Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
File: 0KHbRmz4CCBik9B-ZfISH-tJoz4.mft (raw, json)
Hash identifier: jDGjEjSil2CNDPSBg1hyuOaiB3oZdupzw4m51o6edgg=
Subject key identifier: 4A:90:AC:3C:A8:6A:29:4B:31:BA:DA:CF:24:72:B8:33:4C:ED:27:0C
Authority key identifier: D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E
Certificate issuer: /CN=d0a1db466cf808206293d07e65f2121feb49a33e
Certificate serial: 0199FD342ABB86CEE62D8E55D7932F2879BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
Manifest number: 14D1
Signing time: Sun 19 Oct 2025 16:01:18 +0000
Manifest this update: Sun 19 Oct 2025 16:01:18 +0000
Manifest next update: Mon 20 Oct 2025 16:01:18 +0000
Files and hashes: 1: 0KHbRmz4CCBik9B-ZfISH-tJoz4.crl (hash: QFpWHhCXf9utMskQySYeL3UdbEYmIYdSDBbj9KXP3OU=)
2: wC7Ohmh2aveKOZ7_Cl4a1vLomLo.roa (hash: hPiN8yhRbkkwhBqX7IPJBoamojlDhfcUtcDIIbpri30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:2a:bb:86:ce:e6:2d:8e:55:d7:93:2f:28:79:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a1db466cf808206293d07e65f2121feb49a33e
Validity
Not Before: Oct 19 16:01:18 2025 GMT
Not After : Oct 20 16:01:18 2025 GMT
Subject: CN=4a90ac3ca86a294b31badacf2472b8334ced270c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:59:61:b6:d2:93:64:3a:5a:ab:9f:65:d1:08:
49:e3:70:b6:26:fc:4d:21:3a:66:05:8a:14:ea:d7:
d3:a7:23:44:49:ba:1b:ad:84:01:71:06:7d:ac:9a:
26:c9:b0:ca:73:5c:f5:16:2e:02:2a:0b:4f:ab:fd:
30:29:10:7f:7d:c8:26:ae:c3:74:6b:d0:7e:2e:f3:
56:7a:1f:7e:90:60:1d:65:d8:ab:cd:81:1f:76:56:
96:69:d0:bc:94:2f:a0:c9:d4:f3:46:91:ae:d6:83:
6f:22:b8:f0:81:a5:df:42:a9:d6:7f:f8:ff:3c:52:
21:05:6a:0c:9d:b4:88:53:66:35:03:1d:3c:eb:35:
fc:45:14:15:ab:39:2c:c6:af:25:1d:ef:47:dd:9e:
ee:df:15:c8:59:8d:b7:19:65:75:78:72:5e:f2:1b:
26:73:e2:3b:d3:8d:a1:d9:82:db:39:8e:16:39:31:
20:e4:ee:7b:cc:86:35:48:95:3f:a6:a8:9b:c3:59:
40:9c:65:b2:5b:7b:d6:64:08:52:3b:f7:d0:cf:6f:
1e:82:9f:1f:a7:96:61:f7:68:1f:e5:95:95:d7:81:
36:11:89:21:a9:89:75:c8:ad:c5:da:13:ab:63:89:
91:c0:45:9a:6d:74:4a:08:1d:38:da:b7:99:61:88:
04:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:90:AC:3C:A8:6A:29:4B:31:BA:DA:CF:24:72:B8:33:4C:ED:27:0C
X509v3 Authority Key Identifier:
keyid:D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:12:aa:f7:61:b6:a1:6f:85:b6:99:25:9a:99:b6:60:67:aa:
80:8c:f2:8d:75:2e:e0:90:47:e1:fe:fa:70:a7:a0:34:44:39:
e7:61:01:cb:ca:18:f5:d1:c5:bb:c5:37:6e:57:7a:44:7b:64:
35:3f:77:1c:49:1d:ab:b9:bb:9c:8a:e8:a6:ad:56:36:ac:46:
46:53:ca:f2:d7:ab:44:c3:20:9b:33:da:be:35:7f:f5:25:51:
6b:ca:a2:a4:c5:c8:65:9e:e2:50:d0:a6:a8:d4:23:94:bf:61:
0f:21:86:36:1b:4c:ea:a8:75:ef:97:70:6f:7d:3f:cd:e7:75:
c9:cf:ab:22:93:7c:24:f2:9e:7c:5d:ab:88:8d:77:3e:62:e8:
8a:8a:7a:59:12:ff:17:fc:43:1f:27:3d:5a:ab:48:e5:01:0e:
e2:c6:f8:3c:ac:9d:02:37:0a:34:3b:cd:19:ce:cc:63:66:80:
a2:27:43:36:4f:9d:49:2d:ba:c8:de:be:ba:62:dc:71:02:4d:
44:eb:95:8b:64:7e:88:a1:c3:0b:12:4e:0f:01:2e:4c:9a:7f:
d1:5e:f9:b8:2c:65:49:6f:3c:d7:0e:b0:dd:1d:ae:4c:a1:35:
3c:91:be:c4:60:a9:31:3d:51:cc:93:ca:96:b1:ed:2d:96:44:
0a:da:3b:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:02:56 2025 by rpki-client