Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: tjoL/bWs6MW2Id6wnxmttEs10Vz+ZYxqUMLVBiqvHZg=
Subject key identifier: FE:91:DC:A6:53:ED:61:71:3D:E5:E0:5B:E6:AC:36:DF:9F:C7:EE:99
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 019A4F2B11A97D7752EFE52F06C516E0EC64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 14:00:13 +0000
Manifest this update: Tue 04 Nov 2025 14:00:13 +0000
Manifest next update: Wed 05 Nov 2025 14:00:13 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: bh1Ymtp2m+9fM2+KIrvdBNwbMuhfoiatCb/87YOKPf4=)
2: b7sNWlzHmaj36hpl7542OiFeLhk.roa (hash: r2LdfaqH2ThvketoRQBfUQ9ZRTad2+2P2sxQXJTCIiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:11:a9:7d:77:52:ef:e5:2f:06:c5:16:e0:ec:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Nov 4 14:00:13 2025 GMT
Not After : Nov 5 14:00:13 2025 GMT
Subject: CN=fe91dca653ed61713de5e05be6ac36df9fc7ee99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:70:39:86:76:c8:c5:18:a8:79:25:8a:59:53:
ae:4c:92:91:26:1d:d5:87:df:b6:2a:1d:c7:7d:7d:
fe:5c:90:20:af:69:f8:54:0b:70:9f:c2:5e:82:53:
9b:de:06:f0:a7:81:43:dc:b8:f3:b9:8c:c1:13:3e:
37:9b:0b:1b:ac:76:0d:0c:f5:fe:99:36:08:1b:66:
38:98:7a:f9:94:93:61:27:4d:7b:d8:82:1d:6e:c4:
8f:98:57:85:c2:f0:c9:62:a4:ac:45:60:3e:01:19:
80:78:33:f0:46:b1:a7:f1:99:34:95:8b:23:06:07:
7d:25:11:7a:3a:35:bc:84:83:98:28:5d:20:d9:e0:
05:c6:d4:f9:cb:ae:4f:4f:ea:82:d5:43:9c:bc:ad:
ba:a6:82:fe:6b:c1:a2:01:1e:06:30:32:54:48:3c:
b2:53:53:56:82:e7:90:72:8e:fe:0a:ef:d0:31:b4:
e8:f5:55:d4:95:93:c5:15:80:60:e5:be:ad:08:03:
18:1d:33:cc:52:87:9b:74:e7:f2:22:0a:b1:dc:ba:
8f:c1:e4:ef:85:a4:13:51:b9:9b:71:26:f8:f4:5a:
c8:b6:82:10:1a:dd:ec:ad:e4:3b:5e:c8:b0:53:c4:
ba:10:56:85:99:84:c5:a4:02:f4:a3:31:6a:71:a4:
b5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:91:DC:A6:53:ED:61:71:3D:E5:E0:5B:E6:AC:36:DF:9F:C7:EE:99
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:0e:50:15:db:f4:3b:2f:3f:b5:83:82:2a:78:dd:13:72:af:
33:11:53:c5:22:dd:3f:04:50:7b:2d:9d:02:79:a5:1c:eb:0d:
fa:03:20:4f:38:82:8a:a3:28:bb:a6:7b:9a:3f:2b:4e:b9:a1:
23:80:48:d3:1f:ca:8f:1c:6d:66:29:fd:d7:a6:c2:f6:8b:5a:
3a:e1:86:bb:9c:1f:35:af:3c:8f:d5:07:07:b9:2c:fb:8c:4f:
9b:0d:21:f1:08:5d:ec:f6:d2:a0:b4:28:37:31:01:b2:6a:21:
82:10:17:39:da:06:53:35:c6:dc:5c:4c:ff:4b:ff:9c:94:25:
ce:ad:e0:64:02:cb:32:cf:81:67:53:a3:9a:53:ba:5a:ac:f6:
9d:2b:5a:02:13:d1:a6:9b:30:6a:39:d5:5f:29:ba:99:7e:93:
10:9d:b5:20:40:df:84:fa:f3:09:e4:82:ae:0e:cd:aa:d4:3d:
06:05:ce:0b:40:5f:c3:2a:7d:ee:59:c5:ab:21:52:62:6d:f1:
84:7e:18:5f:db:d9:7b:44:7f:35:a2:79:15:6c:1c:62:ef:ca:
40:a6:3c:95:75:6c:ef:ea:17:76:93:17:81:29:70:c4:3e:5a:
16:a4:44:ba:56:7a:7d:89:50:02:c4:0a:2d:91:f4:d5:71:02:
1e:bc:b9:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:09:42 2025 by rpki-client