Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
File: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft (raw, json)
Hash identifier: XnTxXZM26L5bTk1uL32cCbuiF3r3Eo4dooHDdfy9woY=
Subject key identifier: 55:A7:2A:B6:56:25:5C:7D:37:8C:C6:41:8E:BF:1D:74:BE:B2:F1:F6
Authority key identifier: D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
Certificate issuer: /CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Certificate serial: 0199FEB4C893940B472429D6A5B156599A04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
Manifest number: 0C66
Signing time: Sun 19 Oct 2025 23:01:24 +0000
Manifest this update: Sun 19 Oct 2025 23:01:24 +0000
Manifest next update: Mon 20 Oct 2025 23:01:24 +0000
Files and hashes: 1: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl (hash: N32lLnv+9RHVB+2JFgyICzdb4OhkwESwx67yKr4g6AI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b4:c8:93:94:0b:47:24:29:d6:a5:b1:56:59:9a:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Validity
Not Before: Oct 19 23:01:24 2025 GMT
Not After : Oct 20 23:01:24 2025 GMT
Subject: CN=55a72ab656255c7d378cc6418ebf1d74beb2f1f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b7:0d:ae:cc:e8:dd:cd:cc:21:29:a9:fa:b0:
96:9a:c9:88:a4:fb:69:ea:14:05:03:6e:8c:23:84:
b4:1e:d9:d2:85:93:0d:1c:9f:1e:ec:69:a9:1e:fa:
0f:e4:97:0f:05:6e:69:57:bd:90:58:b0:00:9d:0a:
08:83:5b:fe:38:55:34:ee:e9:b0:36:10:f2:ea:b4:
01:db:df:0f:2f:c5:d6:df:0a:00:4e:ec:b6:73:4f:
9e:46:a4:92:ec:66:44:82:b0:db:e9:3b:f2:e2:db:
55:cc:e0:c1:f5:d5:60:99:7b:6c:f0:3b:82:9f:32:
5d:06:88:fe:c8:fd:68:37:5d:11:53:05:48:f9:e5:
b9:43:79:84:b6:ff:ff:82:34:49:89:80:4e:ea:64:
45:c9:77:66:8c:f3:56:7f:d6:ba:7c:56:9e:b1:3f:
2b:8d:89:b7:c9:67:3a:af:dd:aa:d6:4a:36:df:3f:
0a:d8:15:d1:9e:6f:47:48:0c:4a:cf:fd:d8:2e:a0:
66:14:35:70:b5:f2:32:98:c1:2e:ff:ea:5b:46:15:
4b:43:8e:21:cf:f7:ac:d2:a9:bd:88:8d:e2:68:c4:
be:0d:d7:5a:76:08:45:78:47:77:4b:48:26:c4:f6:
c9:7d:13:7f:0b:cc:bd:66:71:65:bc:f0:ad:22:cc:
cd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A7:2A:B6:56:25:5C:7D:37:8C:C6:41:8E:BF:1D:74:BE:B2:F1:F6
X509v3 Authority Key Identifier:
keyid:D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:87:29:f4:21:76:d7:46:a9:4c:11:91:5c:42:cd:23:30:f3:
88:83:60:61:f6:0a:d6:36:13:31:ae:68:8e:79:83:c2:33:39:
97:9c:6f:b2:e3:d5:c6:b3:d5:d3:af:70:58:52:de:89:c6:51:
95:4b:7a:9b:b2:c5:7c:85:15:0a:52:df:8c:b2:3a:99:a8:3d:
b3:a6:45:28:de:2b:c7:20:08:42:0c:4e:68:c1:41:a2:d7:b0:
99:7d:6c:9f:a8:ef:8e:a3:56:7f:f4:4f:d0:1a:a3:7e:4b:c9:
b3:8c:76:ed:02:65:29:fd:68:e2:cb:d6:8a:07:85:e7:4e:9c:
62:fb:a5:e2:f4:12:dd:f0:b2:84:8b:98:64:51:32:f5:b2:43:
1b:02:98:33:65:10:be:5f:3a:47:18:57:e9:d6:99:1d:14:c1:
22:b4:44:cd:01:84:4e:44:3b:a3:80:49:1d:28:a4:0f:07:f5:
21:f3:4b:ff:c7:f5:e6:09:53:fb:36:a3:2f:6a:38:65:47:8e:
13:9f:81:ed:23:87:df:81:bc:24:e0:35:c4:90:df:81:82:61:
6a:f6:27:c8:30:81:55:69:c4:35:51:3a:d1:59:0a:47:fa:7f:
42:1b:1d:4a:11:38:09:ef:ba:0c:db:9d:05:66:80:c8:34:bc:
8b:08:49:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:11:34 2025 by rpki-client