Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
File: 0dI-JBGcupM36DRmSFv7EGsuJLY.mft (raw, json)
Hash identifier: gFqd88yXSd9MyOc/pbKkwMTCR7Mj2yyW+/ib4wWVGpI=
Subject key identifier: EC:BF:BD:78:BA:5D:C1:F9:F8:83:EC:72:1E:4F:4F:54:BE:3C:3D:97
Authority key identifier: D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
Certificate issuer: /CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Certificate serial: 019A5752D2A0234FBAA5473181628DD8FF5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
Manifest number: 0159
Signing time: Thu 06 Nov 2025 04:00:36 +0000
Manifest this update: Thu 06 Nov 2025 04:00:36 +0000
Manifest next update: Fri 07 Nov 2025 04:00:36 +0000
Files and hashes: 1: 0dI-JBGcupM36DRmSFv7EGsuJLY.crl (hash: JpGshrdvZAnXjqI6bSoJ3jacRrtFdMLROr4qkEejkWI=)
2: M-IfQdJ5pbgcbSVbmMmO8aaPrAY.roa (hash: XwGRnAxf2Tdx5V01T06WDZvLLVmv2uRnErY5moi+5Gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Nov 2025 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:57:52:d2:a0:23:4f:ba:a5:47:31:81:62:8d:d8:ff:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Validity
Not Before: Nov 6 04:00:36 2025 GMT
Not After : Nov 7 04:00:36 2025 GMT
Subject: CN=ecbfbd78ba5dc1f9f883ec721e4f4f54be3c3d97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4a:97:49:22:72:46:f6:f7:e4:6c:df:07:1b:
a4:76:60:d5:42:f2:32:d2:76:9b:f5:d5:14:46:af:
09:17:00:4b:d9:84:4d:53:5a:86:96:d5:f0:d3:a6:
3a:c5:20:1a:69:7a:5b:0c:89:e5:1e:52:4f:5f:31:
63:65:b1:0c:1e:d1:11:1e:a8:eb:e6:39:8c:6d:88:
7b:59:02:0d:b5:d7:85:c5:2b:32:33:cf:27:54:3b:
fc:19:11:fb:8d:c3:29:0f:7b:08:c8:3d:1a:8e:40:
50:ec:df:bd:9b:bd:8f:fc:8e:6d:d5:f4:5d:9a:de:
33:16:23:9a:6a:08:16:23:85:36:3b:3b:10:fa:db:
47:ae:19:21:ee:5c:08:90:16:e1:fd:00:17:39:48:
4b:4f:39:cf:f6:95:49:b3:4c:8e:3a:c1:a6:1b:5e:
31:92:e5:db:93:aa:bd:c4:0b:7f:41:58:50:52:9b:
95:3b:fb:05:15:85:cf:d2:b7:c7:74:be:c7:33:38:
17:44:42:f7:ac:f8:69:3b:59:9e:0c:96:df:dd:b9:
40:5d:77:a7:37:0d:98:67:b0:f3:0e:e0:94:96:59:
05:ba:de:cd:ab:d4:6f:ab:37:25:68:05:9d:4a:07:
9f:3b:07:4a:67:a8:c7:32:cb:b3:93:a3:f7:9e:0f:
ff:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:BF:BD:78:BA:5D:C1:F9:F8:83:EC:72:1E:4F:4F:54:BE:3C:3D:97
X509v3 Authority Key Identifier:
keyid:D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:85:67:84:3d:06:46:ba:fc:af:da:71:7e:3c:05:dc:0a:77:
f9:27:ac:13:6f:02:74:28:c3:4d:6e:61:2f:08:8d:ea:0c:0c:
05:1c:00:8c:70:f1:6c:30:2b:37:eb:42:e6:5d:4e:5b:20:7b:
3e:19:96:37:70:2d:3e:17:38:35:99:ea:e3:a8:a9:15:45:ef:
78:0d:c4:37:43:bf:a6:bf:d3:47:fb:3e:1a:66:a1:c8:10:63:
20:56:62:2a:11:8e:92:b6:2a:93:d7:7c:5d:ae:b9:4d:7f:01:
9b:19:02:d2:5d:d8:fe:e3:87:61:b3:3e:de:18:ae:2e:b5:34:
e5:f0:42:1b:58:02:c2:a6:d5:e3:99:5b:f9:e3:40:cc:22:23:
9c:fc:8a:4f:02:31:ef:b9:53:30:ae:68:a6:d4:64:4f:6e:05:
cb:07:6d:6b:bc:9a:12:af:76:42:3b:0e:a5:e0:20:cc:9d:be:
a9:a0:80:63:bb:3c:06:22:56:42:41:ee:28:a6:9d:72:72:dd:
bb:6e:85:7a:87:3f:6e:4a:d7:27:dd:4b:9d:73:d5:88:34:4d:
fe:6e:65:87:f2:9c:7f:2f:b9:24:9d:f5:5d:e7:dd:46:db:ac:
ae:08:58:7e:3c:24:de:32:06:f1:29:c8:34:7a:a1:3e:84:9d:
c3:76:92:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 11:08:21 2025 by rpki-client