Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: TxyE/JMZ+POqR6w5rxR3qEilkQHKlLguITbSJHaraM8=
Subject key identifier: 71:AE:C1:27:5E:95:C4:A2:EB:6A:CD:86:2C:54:C2:6F:CF:0C:FD:92
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 0199FC2169A6DF5CD67C86B528DFDE413E80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 0335
Signing time: Sun 19 Oct 2025 11:01:12 +0000
Manifest this update: Sun 19 Oct 2025 11:01:12 +0000
Manifest next update: Mon 20 Oct 2025 11:01:12 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: qv2vAap/LOAL1hoQUBSaBjvHoO5bbpUwby/3ukW38Wk=)
2: LL8JcAdqtBuww975zCJ3NT8wbIo.roa (hash: OazqFiciLO+01js5WnVLTxcyLBf+8JShIpJGoJGbyKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:69:a6:df:5c:d6:7c:86:b5:28:df:de:41:3e:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: Oct 19 11:01:12 2025 GMT
Not After : Oct 20 11:01:12 2025 GMT
Subject: CN=71aec1275e95c4a2eb6acd862c54c26fcf0cfd92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:44:29:84:4d:ec:0f:f9:65:a8:04:87:50:b9:
25:cc:26:ea:7c:76:53:c6:20:ae:49:2b:d9:1b:6d:
e0:27:ee:71:90:3b:16:29:be:46:41:d2:b1:f7:ce:
09:a4:0a:9d:1e:b7:62:61:4f:cb:23:ce:b7:b6:e5:
dd:36:93:22:ab:e2:4f:ba:ad:85:5b:10:66:45:34:
a2:28:aa:24:89:84:fa:ff:07:1b:54:44:3e:2c:f7:
8b:a9:18:70:ee:05:72:b0:b8:3a:c7:92:48:15:4a:
15:01:f6:fc:d5:1f:f1:43:5c:8f:71:19:de:2b:0b:
d4:0f:86:27:ec:73:d0:09:de:94:3b:58:23:8b:71:
6e:9f:7d:ec:20:cf:ce:e5:81:00:49:a9:f0:75:ee:
bc:07:b8:81:26:a0:82:f3:ef:dd:7f:61:2b:fa:f1:
d6:88:b5:17:3f:66:0a:ed:21:a9:aa:08:fb:0c:e3:
36:33:e9:67:86:ea:d0:58:97:37:e6:03:23:17:b2:
ee:42:19:ca:8e:ff:3e:65:7f:21:b9:ad:5d:8c:b2:
19:7b:fd:cf:29:13:13:19:f7:75:91:55:d5:d2:00:
73:e7:5f:a6:4b:63:86:f7:33:71:46:46:a6:86:68:
af:7a:4c:96:7d:df:7d:9f:bc:ff:0c:0c:c1:1e:7d:
68:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:AE:C1:27:5E:95:C4:A2:EB:6A:CD:86:2C:54:C2:6F:CF:0C:FD:92
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:23:d7:5b:63:23:0b:9b:b3:3d:fb:71:ea:4a:a2:af:4d:93:
98:9a:bc:84:cc:32:22:94:7b:20:77:b9:96:88:5b:19:0e:3f:
eb:2d:ad:f5:7a:51:b6:c1:d7:23:66:ef:1e:db:b0:39:37:81:
66:93:94:e3:32:73:42:82:dd:af:82:fc:ec:31:55:63:d5:b6:
a3:fb:0b:99:de:f5:6c:4d:73:34:4b:bc:8d:d5:34:a7:04:47:
66:5d:7f:0e:85:b3:bd:94:22:24:ec:a9:f3:da:21:b4:77:be:
25:ab:2e:3a:0a:e7:17:fa:4b:73:02:8f:32:47:e3:dd:fb:95:
b5:eb:49:ab:db:e0:b4:23:9f:89:3b:f6:2d:a5:0c:9b:34:29:
8a:9e:53:64:e7:dd:1c:e4:6e:a9:79:8f:6c:f3:7f:ae:5e:6b:
c0:60:46:9d:29:ad:a1:58:0d:05:2c:b7:a7:f5:fb:08:1e:b4:
9c:f5:88:83:50:02:21:7a:5a:2e:12:a5:c7:ad:ec:54:ce:8f:
d4:a2:23:bd:52:52:70:65:11:59:93:74:d0:81:db:3a:e9:df:
bc:c1:d2:7d:09:08:8b:28:3b:62:eb:d1:cf:17:9a:5e:ca:54:
16:9b:99:e0:86:d1:ef:1e:d0:cd:d8:32:64:e1:4c:b7:9a:7a:
8b:c0:dd:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:27:09 2025 by rpki-client