Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
File: _ORf1v09kyaEwMW8J_T6YVoQkOA.mft (raw, json)
Hash identifier: jagEQDpQE234Dcs2WO6Qrmb4457Tv+OHjjG/Hb88RMk=
Subject key identifier: 1E:D4:1D:03:55:2D:5A:00:10:1B:BC:BD:C9:38:E1:C7:01:B3:07:FC
Authority key identifier: FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
Certificate issuer: /CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Certificate serial: 019A53ACEF7EB643A43BB135A69A4C4D83EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
Manifest number: 0D93
Signing time: Wed 05 Nov 2025 11:00:33 +0000
Manifest this update: Wed 05 Nov 2025 11:00:33 +0000
Manifest next update: Thu 06 Nov 2025 11:00:33 +0000
Files and hashes: 1: 0q3J-c3dMCcb0fEi4kT4_OFKaDo.roa (hash: GFF2i9DOD9iNc83o9PQkrJQokdzx6TTVi4lrSIyhIgE=)
2: _ORf1v09kyaEwMW8J_T6YVoQkOA.crl (hash: 3sbWmflx1FMimc0dYtuc2xRuzQYRh/o6ETX+p8ER2fg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:ac:ef:7e:b6:43:a4:3b:b1:35:a6:9a:4c:4d:83:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Validity
Not Before: Nov 5 11:00:33 2025 GMT
Not After : Nov 6 11:00:33 2025 GMT
Subject: CN=1ed41d03552d5a00101bbcbdc938e1c701b307fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d9:54:9d:ac:81:55:47:a0:07:85:fe:05:15:
0f:c7:13:90:1d:c0:37:09:c4:0f:c0:d0:d9:36:38:
7b:35:00:fa:81:83:9e:b6:2a:79:07:35:ac:11:05:
b7:49:c6:b1:73:be:9c:f7:dc:60:a3:c7:71:9e:24:
4a:e2:db:30:ba:ad:1b:99:b8:8e:f3:e0:e6:10:20:
34:7b:aa:f0:9f:f8:ca:4f:14:85:a0:d8:4c:6c:2d:
bc:56:37:5e:56:2f:19:5b:9d:22:db:ca:32:3a:91:
eb:c0:d6:97:ce:ce:e9:d6:3b:87:a1:23:b3:a4:92:
fd:8f:4b:72:52:a8:95:37:aa:cd:87:03:24:8b:f6:
44:62:5f:68:0c:0f:77:94:20:de:17:7b:00:30:cf:
7b:2b:d9:05:02:f2:9b:0e:3c:00:67:34:c3:90:65:
61:5b:49:8c:68:12:43:4c:1b:cc:1d:cc:be:e3:3e:
ba:86:27:4b:4c:84:1c:5b:cc:e5:2d:d7:86:a6:c7:
00:12:0e:a6:3d:67:b8:67:fd:9e:fa:ed:c3:75:c4:
f1:4e:18:8c:0e:bd:24:ca:fd:07:7e:ce:07:c6:41:
76:3a:21:75:92:e7:71:4e:cb:cb:00:41:44:a2:82:
94:cf:48:73:43:ed:2d:61:d0:44:00:4a:c3:a5:a9:
bd:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D4:1D:03:55:2D:5A:00:10:1B:BC:BD:C9:38:E1:C7:01:B3:07:FC
X509v3 Authority Key Identifier:
keyid:FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:8a:9c:e5:15:7c:b9:01:a9:2c:8d:7c:5b:70:79:8a:4d:ae:
55:c8:14:c0:8b:5e:e9:78:f4:47:a4:f3:9c:00:02:c0:0e:5c:
d7:4f:75:0d:70:8a:7a:4a:d7:dc:9c:07:40:01:39:5c:e3:4a:
1d:64:da:63:63:91:48:eb:9a:6b:18:8c:e0:a7:7d:78:58:f4:
b3:cd:af:e1:10:60:ab:bc:9a:eb:d1:9a:14:26:2f:c3:38:a1:
7a:8d:1e:ca:28:dc:1e:19:19:62:17:e6:7b:71:6e:4b:9d:67:
e1:6a:77:e1:03:d6:66:0f:0d:b8:a4:38:1f:70:c7:a6:2a:63:
72:63:6c:91:4b:2a:6b:c1:3a:9d:62:8f:22:ac:fb:ea:64:4c:
12:1d:54:73:26:6a:9f:17:f5:8a:29:6c:21:d7:7f:b2:3e:ac:
a6:77:89:78:b6:25:e4:6a:a8:ed:97:5e:91:1a:59:6b:d8:64:
20:15:66:2f:5f:9b:07:bd:18:f1:83:b4:10:d2:84:59:5b:ac:
f1:1d:d2:ce:e6:a4:f8:d1:ad:60:a5:e1:5b:b0:4c:80:87:c1:
21:2b:74:da:3d:0e:93:34:b5:63:f2:08:06:52:a1:d9:10:67:
e9:52:06:7b:35:26:15:ac:c5:cf:9e:27:de:70:09:e7:5f:0b:
ff:2e:22:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 12:44:26 2025 by rpki-client