Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier: 6FJ7RKVlE+FC56N0QrLXT/26FBmHbabl5wWV30UrTWg=
Subject key identifier: C6:D4:35:11:B7:FE:FC:19:0D:52:6D:44:28:C2:B1:A1:10:58:E8:54
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial: 0199FC215F47F4E0441D2CC66A4873C30493
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number: 0351
Signing time: Sun 19 Oct 2025 11:01:09 +0000
Manifest this update: Sun 19 Oct 2025 11:01:09 +0000
Manifest next update: Mon 20 Oct 2025 11:01:09 +0000
Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: BXGfDXsMUBYNpbqMvIhAyaOYaFneo8u4HM2ls9GkZG0=)
2: _O0LKSVD2FWQH20B8h-W2BSyf7E.roa (hash: /osVaD1xwsZSvzrjM1Npx7gTyOHOWobbSsuEq9U9lZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:5f:47:f4:e0:44:1d:2c:c6:6a:48:73:c3:04:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d248185956e443b55b062200f964537bc10bc130
Validity
Not Before: Oct 19 11:01:09 2025 GMT
Not After : Oct 20 11:01:09 2025 GMT
Subject: CN=c6d43511b7fefc190d526d4428c2b1a11058e854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:24:db:b3:79:9d:53:fc:c2:e1:eb:94:44:c5:
de:e8:26:3a:bc:43:b6:eb:68:ac:74:6a:ea:62:21:
e5:75:c0:ba:1d:2e:86:42:13:8c:28:1b:6b:2d:92:
a4:1e:73:ec:f1:9e:fe:e6:8c:5b:c4:02:d6:3e:fc:
3e:f8:01:a0:3a:b1:aa:48:2c:a7:68:e7:f0:ea:ea:
09:0f:a0:43:a5:7a:e7:fb:8d:8f:00:f2:b4:d0:31:
bf:9e:d1:99:e9:76:b6:0c:cc:79:74:01:a2:10:f3:
f6:b2:ca:c6:9c:b6:b7:1f:ae:87:a8:6e:32:b3:e1:
ed:d7:94:b4:b0:f3:95:06:f7:f3:45:38:ca:0d:1f:
a2:45:d1:71:0f:4b:ca:3d:a2:07:d7:47:e2:bc:9b:
5f:79:c2:28:79:4a:fd:72:ff:aa:7d:70:85:3b:88:
de:a8:45:0c:36:ca:d5:9d:e2:09:7f:a0:68:01:8e:
83:6c:73:d6:23:57:fc:c7:aa:00:77:ca:30:19:22:
9d:00:2c:c1:1e:fc:45:01:8d:48:47:01:16:d0:ae:
2a:f9:4d:8c:f5:f5:19:4b:6f:3b:69:77:db:b8:69:
27:ea:41:d0:d7:96:d8:08:e0:6f:d9:fb:73:fe:3d:
83:8e:be:e4:4a:a2:df:67:f8:64:34:da:8a:88:c8:
c7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D4:35:11:B7:FE:FC:19:0D:52:6D:44:28:C2:B1:A1:10:58:E8:54
X509v3 Authority Key Identifier:
keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:7a:e4:7c:a2:06:fc:6f:d8:03:eb:ea:8e:31:b2:12:8a:8e:
0a:27:cf:d1:c2:5c:8b:f7:7c:5f:1b:59:f2:e0:7a:b2:76:7b:
8a:c9:dc:f7:dc:31:9d:47:0d:e5:bb:19:56:3a:8e:59:e4:30:
15:52:74:0a:05:18:e2:95:a3:c9:b4:aa:82:21:c5:3d:75:89:
62:2d:8f:ca:5b:18:ea:75:bf:9b:8e:2a:c5:60:cc:19:52:f3:
1b:bd:6e:ea:43:7d:19:aa:83:8f:8d:0f:fb:01:a4:ed:8a:26:
72:6f:65:fa:06:a9:fc:64:f5:02:8d:e1:01:b3:97:16:a1:94:
57:30:b6:3a:18:ce:3a:8c:48:d8:cc:0e:f4:7d:33:58:dc:6f:
03:33:6e:20:3d:f7:ea:d7:67:cf:1c:5c:d4:d3:15:a4:40:42:
56:6e:ca:b2:78:4e:00:86:c3:90:5f:a5:d3:91:a3:b4:61:01:
17:c7:63:28:30:38:9f:99:9a:63:28:51:2e:02:41:0d:49:47:
4f:d6:e3:b4:aa:e2:db:50:21:ad:48:e2:dc:39:b8:1c:b1:b3:
91:80:f0:17:8e:c9:0b:b6:f0:f2:46:03:6d:b7:e2:67:da:48:
73:4d:4c:cc:1e:1d:f4:41:54:af:9f:c2:69:60:6e:0b:87:52:
e4:43:d0:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:41 2025 by rpki-client