Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
File: 0DjDOLEo-Drewvadk8MsU1PKA5g.mft (raw, json)
Hash identifier: 1WMl7itAt+MXU0/BozkxV4IhsRAAhzrs5myN9OLK4lk=
Subject key identifier: D0:C3:98:28:57:1A:B6:0E:82:33:0E:8A:7E:4D:DB:B7:6B:52:5B:C4
Authority key identifier: D0:38:C3:38:B1:28:F8:3A:DE:C2:F6:9D:93:C3:2C:53:53:CA:03:98
Certificate issuer: /CN=d038c338b128f83adec2f69d93c32c5353ca0398
Certificate serial: 019A5007284D34462EF208D06E4DA1E63748
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
Manifest number: 13AA
Signing time: Tue 04 Nov 2025 18:00:37 +0000
Manifest this update: Tue 04 Nov 2025 18:00:37 +0000
Manifest next update: Wed 05 Nov 2025 18:00:37 +0000
Files and hashes: 1: 0DjDOLEo-Drewvadk8MsU1PKA5g.crl (hash: 2vTIy35qNhMFtn0+cNvLN7EEKvH3k6LQPwsEeT/Opqw=)
2: 7PD1wIgjrZ9T9-fQhjLFUrZGUJE.roa (hash: 8HGos2aeHkG0saEvUQyEseTwmsTJnTnE4JuY9jxzUVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:07:28:4d:34:46:2e:f2:08:d0:6e:4d:a1:e6:37:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d038c338b128f83adec2f69d93c32c5353ca0398
Validity
Not Before: Nov 4 18:00:37 2025 GMT
Not After : Nov 5 18:00:37 2025 GMT
Subject: CN=d0c39828571ab60e82330e8a7e4ddbb76b525bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4c:56:02:f9:a0:74:16:78:5f:e1:b3:29:f7:
94:6f:a5:b8:ec:50:eb:84:9d:8a:a9:47:f7:37:c1:
87:cd:e2:8f:27:06:f3:f7:39:db:e5:13:53:11:8d:
1a:0d:bb:19:1d:16:3d:c0:48:18:28:4f:b3:f0:44:
db:b3:c9:eb:59:4d:35:14:cd:3d:67:7e:75:4e:cb:
25:17:7d:5a:78:04:fc:ba:dd:9e:91:20:5a:55:45:
11:01:ef:4e:d5:d0:f2:dd:54:79:a6:87:0b:22:28:
3e:32:95:62:70:6b:60:28:c0:c4:f1:f1:07:e5:cd:
86:70:e5:61:a1:e4:2b:e4:c9:0b:f1:bb:1b:9b:73:
69:1a:d5:21:10:70:bd:fb:c1:a5:1a:c6:1e:02:b0:
6f:70:90:e0:1a:d8:01:77:ad:83:e2:25:4a:17:b2:
ac:da:00:9f:89:c6:56:6a:fa:76:31:86:98:19:48:
86:79:cd:31:30:60:04:49:49:4e:73:11:7a:2a:00:
6d:a0:17:97:bb:ae:ea:a3:1d:61:2c:0f:5a:df:a7:
18:ed:6a:6e:35:70:3d:5f:f1:16:e8:ff:86:fb:4f:
08:f7:a8:fd:3d:11:cb:53:3f:d5:2a:7d:5b:b8:7d:
08:46:9e:3c:4d:64:da:74:c5:92:a3:a3:e6:17:89:
61:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C3:98:28:57:1A:B6:0E:82:33:0E:8A:7E:4D:DB:B7:6B:52:5B:C4
X509v3 Authority Key Identifier:
keyid:D0:38:C3:38:B1:28:F8:3A:DE:C2:F6:9D:93:C3:2C:53:53:CA:03:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:2b:31:ac:8c:5f:43:53:07:b6:05:12:f0:93:03:9d:e2:78:
87:fc:ee:dc:3a:97:ad:20:85:60:d6:30:a4:fd:5a:b3:af:b5:
86:a8:d1:ea:1d:19:ef:07:6d:fb:bd:db:f9:9e:67:6d:b5:9e:
e0:b1:2f:9c:92:b1:71:0c:62:6f:ec:92:a5:6a:96:60:7b:62:
96:55:30:50:8f:f5:73:43:5e:25:78:3b:64:7b:8b:c7:00:29:
75:66:c7:c0:87:2c:38:7c:57:8b:76:0b:e5:ba:66:db:ef:60:
18:3e:af:ff:22:6f:52:91:12:2a:e9:f7:16:0c:55:f4:7d:5a:
8e:2c:61:2b:11:91:4f:ab:bb:01:0e:80:26:3d:13:50:65:c3:
95:a1:c6:30:a4:5a:ec:d9:be:d9:f8:db:14:ef:e9:6f:9a:4e:
54:80:a6:5f:d0:a3:70:eb:a8:22:e9:93:ca:5d:82:5c:83:ac:
e2:33:ba:dc:a4:78:03:94:39:a3:9d:ae:92:e3:c3:99:e4:52:
23:2c:8f:d4:d5:20:34:b3:f0:b4:e8:fa:a4:64:c7:3f:63:f3:
12:c5:00:7e:ea:82:c7:46:1e:c2:40:90:e4:b5:53:2c:79:e7:
5c:47:0f:b8:a6:62:7a:2c:90:e9:7c:e8:61:5f:e0:c7:4f:49:
de:54:46:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:19:36 2025 by rpki-client