Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json)
Hash identifier: HE2O6PFLyysQyzhc9jwP4gQfH85gJlXVigQZg/2SeHY=
Subject key identifier: 19:19:1B:7D:E9:7A:C7:18:3F:61:20:DE:F9:EA:3A:38:22:57:CA:6B
Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Certificate serial: 0199FC21A6A1B9441A19DE41A795F4268985
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
Manifest number: 1426
Signing time: Sun 19 Oct 2025 11:01:27 +0000
Manifest this update: Sun 19 Oct 2025 11:01:27 +0000
Manifest next update: Mon 20 Oct 2025 11:01:27 +0000
Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: LsRNA8er9A7fBYn82Lpiq3+gpH0uciieOdPzclMmWCg=)
2: 5tz1cuLC3Spal7LSIEjI-Qlcl6U.roa (hash: XSoR4/ODhnGd0USG7NRxHx6V9kNwJuT3OUfa19EcNCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:a6:a1:b9:44:1a:19:de:41:a7:95:f4:26:89:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Validity
Not Before: Oct 19 11:01:27 2025 GMT
Not After : Oct 20 11:01:27 2025 GMT
Subject: CN=19191b7de97ac7183f6120def9ea3a382257ca6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:25:83:d2:ad:94:85:32:9a:4d:f4:4a:10:a9:
c1:fe:63:de:e3:1f:1a:a7:ec:1b:27:86:20:8c:2a:
59:38:7f:d9:13:e3:5a:44:b8:50:a5:71:ca:35:b3:
2c:ec:10:ad:08:58:02:4b:20:d6:e0:a4:e5:7c:23:
38:b2:63:45:08:d7:09:51:90:b8:b7:04:be:9a:78:
85:a1:24:0b:2e:9e:67:b4:e7:25:e5:60:5e:42:a6:
65:dd:49:d9:1c:c9:44:33:65:c5:d2:bc:77:55:ad:
28:ab:2d:47:99:82:fe:8d:23:7e:e0:28:59:d2:39:
2f:5b:81:5d:f4:85:8a:b3:14:57:a7:87:25:b7:15:
5f:05:bd:fa:c0:1f:f5:1c:b0:f3:c1:4b:ed:aa:2d:
d3:41:f5:8a:74:5f:f1:10:01:39:df:72:40:7c:ab:
b4:55:39:15:36:b5:2a:56:76:ae:6c:41:de:c2:2d:
f7:48:65:54:96:1a:f5:22:bd:b8:79:02:c0:4a:59:
07:1b:b7:83:07:11:9b:f2:ac:ad:50:bb:02:11:c2:
25:e4:d5:bc:ae:62:5c:51:b7:c5:dc:5f:c8:f0:70:
a4:e8:5c:eb:a8:21:b7:57:0f:2b:6a:8d:ce:92:b0:
30:6f:b5:14:1a:6f:01:c5:2c:0d:77:e6:a7:25:aa:
61:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:19:1B:7D:E9:7A:C7:18:3F:61:20:DE:F9:EA:3A:38:22:57:CA:6B
X509v3 Authority Key Identifier:
keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:4a:77:7b:36:42:3e:7d:00:e1:b2:74:46:24:9a:85:75:e6:
49:40:36:f1:04:3b:01:60:42:9c:81:2d:af:d9:62:e9:90:43:
8e:fd:17:c4:8f:67:ef:f4:47:5f:67:98:37:a6:04:ac:98:eb:
19:4e:2d:7c:ac:5f:79:bd:8d:a3:90:5f:2a:4b:6f:10:ac:eb:
09:3a:4c:26:9a:3d:eb:29:fa:3f:4c:2c:2a:fc:b5:7f:89:24:
62:22:ab:55:33:4e:9a:e2:53:0f:84:d4:09:52:11:d6:79:e2:
38:b1:66:01:5d:9a:b9:c8:3a:3f:e3:7e:4f:44:2c:a2:2e:a4:
4f:15:16:51:84:27:e1:08:c9:fb:4d:4f:e5:13:e9:74:50:57:
43:05:89:0e:57:62:c0:fb:7d:55:92:38:fb:78:f4:b5:6a:df:
33:f9:f1:7a:78:06:87:b0:6c:02:f5:21:e4:f1:2c:cb:91:53:
07:00:b3:f0:c0:21:74:f8:25:39:2f:99:06:77:03:7f:d0:3b:
78:04:8a:57:4b:2d:1a:0a:1d:54:ba:36:9e:15:c8:f8:83:73:
ae:63:5f:c3:9d:0a:5b:0e:f2:4c:8d:ee:7d:5b:b1:3b:9e:08:
08:9c:f0:ba:2e:46:5c:b5:73:b4:9f:e5:82:da:ff:7d:ec:90:
cc:82:6d:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:57:14 2025 by rpki-client