:bd:0e:c0:a0:
30:55:9f:bf:f9:31:16:88:dd:6f:31:56:66:7f:5b:
a6:85:21:51:69:57:ce:9c:d6:39:62:be:85:fe:db:
8a:d4:a6:a9:45:b5:46:d9:94:25:ed:c8:ff:6e:dd:
42:eb:cd:ea:57:bc:70:44:ae:53:dd:3d:ef:12:b9:
16:92:79:c5:e8:3e:21:d4:b4:a2:22:54:3d:78:e2:
72:1a:29:74:d1:30:84:7d:51:3e:cf:c7:0f:ca:c3:
c9:c3:d9:31:75:0b:51:19:79:3b:74:79:ee:5a:73:
f4:d1:e5:b6:de:48:1e:8a:74:b9:33:4c:df:9a:2b:
69:0b:52:6f:4c:71:2d:b6:ed:21:2c:0f:89:0f:51:
f5:be:77:09:a0:46:f1:2b:58:0f:51:b5:1b:ef:d1:
22:ac:f5:f2:d7:9e:60:f4:6a:08:59:2d:fe:62:2b:
c4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:3C:21:25:D7:1E:E6:BE:A2:F8:08:B5:E8:1A:BF:B6:78:31:58:D8
X509v3 Authority Key Identifier:
keyid:77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:f6:32:49:30:f1:63:e9:84:f8:5d:3d:56:da:94:ed:f1:40:
55:eb:7a:af:8a:0b:66:61:89:23:d7:01:7b:0f:c3:d3:9c:e0:
9f:7c:65:58:25:3a:57:ad:74:14:38:6a:43:e2:41:01:4e:67:
fe:06:64:14:7a:fa:e1:24:28:74:03:cb:14:25:07:7f:ed:28:
b3:a8:4b:92:b3:3b:52:f1:b2:6a:a6:a0:c5:a3:1e:5e:94:db:
2d:c1:b1:14:69:9e:95:05:e3:93:20:ed:1e:c5:2f:ec:0e:33:
a9:cc:5f:12:a4:07:03:9f:a9:c0:47:37:12:12:2c:55:5d:9d:
98:96:08:7a:f4:f0:8b:b2:93:a1:c8:50:be:8a:18:b9:d5:33:
36:93:8a:2d:26:c4:2f:ea:79:01:0e:28:0b:b8:17:b6:96:ce:
69:c4:f2:d9:8d:8e:0d:5f:7f:62:b8:5b:67:c9:35:d2:bc:9a:
49:be:29:fe:ff:ad:22:16:cd:94:6f:79:5d:93:c2:1f:c1:95:
50:31:b2:11:f0:ea:bc:70:ed:dc:3a:6e:3d:57:11:ce:79:ba:
65:de:17:e1:37:ba:99:aa:f7:c4:f8:6d:ac:d0:fc:0d:16:d8:
6d:0d:19:a2:bd:b5:73:72:34:af:9f:0f:8b:9e:d6:e5:5a:1c:
ea:a8:4c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:52:22 2025 by rpki-client