Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft
File: 0BqOdIpGO0lQg_dHaROSBdyzObY.mft (raw, json)
Hash identifier: SvHMo7ZLHo7cUWVsU9hmIEIjCwDfs1+q2awzS9XiMEs=
Subject key identifier: 48:82:2E:1A:4D:7B:FD:84:D5:6A:1C:10:7D:C5:AD:E6:31:82:54:E0
Authority key identifier: D0:1A:8E:74:8A:46:3B:49:50:83:F7:47:69:13:92:05:DC:B3:39:B6
Certificate issuer: /CN=d01a8e748a463b495083f74769139205dcb339b6
Certificate serial: 0199FC21427BBFF0907ABB374420FDD391A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BqOdIpGO0lQg_dHaROSBdyzObY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft
Manifest number: 25
Signing time: Sun 19 Oct 2025 11:01:02 +0000
Manifest this update: Sun 19 Oct 2025 11:01:02 +0000
Manifest next update: Mon 20 Oct 2025 11:01:02 +0000
Files and hashes: 1: 0BqOdIpGO0lQg_dHaROSBdyzObY.crl (hash: 5GFxvuzPn14jsaKUL2U3xZ3VrofPsh/vQ5yQpWlaf0s=)
2: Ni9cQ-__7IlFIEScWKkm8nTwcNM.roa (hash: KZYmuutPEp1K/Rtla/BK3MqBgIvimyKNEmmqmQ1JLcU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0BqOdIpGO0lQg_dHaROSBdyzObY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:42:7b:bf:f0:90:7a:bb:37:44:20:fd:d3:91:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d01a8e748a463b495083f74769139205dcb339b6
Validity
Not Before: Oct 19 11:01:02 2025 GMT
Not After : Oct 20 11:01:02 2025 GMT
Subject: CN=48822e1a4d7bfd84d56a1c107dc5ade6318254e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:da:af:d1:2c:7c:fc:cc:9a:a1:31:b0:49:26:
06:8a:01:14:ec:2d:49:72:66:f9:df:33:2e:19:67:
02:a9:b2:cd:4f:4f:2c:c1:b9:42:bf:b7:35:d9:ef:
03:ac:f7:26:3a:13:99:85:57:28:19:4f:6f:40:8f:
a9:5d:c6:1c:7a:9b:c3:5c:b6:9d:61:08:12:9d:4a:
95:2a:24:1f:86:78:91:06:15:96:ef:7a:de:28:5b:
df:a5:e4:58:64:b4:26:3e:bf:50:bd:0d:22:0c:e6:
08:35:24:b0:8c:4b:3c:86:4e:3c:fd:81:ab:42:f8:
9c:60:88:ce:64:e6:b8:f1:1d:d5:94:cc:30:7c:7c:
00:01:8f:7f:e8:01:84:32:0d:81:7b:8d:a5:ec:a7:
c5:22:d7:25:64:69:d2:b8:f1:26:4e:8c:61:80:28:
7e:3c:ca:af:8f:67:e8:26:e8:fb:fb:59:70:0c:01:
4e:27:4a:7f:97:8d:bd:d5:21:74:0e:81:07:93:6e:
35:6e:9c:f4:72:6b:09:a4:08:c5:44:12:3b:a9:f8:
9c:5d:a1:b1:ed:15:3a:dc:d0:be:98:6b:fc:20:ee:
f3:a5:35:a2:1c:15:5c:f1:b0:9e:ba:32:d0:24:38:
d3:2d:cc:fd:19:ad:ea:7c:9a:47:97:45:19:57:53:
76:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:82:2E:1A:4D:7B:FD:84:D5:6A:1C:10:7D:C5:AD:E6:31:82:54:E0
X509v3 Authority Key Identifier:
keyid:D0:1A:8E:74:8A:46:3B:49:50:83:F7:47:69:13:92:05:DC:B3:39:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BqOdIpGO0lQg_dHaROSBdyzObY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/7ffba6-2489-4072-8298-fe1c8567297b/1/0BqOdIpGO0lQg_dHaROSBdyzObY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:37:2b:60:20:43:f2:18:a7:74:07:d7:08:31:8d:89:3d:be:
4f:55:9c:ea:12:b6:ed:ea:09:f4:64:1f:2a:76:d2:3b:9c:09:
77:b4:74:de:b3:b2:8b:25:18:8e:94:e1:bf:05:8f:be:32:5f:
f1:10:c6:16:8a:2a:8f:c3:56:22:d4:53:31:c7:c1:23:44:76:
6c:09:8a:64:b7:3e:c3:45:08:2f:e1:d7:7a:7e:a9:ff:f3:9c:
13:0d:57:df:78:93:01:27:63:6a:e7:d5:a7:20:4d:81:52:80:
f4:52:4d:e6:f8:cd:33:e4:6c:c5:dd:d7:ed:92:ab:ba:34:37:
1f:46:40:22:24:a1:3b:52:68:9a:a1:93:7b:2c:66:21:1f:d4:
1b:aa:89:9f:56:9a:9d:ce:14:e9:dd:fc:ae:36:ff:1a:b4:da:
7e:27:68:62:c8:8e:ba:c9:a0:43:f5:62:3f:73:52:37:d2:dc:
cd:e5:80:5f:e4:b4:5c:86:19:12:d9:05:fa:1d:0e:10:9c:4b:
b7:b8:9a:99:7b:9c:5e:25:a8:90:d1:82:64:a5:51:67:27:58:
56:8b:c4:00:5f:cc:33:60:74:5c:8e:d5:55:dd:06:69:e9:a3:
fa:dc:46:76:f6:65:53:6d:2d:90:0b:9c:5c:69:21:95:2f:a3:
5c:82:02:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:03:56 2025 by rpki-client