Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: 6BeyQPYBUwrZWY+04RtqHFw+xRuKqUuXByn8U2CatUQ=
Subject key identifier: 62:DD:6D:90:0D:DA:08:72:88:64:4B:03:93:A1:55:9E:00:FB:74:77
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 0199FC21961E02DB8AE62147E81F61538607
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 11:01:23 +0000
Manifest this update: Sun 19 Oct 2025 11:01:23 +0000
Manifest next update: Mon 20 Oct 2025 11:01:23 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: jzpzaxM1sT7Iv9eCLZSUM+VLptJgET6O7vzRaH4+alg=)
2: b7sNWlzHmaj36hpl7542OiFeLhk.roa (hash: r2LdfaqH2ThvketoRQBfUQ9ZRTad2+2P2sxQXJTCIiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:96:1e:02:db:8a:e6:21:47:e8:1f:61:53:86:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Oct 19 11:01:23 2025 GMT
Not After : Oct 20 11:01:23 2025 GMT
Subject: CN=62dd6d900dda087288644b0393a1559e00fb7477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:3a:9d:bf:5a:7a:74:24:a3:c7:d6:d4:c1:0c:
b4:a9:79:4c:ed:73:da:bc:b9:69:9c:a6:4d:59:64:
ed:d4:dc:c3:f0:a1:01:6a:c9:b7:df:7a:22:97:a8:
66:be:e7:c3:6f:15:96:f8:dd:ee:11:3d:4b:9d:3e:
26:ce:d1:c5:9b:e5:04:07:5d:be:98:2d:db:83:2c:
77:1b:29:c5:67:e2:93:0d:e8:dd:41:ce:7f:f5:69:
03:8f:55:81:a3:6e:98:98:f9:19:5f:25:37:09:b1:
25:29:76:20:67:e6:28:18:ef:c0:9b:61:87:c7:52:
ef:33:ba:70:42:d3:45:c1:e4:f7:18:43:f2:b6:3a:
87:c4:9b:71:5b:55:85:70:04:29:e2:ad:7e:5e:f6:
36:b0:cb:97:89:48:7e:5a:f1:b6:34:5f:a4:1b:5b:
82:2d:84:5c:a6:73:1d:9f:9f:16:cf:d4:76:77:b4:
93:0b:06:0b:2f:84:4f:ff:93:76:b1:a5:5a:65:b4:
3f:f2:56:2c:c6:2e:9f:dd:71:40:57:dc:47:83:9c:
24:56:b9:76:ef:34:9c:76:d9:d5:6f:63:f1:1a:aa:
90:a0:80:59:41:78:bb:ca:3e:21:a5:dc:07:dc:67:
b8:f7:87:29:08:ae:c1:ab:86:e4:2b:48:b1:45:a8:
06:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DD:6D:90:0D:DA:08:72:88:64:4B:03:93:A1:55:9E:00:FB:74:77
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:fb:4f:5a:2f:2f:5a:05:08:e3:71:c5:60:44:7f:20:19:96:
07:a2:01:1a:b1:23:d1:3d:d9:22:fc:d6:b3:f6:95:f4:20:d7:
bd:69:1e:3d:70:5a:ff:cb:49:52:f7:87:8f:36:99:3c:27:22:
87:7a:62:35:01:4d:c0:59:1b:cb:e6:69:c3:c9:1e:4f:f1:b3:
13:23:8a:30:78:eb:ba:e4:f8:c7:6d:a9:71:73:24:56:ef:5e:
c2:35:7b:17:79:69:c9:17:6c:3a:d8:ca:5d:06:ca:bf:cc:53:
92:0c:8e:be:a6:35:c2:2c:33:6d:e0:1e:6c:e1:90:be:cc:a9:
8c:96:76:58:7a:50:fe:0d:c7:f0:03:5a:22:34:b9:64:2f:51:
e0:b6:ad:9d:e0:a6:18:27:8b:63:2e:69:bb:d0:58:a9:d9:76:
55:f1:31:41:6c:f0:d0:05:9f:76:77:c0:93:8f:c4:32:15:63:
2d:bc:55:38:9c:5b:95:b9:14:6e:4b:83:61:17:a5:30:b2:09:
cc:46:49:47:09:ff:7b:de:1f:62:8a:ed:a6:df:f3:5c:12:48:
d5:a4:2f:15:9a:3e:b6:86:93:fa:21:69:3a:8e:6f:7d:2c:aa:
66:65:46:01:a7:94:17:dc:83:8e:49:7e:4a:88:96:03:69:a4:
64:63:c3:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:00:26 2025 by rpki-client