Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: V/kiHZ6cd088C0JBddQsKNNNVHEFZ5wwEPbr2CDzBWg=
Subject key identifier: 59:C9:F9:AF:8E:6E:F8:2F:AB:47:2E:8B:99:E6:44:B1:BD:AF:A2:24
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 0199FBEB79A185D2B501EF3FB16027E0C63B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 11A0
Signing time: Sun 19 Oct 2025 10:02:17 +0000
Manifest this update: Sun 19 Oct 2025 10:02:17 +0000
Manifest next update: Mon 20 Oct 2025 10:02:17 +0000
Files and hashes: 1: 0CceuujOUN7fI6SJWiU4I3JvZeo.roa (hash: ReNIag9nA9bjr82rfcj5JjzPGdjpj3RK7GRwiAamY6Q=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: jCc+LSYbKuuj9QG76qTa3gYISxCrToAgFX9LHU0i/o8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:79:a1:85:d2:b5:01:ef:3f:b1:60:27:e0:c6:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: Oct 19 10:02:17 2025 GMT
Not After : Oct 20 10:02:17 2025 GMT
Subject: CN=59c9f9af8e6ef82fab472e8b99e644b1bdafa224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d6:72:6c:19:08:88:c3:b0:3f:47:aa:ef:9f:
bd:b9:ab:65:3b:f6:c4:be:e2:73:29:e1:45:e8:a7:
02:3c:18:26:dd:2e:3c:9f:6a:ce:a1:61:88:f3:ae:
39:9c:ba:2e:7d:94:dc:5a:98:84:64:e2:25:c1:fa:
82:75:e5:21:59:79:af:92:dc:34:ae:4f:30:1b:2d:
1d:8c:40:2d:41:00:e4:66:e6:5a:0e:6a:32:53:3f:
4e:a5:3d:1a:52:78:d5:1e:24:90:e9:87:39:ca:c5:
fb:3d:b2:f7:d5:a0:17:9f:c3:42:74:19:cc:4f:24:
e2:dc:95:bc:8d:ec:9d:d6:37:fd:9f:2e:ce:19:11:
b1:b6:18:ce:c7:48:32:85:92:8a:d7:09:25:9d:e7:
8e:08:30:c5:74:94:68:3d:a1:92:69:a6:55:d8:10:
c3:07:8b:9a:fe:24:dd:8c:7c:73:3d:10:6b:81:80:
92:3f:cc:aa:37:b0:90:56:c6:a3:77:dc:c1:ac:86:
e0:8f:4c:a4:1e:78:a8:1e:d7:bb:21:27:b0:e3:50:
38:f0:b3:3c:87:0c:30:7f:48:4b:f7:9e:81:77:bc:
66:be:0b:3b:98:c3:6e:58:34:3e:7d:59:40:f8:c7:
64:c0:f8:0b:35:d7:9a:45:1f:8a:17:c3:75:d0:6d:
7e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C9:F9:AF:8E:6E:F8:2F:AB:47:2E:8B:99:E6:44:B1:BD:AF:A2:24
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:80:e1:9e:6a:82:48:fe:84:4d:8e:3f:3b:fd:dc:89:01:5d:
94:fb:bc:9b:8c:9d:24:24:41:2c:71:0a:b6:93:df:fc:96:e0:
01:16:53:b2:27:27:58:7c:18:8c:2e:8e:ae:73:30:92:45:78:
b9:47:0d:b7:d9:14:9c:a9:f5:0f:2e:8c:2c:24:29:e3:16:06:
a9:7c:fb:cf:2c:a2:93:a1:ea:a6:8d:d5:d8:9a:f1:f6:ee:64:
4a:c6:45:26:72:4f:95:05:a5:a1:d7:4e:85:38:18:d5:2a:a9:
82:c7:c8:6a:06:b3:9d:ae:65:b2:8c:18:74:77:da:04:a8:c1:
74:ad:25:36:7f:ed:ca:3e:c0:b3:4a:08:ca:e0:7f:50:bd:3b:
b8:b1:d5:0c:f4:05:71:8f:1c:31:6e:69:b4:46:c8:98:83:f5:
bb:28:f3:bd:24:08:e9:00:1b:45:6a:1e:9f:d6:1d:76:62:e5:
d1:4b:eb:89:1f:5c:91:dd:d4:94:77:fa:ae:11:4a:b0:ec:1b:
6e:4a:58:16:1c:fe:34:72:d4:2c:8a:1d:5b:e2:a2:a0:f4:c7:
3b:86:5d:88:bd:84:a1:56:bc:09:e0:9b:73:51:0b:c2:d6:33:
eb:90:9b:d9:2f:77:19:c1:dc:1f:eb:5d:33:74:b5:75:cd:c2:
5c:d4:d8:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:09 2025 by rpki-client