Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft
File: pOpmDdthAOfTLl02aJp3fKnK-hk.mft (raw, json)
Hash identifier: 4QEPCvOedddpze8OScJy1xCgapRkv9R41E107G7Vxig=
Subject key identifier: 71:9A:81:41:36:F6:41:82:EE:90:D6:A7:F8:C0:BC:C9:01:1C:16:FB
Authority key identifier: A4:EA:66:0D:DB:61:00:E7:D3:2E:5D:36:68:9A:77:7C:A9:CA:FA:19
Certificate issuer: /CN=a4ea660ddb6100e7d32e5d36689a777ca9cafa19
Certificate serial: 0199FAD83A98701C7693503CE7BE191AFD01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft
Manifest number: 57
Signing time: Sun 19 Oct 2025 05:01:38 +0000
Manifest this update: Sun 19 Oct 2025 05:01:38 +0000
Manifest next update: Mon 20 Oct 2025 05:01:38 +0000
Files and hashes: 1: QBmdu5DezxoxKGOkAZGRTHz_Ovo.roa (hash: FxhiZR0M8vGdibBrIWA/GLd0J4VZN3IOW0ocA5RR3YQ=)
2: pOpmDdthAOfTLl02aJp3fKnK-hk.crl (hash: EQIkvP9d9LtJOxYSSEtpyOZoIoU9YU20rjNRH4nxjwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:3a:98:70:1c:76:93:50:3c:e7:be:19:1a:fd:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ea660ddb6100e7d32e5d36689a777ca9cafa19
Validity
Not Before: Oct 19 05:01:38 2025 GMT
Not After : Oct 20 05:01:38 2025 GMT
Subject: CN=719a814136f64182ee90d6a7f8c0bcc9011c16fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1e:8c:70:6f:59:69:a9:11:58:0b:13:14:f4:
68:f6:d7:a8:8e:2e:6e:bf:1c:5b:e7:5d:09:a7:a0:
2c:61:4e:ad:77:14:76:c9:42:2c:38:8d:b6:a8:17:
f0:e2:33:17:11:2a:14:b8:b6:9c:a0:03:46:e3:ce:
c2:eb:5a:c4:91:85:87:10:60:f7:e4:63:ad:38:3c:
98:62:ee:86:9c:37:76:30:85:7c:5b:9c:75:33:b4:
e4:4c:e3:c8:9d:50:29:e9:44:ca:ad:4f:f0:4f:d1:
12:fb:f2:4f:04:2a:9c:e4:dc:b6:74:01:7b:53:0c:
0c:72:2b:c7:29:78:93:d5:7d:eb:97:2c:c7:9a:d5:
b1:78:de:04:e0:f2:83:f0:1d:d0:b4:d4:1c:23:73:
f6:8b:49:a0:0d:37:5c:38:8f:c5:f6:ad:d5:4d:07:
f9:65:6b:fd:be:80:bd:bd:3b:cd:df:db:aa:e6:68:
75:33:d5:28:36:9d:83:12:33:7e:bd:3f:85:7a:e2:
94:89:19:b4:c6:a8:ac:5e:4f:28:5c:04:8f:83:08:
61:c8:45:0c:85:bb:d7:35:bf:a8:49:16:33:3f:54:
66:95:0b:c7:76:46:e1:34:eb:ca:a2:68:7e:86:3f:
be:ff:25:73:3d:26:27:bd:db:30:f7:55:ed:7a:47:
a8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:9A:81:41:36:F6:41:82:EE:90:D6:A7:F8:C0:BC:C9:01:1C:16:FB
X509v3 Authority Key Identifier:
keyid:A4:EA:66:0D:DB:61:00:E7:D3:2E:5D:36:68:9A:77:7C:A9:CA:FA:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOpmDdthAOfTLl02aJp3fKnK-hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e20aa0-338e-4f33-86ea-6f622fd18d30/1/pOpmDdthAOfTLl02aJp3fKnK-hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:2c:17:6c:48:3f:a4:c6:0a:8e:73:ee:bb:0e:d3:89:f5:65:
60:39:10:36:ff:21:a9:25:a5:e3:cc:af:c5:b0:79:50:96:2c:
2a:c7:a7:3a:b3:c9:5c:3f:ee:f3:e8:e5:df:1e:5b:e6:7c:a2:
ed:d0:0d:1f:d3:bf:55:6c:35:f7:ed:25:c9:ae:c1:e9:1f:5f:
a1:ec:b0:c3:72:a1:59:c3:e3:6a:f8:dc:26:67:a5:ad:0b:48:
da:2f:01:ad:ef:60:bb:db:ab:1c:17:9b:da:13:d4:2c:08:8e:
fb:90:31:60:75:cc:27:49:5f:24:51:f4:39:09:fe:c8:d1:61:
53:e1:75:52:68:5e:89:37:f2:2a:79:d1:4b:a4:69:7d:33:fb:
a0:03:2c:e0:8c:f4:18:cf:a3:4a:fa:99:c7:5c:40:70:d2:95:
97:96:47:45:2d:d2:42:7c:92:c0:ac:56:b7:c3:c8:f1:dc:b8:
29:ab:c9:88:0a:43:10:a2:af:a4:95:4e:f2:1b:1f:06:b9:65:
ac:06:6b:8b:1c:f3:6e:0d:29:1c:86:d1:ff:34:7d:ed:a6:09:
ea:05:f5:4a:54:13:f2:d2:2e:c6:a8:f1:d9:49:3b:2a:4e:ac:
64:58:f4:1b:1c:cd:1f:d7:94:dd:3d:90:6d:03:c4:6c:f0:5a:
64:73:43:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:05:12 2025 by rpki-client