Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
File: 0cpnYQKGq3OPhs6TX99e1iDwLZY.mft (raw, json)
Hash identifier: 0hCv2bDvAk1DgGcyxKJOHjol4SFtRYezJoMl3QZkhNQ=
Subject key identifier: 71:1E:70:F7:92:15:EA:4C:64:D3:67:30:32:C8:A3:E5:A1:DA:42:49
Authority key identifier: D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96
Certificate issuer: /CN=d1ca67610286ab738f86ce935fdf5ed620f02d96
Certificate serial: 0199FB0F51E34483B3561CA6D35AD0308CA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
Manifest number: 05DA
Signing time: Sun 19 Oct 2025 06:01:49 +0000
Manifest this update: Sun 19 Oct 2025 06:01:49 +0000
Manifest next update: Mon 20 Oct 2025 06:01:49 +0000
Files and hashes: 1: 0cpnYQKGq3OPhs6TX99e1iDwLZY.crl (hash: B/yXvlQo42xXbGZLIWW4VRGn76tcoXR68gZDRHlqrtM=)
2: oFJn2DbPMhZS_Tmm-DmxNkpMyhE.roa (hash: Y5qFxScEcaicbV90jLVdvKg9QlaEEdGk/0uix/Osd6k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:51:e3:44:83:b3:56:1c:a6:d3:5a:d0:30:8c:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1ca67610286ab738f86ce935fdf5ed620f02d96
Validity
Not Before: Oct 19 06:01:49 2025 GMT
Not After : Oct 20 06:01:49 2025 GMT
Subject: CN=711e70f79215ea4c64d3673032c8a3e5a1da4249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5d:3b:d6:68:86:a1:44:7c:74:3e:2d:49:42:
2f:0f:e5:95:3c:88:4d:54:0d:24:28:04:5d:8c:5f:
1a:41:f0:b1:b8:71:df:ed:4a:d5:06:5a:59:99:58:
7e:61:4f:f2:f3:33:6f:4f:1d:e8:d1:48:98:d0:41:
a3:1f:e4:a5:d0:78:18:bb:18:62:c6:bc:33:79:65:
fa:8f:ed:47:97:5a:31:29:61:8b:e4:78:26:c9:a0:
43:7f:a2:74:89:f0:b3:83:60:f2:72:19:69:2e:90:
14:e2:5e:cc:ea:83:8f:71:87:b4:37:10:e6:14:6b:
7a:99:85:a1:23:cf:6b:e7:dd:10:86:c7:0a:72:f4:
b1:70:cf:62:15:c6:6b:f8:e9:0f:36:51:aa:9e:11:
d9:28:00:2b:c4:bc:d5:0a:c9:57:66:8e:fe:d6:ac:
6d:7e:77:07:38:92:75:be:5d:9a:b2:fc:e4:1b:c6:
5e:be:00:45:2d:3e:a7:c5:7b:93:ee:a9:27:af:26:
f4:11:40:1f:08:7d:5f:6a:3a:0e:41:d8:c3:a2:a7:
37:e9:8e:41:78:9e:80:25:4e:5d:6a:da:ee:cb:2c:
d0:63:c1:9e:4b:5d:82:95:62:4d:05:e9:2c:11:73:
df:22:08:be:fe:c1:47:6e:5e:86:fb:58:58:a6:13:
f7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:1E:70:F7:92:15:EA:4C:64:D3:67:30:32:C8:A3:E5:A1:DA:42:49
X509v3 Authority Key Identifier:
keyid:D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:3a:37:0b:0c:9c:39:24:eb:b7:81:d3:81:cf:77:ee:98:84:
16:e8:36:af:98:87:5e:ee:67:f1:47:f1:6e:33:b4:55:ff:57:
e1:2f:c8:12:c7:eb:20:17:06:48:33:16:d6:25:f1:90:89:09:
95:b5:56:0c:a7:f1:4c:f4:cd:51:4d:c9:70:45:fd:80:3f:73:
4d:eb:56:4c:d1:1d:39:26:b8:08:24:92:f7:e4:4c:d2:da:06:
ff:10:a7:e7:66:d2:a8:34:7f:25:0b:7f:d1:58:63:8f:ce:17:
21:a4:76:a6:4a:5a:66:fd:5e:9d:18:b4:3a:3a:e1:16:08:d4:
dd:bc:d6:bb:b6:f5:dc:c0:ee:4d:37:10:57:64:11:4a:31:3e:
d3:76:47:fb:73:37:28:8d:e9:b6:7a:de:fa:d1:3d:a7:b4:71:
f1:14:e8:90:ac:e7:2b:2f:2d:b1:b5:37:0e:c6:6a:b1:a0:c2:
b2:a1:fb:56:9d:88:77:a4:9d:dd:45:07:e3:e7:90:6e:50:07:
14:90:da:39:81:d4:5b:00:7d:b5:78:0c:f9:c3:d4:62:e5:da:
35:70:96:df:3c:b6:2b:e5:e5:c2:b9:80:09:33:c3:69:5d:f0:
4b:20:99:d1:37:6b:c7:ad:ad:b2:ee:25:6b:e5:fc:69:80:23:
bb:95:7a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:31:58 2025 by rpki-client