Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
File: 0jhr7YO2RaK64TifU9llfZGedtE.mft (raw, json)
Hash identifier: VfSQtlbANUXO78eAQimbIF6MCUhGk0rSwunHWe1OHCY=
Subject key identifier: 23:69:4B:9A:9B:37:D9:44:59:4D:3A:E5:D1:F4:F7:5B:EE:1A:86:F9
Authority key identifier: D2:38:6B:ED:83:B6:45:A2:BA:E1:38:9F:53:D9:65:7D:91:9E:76:D1
Certificate issuer: /CN=d2386bed83b645a2bae1389f53d9657d919e76d1
Certificate serial: 019A4EF4299C0AAAECD8EFE151711ADE2BF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
Manifest number: 0AD2
Signing time: Tue 04 Nov 2025 13:00:15 +0000
Manifest this update: Tue 04 Nov 2025 13:00:15 +0000
Manifest next update: Wed 05 Nov 2025 13:00:15 +0000
Files and hashes: 1: 0jhr7YO2RaK64TifU9llfZGedtE.crl (hash: vEVk8xY4a7ZCryzeLgBt9AfL3iMnloZ+Y5WaYDxCqss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:29:9c:0a:aa:ec:d8:ef:e1:51:71:1a:de:2b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2386bed83b645a2bae1389f53d9657d919e76d1
Validity
Not Before: Nov 4 13:00:15 2025 GMT
Not After : Nov 5 13:00:15 2025 GMT
Subject: CN=23694b9a9b37d944594d3ae5d1f4f75bee1a86f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d2:df:43:85:61:a2:f2:2d:31:61:5e:9b:91:
1e:6e:31:2b:a2:38:1a:41:c7:2c:b2:56:99:af:11:
20:55:81:58:02:79:14:86:5f:a6:82:9d:d9:05:ab:
04:be:ae:80:30:9e:90:63:b1:16:52:c4:cb:c7:71:
32:04:23:9d:19:79:f4:2c:15:8b:e4:79:60:17:78:
48:ea:a0:f5:01:11:c2:db:ae:8c:d5:bf:25:e0:0a:
f4:12:38:eb:a1:e7:54:11:01:12:6a:57:ba:4b:62:
21:22:6a:4f:db:6d:ba:cd:54:5b:6c:8c:f0:8c:da:
c8:99:8b:16:95:37:11:58:fe:ee:f3:09:92:5e:00:
0c:48:80:c7:bd:3b:50:2e:5e:03:27:71:36:7f:27:
a6:66:8e:ed:28:dc:7f:fa:5b:dc:ae:3d:5b:61:ff:
08:8d:ee:53:c9:f8:0b:54:dd:e6:0b:d6:62:44:d4:
2c:49:51:2c:9f:1b:69:01:20:b2:41:7d:29:d7:01:
1f:05:c7:32:eb:8c:d1:a6:1d:90:3c:27:59:64:68:
23:fc:ff:24:d6:98:cf:a7:98:a8:ad:30:ab:f2:0f:
0d:38:28:67:ed:72:43:f4:20:50:1a:8b:33:17:b9:
d6:3c:37:05:30:9f:13:60:2b:ab:a7:f7:ce:12:c8:
6f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:69:4B:9A:9B:37:D9:44:59:4D:3A:E5:D1:F4:F7:5B:EE:1A:86:F9
X509v3 Authority Key Identifier:
keyid:D2:38:6B:ED:83:B6:45:A2:BA:E1:38:9F:53:D9:65:7D:91:9E:76:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:2f:48:b4:49:e2:2a:5b:ab:fd:b2:8a:bd:85:6f:b8:96:50:
c7:ad:fa:14:76:44:1b:c5:1e:b1:96:42:ae:7b:44:bf:d4:1f:
ab:94:38:96:83:87:4d:37:41:83:0d:c2:47:cd:88:71:ec:d0:
f9:6b:e3:6e:a0:df:16:4b:55:70:7b:13:9d:6f:02:5e:f1:fa:
5f:f5:01:51:66:7b:a4:3a:c1:93:4a:fa:f6:42:a8:df:19:5d:
4d:96:cc:89:3f:2a:ed:d7:8b:43:0f:54:52:ff:ab:17:d5:c8:
52:f3:46:7c:24:59:b3:08:8e:6a:45:70:e4:7c:22:62:6c:57:
6c:75:73:a2:bc:59:0f:62:6a:d7:24:90:8b:6c:b8:d3:f0:44:
4b:9c:b2:84:2d:c8:73:d4:c0:e2:08:8e:90:b4:57:27:28:6e:
92:47:f9:67:47:48:10:60:9c:fd:79:9b:96:f4:b8:12:49:fa:
d9:69:ac:4c:88:7f:4f:c7:68:b9:40:c4:51:fd:d2:15:c0:d8:
ec:83:0f:75:1b:ad:f2:a4:44:ac:d8:e8:bd:c9:e5:e2:68:7f:
22:21:3f:8e:06:b7:08:91:8a:6c:1c:45:91:8b:6e:3f:4a:0b:
e7:96:f6:c7:d5:dd:8b:0b:f5:5e:c9:9b:56:9b:d2:2d:b3:99:
95:8d:01:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:26:26 2025 by rpki-client