Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.mft
File: 0YpW1qFOZ2P8dzOopflDHbdWjLU.mft (raw, json)
Hash identifier: 983LPy1zjTCeR6RUV3s6k6Z4jtPxyaaU1hjRiBH5xm8=
Subject key identifier: 13:DF:B9:3F:DE:C5:24:F5:61:42:F3:19:8D:70:5B:CA:00:0B:2E:1A
Authority key identifier: D1:8A:56:D6:A1:4E:67:63:FC:77:33:A8:A5:F9:43:1D:B7:56:8C:B5
Certificate issuer: /CN=d18a56d6a14e6763fc7733a8a5f9431db7568cb5
Certificate serial: 019A5187DEDC26A8B75E5951B6ED2E36466F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YpW1qFOZ2P8dzOopflDHbdWjLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.mft
Manifest number: 16A3
Signing time: Wed 05 Nov 2025 01:00:50 +0000
Manifest this update: Wed 05 Nov 2025 01:00:50 +0000
Manifest next update: Thu 06 Nov 2025 01:00:50 +0000
Files and hashes: 1: 0YpW1qFOZ2P8dzOopflDHbdWjLU.crl (hash: 1XvMxaTWj/hKNNtQ4MSvgDRw9XsS0gtPFxIRTYoZ7n4=)
2: AjvxEqBMDb1RszeU2KHX57XFBR4.roa (hash: 2SKQ42yk6CMNYGHFFloN2VEeMp0spaMezeJijIs3El8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YpW1qFOZ2P8dzOopflDHbdWjLU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:de:dc:26:a8:b7:5e:59:51:b6:ed:2e:36:46:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18a56d6a14e6763fc7733a8a5f9431db7568cb5
Validity
Not Before: Nov 5 01:00:50 2025 GMT
Not After : Nov 6 01:00:50 2025 GMT
Subject: CN=13dfb93fdec524f56142f3198d705bca000b2e1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b2:1f:cf:fd:99:9d:9c:5c:96:32:e3:25:f9:
c2:b8:10:d6:ac:81:0a:34:65:dd:99:31:08:e1:27:
a4:1b:40:62:7f:11:68:9f:92:7f:bb:d9:66:e1:c1:
ec:2f:71:96:b6:1f:74:dd:5a:33:14:02:5f:f7:50:
25:f7:97:98:c1:83:e6:c5:69:d0:ac:b8:3f:49:ff:
0d:46:6a:a8:3f:a3:dc:d6:a9:b7:7f:55:e8:0e:c6:
42:2b:0c:38:bd:1a:1b:f9:ea:22:ac:a8:68:31:3a:
b8:c9:6e:73:da:b4:c7:ec:52:c4:25:85:17:07:9f:
28:2f:ea:7b:d3:fb:ef:a7:c9:52:55:d6:39:e5:84:
54:a1:39:35:cc:93:98:8a:19:41:c9:29:eb:e6:3b:
fe:a4:d1:68:31:16:ca:b8:68:90:bd:ec:05:c5:86:
da:8a:94:61:9b:01:c9:3d:de:52:ef:8d:83:e2:6f:
4f:47:b5:a3:b0:0c:d6:9f:38:57:90:0d:c1:f0:ae:
1f:0e:fc:7a:97:15:ce:9a:08:ef:85:94:bf:45:72:
45:0f:71:c6:59:fa:6e:f4:e8:ef:97:a7:0f:39:5f:
5a:74:c2:16:15:e9:11:ed:5d:be:52:c1:a0:8e:97:
b7:41:8a:d2:43:7c:aa:bc:c9:fd:a2:67:f3:98:8c:
83:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:DF:B9:3F:DE:C5:24:F5:61:42:F3:19:8D:70:5B:CA:00:0B:2E:1A
X509v3 Authority Key Identifier:
keyid:D1:8A:56:D6:A1:4E:67:63:FC:77:33:A8:A5:F9:43:1D:B7:56:8C:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YpW1qFOZ2P8dzOopflDHbdWjLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:6b:46:95:95:51:43:ae:05:91:5d:5a:91:b3:f8:3e:d4:38:
1f:90:08:5c:91:71:38:5a:99:13:3d:1e:09:11:70:b2:42:2c:
2d:cb:2a:25:66:5f:3c:c4:89:97:d5:a2:dc:36:8b:6e:91:a2:
cc:91:aa:72:f4:8f:5e:b9:ab:8d:70:00:c4:41:5a:72:f6:3b:
95:a7:05:04:1e:f0:1d:f2:cd:61:b4:c6:d7:88:de:1c:e4:03:
68:80:af:fb:20:0c:ae:cd:a3:8c:c7:1e:53:28:16:1c:4d:7b:
5b:7d:46:4f:81:73:fe:7f:4b:b7:11:47:d0:e9:8b:cb:ff:da:
11:58:f1:b1:9d:04:97:f9:26:c3:c3:2c:b6:2e:a7:f6:b8:72:
1b:8d:c7:ac:b2:22:0d:d4:16:cd:bc:ac:85:5c:ee:c6:e1:f4:
c4:3a:41:e5:96:d7:24:8e:11:af:52:79:94:bb:1a:80:b5:04:
9c:dc:18:97:c5:cd:6f:c5:37:b5:3e:4d:32:5b:63:51:93:b5:
e3:29:cd:a6:bf:fc:90:29:99:ba:aa:0d:a0:b0:26:be:5c:b3:
25:17:77:a2:9b:31:ce:04:aa:63:37:db:47:96:6b:b6:6b:7f:
b7:15:11:ec:e6:61:cb:66:82:df:52:55:7a:1b:f2:51:5e:2b:
98:21:0a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:43:15 2025 by rpki-client