Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
File: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft (raw, json)
Hash identifier: 27Zx9LresE4TOMG+DvzXFhQF6KtBfFJZrRk1I8NOsEc=
Subject key identifier: 14:50:8C:19:CA:BE:5B:C2:CF:F7:81:A5:F5:E3:C5:7B:B7:C6:5F:32
Authority key identifier: 0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
Certificate issuer: /CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Certificate serial: 0199FEB4FCBE86BC4DC428BBBD8D405912C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
Manifest number: 0656
Signing time: Sun 19 Oct 2025 23:01:38 +0000
Manifest this update: Sun 19 Oct 2025 23:01:38 +0000
Manifest next update: Mon 20 Oct 2025 23:01:38 +0000
Files and hashes: 1: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl (hash: icPl2cxHzy3ZQ9jVMrbNtBdiGJx7GpLIczBqcnoMc2c=)
2: qj9pJEL6aLQRmJQwwNdSHRT6Q7o.roa (hash: YXXU3MHXgJerIl9CeLyHeV8Hu3RdrFxQkf90wVwUCHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 23:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b4:fc:be:86:bc:4d:c4:28:bb:bd:8d:40:59:12:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Validity
Not Before: Oct 19 23:01:38 2025 GMT
Not After : Oct 20 23:01:38 2025 GMT
Subject: CN=14508c19cabe5bc2cff781a5f5e3c57bb7c65f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:59:19:e9:a7:e9:fa:8e:1a:0e:14:32:f2:58:
62:45:17:dc:f2:41:51:2c:71:50:48:34:88:5a:3d:
ec:5d:31:b2:18:ed:57:b6:1a:d5:7f:db:62:8a:00:
18:b5:19:56:74:bb:dc:5f:a7:53:39:a3:de:99:9e:
15:74:76:74:14:a6:94:33:c9:b2:d4:04:6f:c6:2a:
fc:4a:6d:59:d7:cb:5c:a9:c3:4f:f0:8d:b3:3b:b7:
de:f9:49:9e:c6:86:50:a2:cc:f5:16:0a:78:70:26:
80:f0:22:22:aa:58:39:62:7a:33:0a:65:50:69:b4:
2a:0a:a6:10:b8:03:33:b8:af:3d:6e:5c:0f:9c:ed:
d6:35:18:43:44:0b:b3:4c:09:35:f5:81:7a:cd:56:
b7:18:6f:d9:3d:60:75:3c:37:76:e3:d6:89:73:c5:
81:8e:56:3b:3c:ed:0c:18:fb:31:67:ae:f5:60:82:
81:a0:3a:49:d9:8c:7f:66:19:e5:d7:51:9b:32:12:
3d:c1:69:a4:15:59:d2:62:ec:9b:b4:8b:f4:df:0c:
0b:72:33:a1:f0:2d:c8:d4:d4:89:0f:86:e8:10:da:
61:10:06:af:54:22:17:b5:52:06:c7:61:a2:2e:f5:
b4:de:47:81:fa:59:69:68:59:13:a9:4b:b9:3b:f7:
68:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:50:8C:19:CA:BE:5B:C2:CF:F7:81:A5:F5:E3:C5:7B:B7:C6:5F:32
X509v3 Authority Key Identifier:
keyid:0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:2c:60:18:f0:47:a5:a6:57:77:df:df:10:4a:76:27:5d:2d:
56:8b:d1:77:b3:bb:64:9d:81:86:e9:4c:a8:7d:dd:c1:f1:bc:
85:75:ad:69:35:19:ff:99:24:8c:28:8c:f8:55:38:99:68:85:
dd:15:61:3b:4b:83:d4:4f:59:54:bb:3f:6f:d0:01:50:2d:93:
61:16:04:82:7b:d7:10:e8:d7:36:ec:c4:07:69:99:05:f9:f8:
02:11:b2:d4:e9:90:5c:2a:90:e3:2d:21:9a:99:de:cc:c8:6f:
29:13:74:97:29:be:5a:6c:27:d3:48:9f:12:09:b4:59:61:2c:
de:f7:80:40:24:6b:41:c1:a3:33:ba:d8:cd:bc:ea:12:36:d0:
c8:f1:63:b1:13:4b:9b:02:0c:66:1f:d9:6a:b6:df:49:75:0f:
8e:94:40:3d:de:93:7a:2b:78:7d:6c:68:9b:8e:dc:6e:30:d4:
4c:1e:2b:e5:6c:c9:81:ec:36:ae:8f:73:a5:82:d3:2c:04:7a:
24:76:73:33:8b:5e:2b:96:a9:ae:85:6b:af:a2:c0:25:bf:0e:
91:ef:85:d9:ce:86:9b:60:a5:f0:8f:94:b3:84:52:01:68:1e:
f9:8a:64:06:cf:9f:21:e2:61:89:9d:b0:6d:27:39:28:5c:d9:
ad:bc:61:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:02:39 2025 by rpki-client