Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
File: 0bS-sKan4ShKv0OFNIz0hhALn4A.mft (raw, json)
Hash identifier: WwHSmVMRUXjx9n04CO94HBRNxgkkKppsUIqU0xsfYTc=
Subject key identifier: BC:21:8B:76:D0:96:2D:50:DD:04:83:AB:CF:A5:96:1C:0C:F7:51:C9
Authority key identifier: D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
Certificate issuer: /CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Certificate serial: 0199FFC844F7D4F616FEF0F82AE4B4E2C433
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
Manifest number: 0EE4
Signing time: Mon 20 Oct 2025 04:02:18 +0000
Manifest this update: Mon 20 Oct 2025 04:02:18 +0000
Manifest next update: Tue 21 Oct 2025 04:02:18 +0000
Files and hashes: 1: 0bS-sKan4ShKv0OFNIz0hhALn4A.crl (hash: OQIkkLH+lbR0DNvEaJWKxj8VrCv3IJmwTbrg+o3R4kk=)
2: c4vhQn8zi1dmhfuFlEzS457ekqY.roa (hash: K0d7LR2NOcizL+J6fo8ZUFPUHzj1ReR3yGovArPpqzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:44:f7:d4:f6:16:fe:f0:f8:2a:e4:b4:e2:c4:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Validity
Not Before: Oct 20 04:02:18 2025 GMT
Not After : Oct 21 04:02:18 2025 GMT
Subject: CN=bc218b76d0962d50dd0483abcfa5961c0cf751c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:64:7c:7a:36:10:90:d5:b8:a0:22:c6:05:4c:
73:90:9b:40:82:1c:33:6f:e2:a7:b7:2c:17:72:95:
cd:b5:31:04:3c:17:dd:f6:98:8b:a7:a3:b4:f6:a8:
40:e9:96:b5:5e:15:bd:35:19:9b:98:25:9e:77:43:
f5:b8:2c:be:39:f2:d1:ef:39:70:69:82:f5:b4:03:
61:f8:b6:71:a4:5e:4b:20:a2:6f:c3:f6:73:3a:9b:
9d:25:77:60:21:95:69:4e:75:d5:1c:4b:f9:a4:e6:
f4:75:b1:f1:29:94:27:d3:13:a3:40:82:61:0e:af:
c7:ce:3b:d9:88:46:a3:e8:8e:18:22:c3:d4:36:9d:
cc:d4:55:8f:92:20:3a:4a:57:ee:6d:36:88:e0:f2:
7a:f4:f4:2f:e5:ee:3e:52:7c:d9:77:71:c8:15:d3:
21:de:5f:de:3f:3d:15:92:8c:e9:4d:7b:6d:73:76:
e4:ba:0d:05:37:7f:14:d1:20:9b:6d:7c:bf:90:9f:
85:72:5e:51:00:41:78:ef:c0:a9:b9:84:1b:2a:b1:
a9:d3:35:62:50:b9:7d:04:94:3b:1e:37:79:e0:14:
13:e3:da:fc:44:67:62:3f:d0:62:78:44:dd:27:98:
00:e1:ef:7b:09:9f:31:84:ce:66:4a:4e:02:35:8c:
8a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:21:8B:76:D0:96:2D:50:DD:04:83:AB:CF:A5:96:1C:0C:F7:51:C9
X509v3 Authority Key Identifier:
keyid:D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:5d:bf:e7:3f:38:f8:e2:55:1d:fd:a9:8d:23:17:03:90:6b:
fd:7f:ee:79:30:1d:2b:ef:4b:2d:fc:93:0b:c1:2b:54:c6:67:
37:77:13:83:77:3e:66:77:c7:e7:d5:1a:9a:b8:21:ad:5e:f3:
1b:9a:60:d8:55:d1:23:f1:c9:26:c7:08:c3:38:3e:7d:9c:eb:
c0:d1:8f:ec:0b:0e:71:75:b5:13:0c:52:df:c9:54:60:34:4c:
52:f2:00:3f:bf:b5:49:df:fc:5b:32:27:0a:23:3b:cf:d0:d5:
7f:21:4b:bc:b5:a8:73:34:5c:a8:c3:ef:b5:a5:d5:3c:ff:2a:
7f:13:29:78:9f:af:b2:cc:e9:7d:fe:f8:b9:29:73:0c:6d:e4:
71:3b:d2:f7:d4:66:56:73:13:65:8d:fe:4f:0c:09:78:8f:7c:
47:72:18:40:d8:23:fe:e0:82:96:bf:d8:21:ae:e4:ad:45:fc:
8c:2a:c8:51:7d:c3:7b:9d:43:10:fb:8d:89:15:82:d0:ab:cc:
9f:e9:69:9d:63:1b:55:31:b6:52:62:69:8e:02:78:6b:ff:25:
02:b9:9f:c4:65:da:8e:35:1b:3d:19:ac:16:66:f8:ff:25:c9:
a5:2b:08:01:1f:50:eb:f3:cd:9b:95:92:ce:5b:a5:92:32:c3:
87:3b:54:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:29:16 2025 by rpki-client