Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
File: 0PFLigjLX4BX1IsD5T9Fi44f7tY.mft (raw, json)
Hash identifier: M3TZoDI0iZqxt4IaflYV/BApBlXZFSFfv3abBkyq6jI=
Subject key identifier: F1:15:1B:2B:98:F2:7A:47:7B:16:07:2B:63:68:0A:53:95:6B:C1:A9
Authority key identifier: D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
Certificate issuer: /CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Certificate serial: 0199FC58395FD540A403015F4017B72A8C0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
Manifest number: 0330
Signing time: Sun 19 Oct 2025 12:01:04 +0000
Manifest this update: Sun 19 Oct 2025 12:01:04 +0000
Manifest next update: Mon 20 Oct 2025 12:01:04 +0000
Files and hashes: 1: 0PFLigjLX4BX1IsD5T9Fi44f7tY.crl (hash: Rs4dFHCVpJukj7X70GKfpeMePcHD+K8swcymhsbVwfU=)
2: 5XHmlHMatoj7HuqzW-xKZFCBoCk.roa (hash: 2LwcEFXQBzd4wv+NbYjPLMlRT/J2wftX73OmJ3FhceM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:39:5f:d5:40:a4:03:01:5f:40:17:b7:2a:8c:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Validity
Not Before: Oct 19 12:01:04 2025 GMT
Not After : Oct 20 12:01:04 2025 GMT
Subject: CN=f1151b2b98f27a477b16072b63680a53956bc1a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4b:6d:7d:91:4f:a5:99:2a:c9:74:65:09:d0:
d0:ae:75:bd:9d:e4:0b:3b:27:6a:59:7c:d2:7c:ef:
a1:98:b5:df:97:d6:e6:94:38:cc:56:18:58:de:d3:
3d:84:51:f8:13:2c:ed:a8:c4:a6:13:d4:53:2e:8b:
58:02:ad:2c:62:7e:1b:c6:92:fb:73:4a:24:78:81:
6f:0e:47:1c:45:18:6a:be:c1:90:1a:d5:8f:38:28:
14:dc:44:f7:4f:71:dd:88:35:e7:3f:04:a8:df:47:
24:07:f4:00:59:4c:a2:98:4d:4c:65:46:ba:79:ae:
c8:05:91:49:ba:0b:30:ed:a1:87:b3:7d:94:9a:ea:
9a:11:85:6f:2f:20:5e:22:76:04:a1:f8:7b:b9:0d:
1d:48:fc:eb:4a:f7:b6:0e:4b:a7:98:eb:70:dc:d5:
20:63:2e:fc:93:26:30:2d:c2:f1:b0:31:97:a3:1b:
ce:c4:98:2c:c9:5b:a1:98:be:a0:b6:eb:5c:fc:d1:
e7:be:60:a8:20:3b:c0:96:2a:38:b6:68:db:b3:6d:
49:49:59:5f:1c:eb:1b:6b:e9:02:40:3a:23:b8:5f:
38:db:b9:88:82:db:6d:4c:ce:9d:2a:3e:9e:b9:7a:
85:87:62:1b:c6:bf:b5:64:6c:00:52:c7:29:1c:10:
d5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:15:1B:2B:98:F2:7A:47:7B:16:07:2B:63:68:0A:53:95:6B:C1:A9
X509v3 Authority Key Identifier:
keyid:D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:3d:02:35:ae:79:df:f8:14:dc:1a:d1:65:9b:15:dc:eb:47:
b9:51:c0:59:24:ed:f3:59:e6:78:35:38:3e:6d:06:99:f7:c9:
3f:41:96:c9:f5:f0:f8:54:66:32:9f:f5:97:95:1d:a6:38:d5:
9b:95:15:0f:c6:0f:42:df:8c:64:fe:1f:48:5f:2b:c4:d7:f2:
bf:8f:72:f8:43:e7:57:e3:ba:10:6d:86:7d:05:4f:7a:75:09:
cd:ad:2c:fc:3e:5a:ce:56:d9:91:ac:2e:7a:8c:b4:34:33:27:
8b:dc:93:19:06:5e:0d:42:ed:73:ba:cc:32:c2:04:fe:a6:cc:
11:70:68:fd:89:0b:12:18:12:41:50:b1:21:73:b2:fa:ff:0f:
3b:97:d1:33:5f:33:fc:45:d6:ef:81:b9:e7:cb:d0:8d:41:74:
ba:fe:99:b9:f2:fa:ba:58:d4:cf:19:39:26:84:5e:f3:68:81:
a1:c2:07:c3:48:f9:12:d5:2e:b0:aa:6c:7d:7a:ec:0a:b6:f1:
ca:9b:93:d5:a2:fc:3a:e1:9c:9d:07:27:f5:f8:57:d0:b5:98:
a6:11:2b:83:8f:5a:a1:cc:c2:cc:b0:ec:ca:64:9a:9d:cf:f7:
b5:bc:ab:10:f6:5b:e7:66:ab:bb:2d:76:c0:b8:a5:90:fe:c7:
5e:16:7e:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:34:37 2025 by rpki-client