Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
File: 0KpKGno60j-q4q6un6YZTwISgSk.mft (raw, json)
Hash identifier: obxWB2xr8HC8YEYwvqV1QaQkYIT/DxvEidUcfD1+8VM=
Subject key identifier: 92:DB:95:ED:A5:BF:B9:BD:49:2C:17:2B:C6:26:A7:1A:35:AF:C3:A5
Authority key identifier: D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
Certificate issuer: /CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Certificate serial: 019A4F9912971CA34B4197D2337804E5AFC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
Manifest number: 0329
Signing time: Tue 04 Nov 2025 16:00:23 +0000
Manifest this update: Tue 04 Nov 2025 16:00:23 +0000
Manifest next update: Wed 05 Nov 2025 16:00:23 +0000
Files and hashes: 1: 0KpKGno60j-q4q6un6YZTwISgSk.crl (hash: V7cjFZMGamc9tELaXlKe6j2Bu2nMs3TlJrQjNpo2RiY=)
2: 2mOIvyxqACEFmIkGDLPkH-bc67w.roa (hash: a5V4lxFeCQH7YtlBbiNtuF1rDDvq1OPE/o43ZTFdAYQ=)
3: BPcKYotNA4ZeZvm82W73v75zPQs.roa (hash: oHpWOGTj/PoKbHsHCYFs8uXPSnbHGEoV8KY7k9zJBk4=)
4: GkxGrjdz0A7AWmifnWDimQZWI38.roa (hash: tHXJR2KGAG4wHE8bdFOYoF9Jdtd+4jQD2aXhMHJzWK8=)
5: ief4j2bb-cAvwzzS1T0xB8OgxGk.roa (hash: cv2vWMrY2M65pVapU15+XFEE8tVsd4Na8PnjBxEQRuA=)
6: wkwsgzJc2eo9ng8QQ8kvMc3qjbc.roa (hash: +iuoTytPo6r5GmeijHeI4hmWR8iJmhnqPLAkE9k79sI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:12:97:1c:a3:4b:41:97:d2:33:78:04:e5:af:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Validity
Not Before: Nov 4 16:00:23 2025 GMT
Not After : Nov 5 16:00:23 2025 GMT
Subject: CN=92db95eda5bfb9bd492c172bc626a71a35afc3a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:11:73:4a:15:97:0d:26:21:c0:07:fe:ac:72:
ab:11:9b:8e:4c:ec:61:2a:74:a0:1e:06:f4:cd:e3:
97:7e:6f:75:f2:45:d4:bf:98:a8:38:26:e5:3d:8b:
ec:40:18:fe:ce:39:9f:03:55:79:5c:ad:9d:fe:f2:
c6:e3:3c:ca:8e:5e:2f:22:2e:23:75:e1:d1:ca:01:
dc:57:d3:b3:f6:9e:ce:30:d2:f2:9d:fa:b0:7f:1e:
82:94:91:3c:c4:ca:ad:4f:9b:9a:bc:a2:9a:b1:cb:
d7:6e:55:03:96:2b:82:27:a0:7e:94:92:e3:1f:58:
c8:34:23:e6:61:ef:da:59:5c:cc:e9:ef:09:80:9f:
31:62:9a:68:b0:47:64:54:f0:d4:87:7d:32:42:cb:
30:a0:b3:b1:70:40:cf:b8:16:f3:7d:b0:13:92:30:
00:61:19:73:de:e3:d7:27:d1:d7:bd:a8:d3:85:f1:
cd:c7:4d:f2:c2:5d:eb:98:d9:85:56:19:58:77:fd:
c8:cb:d1:4f:c7:7d:52:01:ac:84:44:c9:6e:58:50:
05:62:60:21:13:09:9a:0c:c1:3d:40:f8:e0:83:48:
56:7c:71:fa:a1:3f:19:b7:8d:24:8f:d4:ed:c3:03:
e0:01:30:bc:6b:47:23:02:b7:65:1a:b1:e9:47:5c:
52:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:DB:95:ED:A5:BF:B9:BD:49:2C:17:2B:C6:26:A7:1A:35:AF:C3:A5
X509v3 Authority Key Identifier:
keyid:D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:8e:2b:58:a5:a1:91:09:98:38:d3:67:25:db:16:15:f5:02:
b4:1f:4d:35:50:d3:d5:fb:ff:f0:ed:4e:60:db:6f:cd:ba:70:
4f:ef:82:80:e7:30:91:3c:95:59:c9:d0:c0:ed:d5:5c:73:04:
18:c3:50:98:9a:bc:4d:ba:3c:b5:b8:c1:cc:4e:cf:f1:37:74:
fb:21:e8:f3:e1:7c:0f:84:b4:63:66:b0:18:66:25:75:fc:72:
82:c7:15:88:e2:3c:ae:14:bc:44:a0:01:83:a6:28:d2:c0:68:
f9:a2:08:3a:e5:c4:79:ea:6e:91:e0:46:bb:27:16:7d:7c:89:
50:6c:e0:f2:e3:ad:b4:2c:c6:fe:99:08:d4:02:a0:31:2e:ff:
b4:3c:ad:03:cb:0b:d7:0f:c9:c1:45:0d:dd:90:40:5a:c5:cc:
3a:1b:06:b8:5e:95:a1:5d:d6:16:3e:e6:71:79:da:2a:49:31:
53:be:cf:02:27:51:bf:fb:d2:2c:41:7f:eb:29:6b:31:7f:9f:
d8:a3:5c:fc:3c:4d:c6:9f:2a:d9:89:cb:e6:c1:cf:89:96:88:
cb:75:9a:61:eb:92:b7:c7:93:a5:75:e5:51:6f:f8:55:28:c9:
0a:a3:5a:40:f3:49:56:e9:3b:99:0c:0e:33:9a:e4:2d:a7:ea:
c4:28:38:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:22:47 2025 by rpki-client