Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
File: o4v4pSbaAFbVPHKfvP7bivH0hJs.mft (raw, json)
Hash identifier: 205AzXVH7txzi/9nSLm0kIh0x0PLZzW2TiamL3JEDq4=
Subject key identifier: 9F:88:87:0E:3C:23:09:94:08:E6:C4:82:67:D5:FE:A1:AB:93:20:D7
Authority key identifier: A3:8B:F8:A5:26:DA:00:56:D5:3C:72:9F:BC:FE:DB:8A:F1:F4:84:9B
Certificate issuer: /CN=a38bf8a526da0056d53c729fbcfedb8af1f4849b
Certificate serial: 0199FBEB174B57932BADA89DFA58E9A4D52E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
Manifest number: 04AA
Signing time: Sun 19 Oct 2025 10:01:52 +0000
Manifest this update: Sun 19 Oct 2025 10:01:52 +0000
Manifest next update: Mon 20 Oct 2025 10:01:52 +0000
Files and hashes: 1: o4v4pSbaAFbVPHKfvP7bivH0hJs.crl (hash: 4Eqs5/kT1+OFVtTtWXUXQ6WG6iOM22hwNElAlE7vumk=)
2: p2sBhjkKrSOlFMpQrw-wv6_TqKg.roa (hash: ldQS4P3nrNFNOkVsta5Vmi47wIthwLabohDFSWJ5xpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:17:4b:57:93:2b:ad:a8:9d:fa:58:e9:a4:d5:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a38bf8a526da0056d53c729fbcfedb8af1f4849b
Validity
Not Before: Oct 19 10:01:52 2025 GMT
Not After : Oct 20 10:01:52 2025 GMT
Subject: CN=9f88870e3c23099408e6c48267d5fea1ab9320d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:28:48:84:23:b9:9c:f2:d1:47:c6:af:5b:41:
a4:e5:55:26:d3:a5:79:a5:30:44:15:79:6b:d9:da:
b4:0c:5d:13:cc:ed:16:b5:73:07:b6:29:d8:52:c4:
3f:1c:79:72:a7:44:3b:3e:e0:9a:12:6c:b6:e5:16:
58:59:4b:2a:6c:60:c8:e1:70:9f:15:59:a4:ec:41:
f1:9b:cf:41:9a:c2:f1:fa:df:c7:d2:e9:1c:ed:04:
de:04:32:57:b8:6a:ce:f6:50:56:3b:60:70:0b:e9:
f0:c8:df:24:4f:bf:e5:f7:d9:62:26:89:98:ae:f0:
99:4a:4d:25:dd:1a:05:6c:59:5b:48:a8:fa:40:19:
9c:75:5a:59:ad:f0:56:2e:df:fa:11:ec:0d:8b:fc:
48:05:31:ac:62:8d:5d:cd:80:b6:74:72:8f:a0:33:
7f:b0:59:4e:5e:36:d6:dd:c9:51:8b:b9:aa:46:b3:
bb:80:b7:7d:b3:c7:2c:79:87:d0:31:96:b7:cc:a1:
a3:7e:f1:56:cb:6c:dd:45:e6:10:55:5d:25:7e:4b:
91:b4:d1:be:00:ee:29:63:cf:d0:83:9f:41:22:3f:
71:21:84:80:eb:a4:65:a2:a9:31:e7:9b:b4:82:af:
a5:7e:28:8f:ae:a4:5e:3e:fe:14:a7:48:06:7c:97:
5f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:88:87:0E:3C:23:09:94:08:E6:C4:82:67:D5:FE:A1:AB:93:20:D7
X509v3 Authority Key Identifier:
keyid:A3:8B:F8:A5:26:DA:00:56:D5:3C:72:9F:BC:FE:DB:8A:F1:F4:84:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:70:d6:5d:5a:5d:54:f6:8b:e3:c5:59:44:d4:2d:73:33:22:
6d:1a:de:26:55:e1:cf:a4:75:9e:f7:ca:c5:02:76:22:d3:fa:
41:27:b6:02:46:fd:b7:bf:d4:d9:26:c6:ef:7b:00:07:bd:3d:
c8:db:0e:6f:e6:88:22:de:c4:16:05:fe:d3:5c:ce:96:f4:d3:
0c:f7:5f:4d:e2:6b:68:fe:65:cd:7a:0a:68:2e:f0:2c:5c:e8:
24:dd:bc:0a:5c:e9:a5:15:3b:c0:58:77:4b:50:84:ff:56:32:
41:f2:0b:ed:cd:6d:db:e3:86:1e:99:bd:cb:ac:5f:dc:db:ac:
1d:59:c7:27:ba:bd:b2:5e:9f:1a:9e:4a:66:be:ec:cd:6b:81:
69:4b:ca:06:f1:ef:fa:21:24:4b:ea:5c:6c:1e:cc:05:75:ea:
3d:6e:2e:17:b2:7f:58:aa:40:4d:dc:42:0f:55:47:07:a5:1b:
b3:03:1a:6f:18:71:bb:e7:64:e8:09:04:11:e7:c9:f3:fd:8a:
ca:58:38:f8:9b:10:81:82:cd:e8:2a:ed:b7:70:2e:e1:4c:3a:
42:e2:35:80:49:33:87:76:06:50:e9:36:90:39:d3:19:84:4c:
4c:fa:00:b8:bb:eb:9b:49:fd:af:88:c0:af:e3:4e:e1:7f:c1:
7e:af:82:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:33:10 2025 by rpki-client