Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
File: 0ffNDsTDvFTFlDEwfuw27wOCdzM.mft (raw, json)
Hash identifier: 85q653vIRSIb0+OdRJvNz5xXS1q7lwlC3qXqkAsDlhs=
Subject key identifier: 7A:C1:F0:E8:E0:2A:9F:0C:06:6E:E7:7D:71:EC:02:2E:1E:0F:2B:8D
Authority key identifier: D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
Certificate issuer: /CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Certificate serial: 019A4F627CC01F723E5A451655347742B4BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
Manifest number: 170C
Signing time: Tue 04 Nov 2025 15:00:45 +0000
Manifest this update: Tue 04 Nov 2025 15:00:45 +0000
Manifest next update: Wed 05 Nov 2025 15:00:45 +0000
Files and hashes: 1: 0ffNDsTDvFTFlDEwfuw27wOCdzM.crl (hash: lTYXS9cVLMWZrvo9Lb9AdJh694lrDKCWotO1uPrZ8GA=)
2: On0cxXdpQvZ_jJI1Rkh3ZfuLUxc.roa (hash: 9kDdHzwM7pfMm0bFoQEb02mFtUGZEAgcsF0RvK2rnzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:7c:c0:1f:72:3e:5a:45:16:55:34:77:42:b4:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Validity
Not Before: Nov 4 15:00:45 2025 GMT
Not After : Nov 5 15:00:45 2025 GMT
Subject: CN=7ac1f0e8e02a9f0c066ee77d71ec022e1e0f2b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:89:47:4d:09:09:ec:3f:09:cc:62:32:25:f2:
da:e6:fa:47:3a:51:d3:65:23:bf:7e:ce:45:14:4a:
00:aa:1a:6b:87:b4:03:3a:d6:c4:3e:24:09:e3:06:
8d:c8:56:51:13:65:19:8c:0c:41:54:a7:df:69:c2:
02:a1:c8:be:02:a6:1a:49:60:4e:61:5f:8a:0c:b4:
79:00:8c:ff:99:1c:e5:ae:e8:94:ca:79:c4:59:2d:
81:f1:c8:c0:da:72:91:c0:33:97:a2:15:05:8a:cf:
4c:96:1e:69:dd:67:ee:ad:9f:42:9c:25:af:6b:42:
f6:bf:45:f8:0b:92:74:a7:70:71:a1:8c:31:02:2c:
12:e0:86:eb:4c:22:5c:d0:3b:af:98:33:c8:9c:f3:
03:8e:fb:30:d5:71:12:3f:8d:74:d2:06:f0:db:9b:
33:75:5e:50:f6:f2:f4:5d:bc:44:3e:2d:0a:17:9f:
60:8d:f6:cd:1e:41:dc:2b:c1:3e:3a:91:56:0a:5a:
b0:54:ab:f9:22:53:7f:71:fc:30:24:31:42:0e:0c:
5f:01:65:ef:53:9e:66:10:7b:82:48:e2:14:1b:28:
be:7b:0a:22:c4:66:ae:bd:85:51:6e:bf:97:04:0e:
52:57:36:68:2a:f8:33:1b:2f:5f:96:fb:03:e7:51:
c4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C1:F0:E8:E0:2A:9F:0C:06:6E:E7:7D:71:EC:02:2E:1E:0F:2B:8D
X509v3 Authority Key Identifier:
keyid:D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:d8:c8:0d:83:a7:93:a6:4e:55:87:a7:bc:b6:d2:71:f1:21:
60:22:97:37:fd:23:d6:66:b7:02:b4:8d:dd:8c:ff:95:74:f6:
21:20:c7:14:e8:f3:b9:68:a5:14:31:9f:2e:3d:42:aa:64:2c:
59:8b:16:e8:64:d1:12:1f:da:3e:23:8a:ba:2f:6a:93:2e:b2:
a6:55:23:fd:52:a5:44:79:46:82:36:9f:9d:48:99:43:88:21:
28:c7:f8:0d:6d:4b:85:25:27:98:22:67:46:56:bf:6d:3d:15:
68:56:6e:02:6d:8e:fa:f1:b9:69:9a:9f:7a:5b:ee:f7:73:b2:
aa:52:5b:14:47:57:4a:32:f2:7f:33:6d:c6:ac:56:50:bb:a6:
e2:ce:1e:d0:59:94:3b:d5:2e:f0:f0:f3:b9:81:2e:96:30:d1:
11:c0:00:17:c1:80:aa:6b:e7:f3:32:41:f2:e3:a2:a3:93:93:
33:0d:0e:81:b2:c0:b7:73:cb:85:1b:2b:84:4e:25:df:fd:a6:
1e:49:1a:90:0a:8b:66:8e:a3:d8:db:4e:c4:94:53:4e:68:8c:
73:05:0a:2a:78:c9:1b:e6:d5:c9:9d:65:37:c1:e4:c7:4d:9b:
b6:6f:13:c3:fd:38:04:03:7f:50:ff:bf:0a:f8:e0:7a:ec:59:
d2:7c:90:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:44:37 2025 by rpki-client