Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
File: 0gXOrys2rZ_lGQaehrlONtLsS94.mft (raw, json)
Hash identifier: LQKnSnR/QL0MQV1ac0+JmNsbbJ+T5EeO5gAuORzPMbc=
Subject key identifier: 14:D5:4D:03:CC:27:0B:58:F5:51:3A:F6:9B:AE:70:AC:05:63:5E:D8
Authority key identifier: D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE
Certificate issuer: /CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde
Certificate serial: 019A00356149956FC684D14C38978815E63E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
Manifest number: 0A14
Signing time: Mon 20 Oct 2025 06:01:29 +0000
Manifest this update: Mon 20 Oct 2025 06:01:29 +0000
Manifest next update: Tue 21 Oct 2025 06:01:29 +0000
Files and hashes: 1: 0gXOrys2rZ_lGQaehrlONtLsS94.crl (hash: qrSwgBKTuVdjaUHts1BYg0qKsO1Vj7Ioc3H9YxAaFBA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 06:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:61:49:95:6f:c6:84:d1:4c:38:97:88:15:e6:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde
Validity
Not Before: Oct 20 06:01:29 2025 GMT
Not After : Oct 21 06:01:29 2025 GMT
Subject: CN=14d54d03cc270b58f5513af69bae70ac05635ed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fb:e8:7d:e3:51:23:f6:c1:9e:04:6a:8d:95:
c6:af:69:b9:40:ec:83:20:06:66:af:53:1d:0b:df:
32:84:23:7c:09:8b:49:6f:d5:68:c4:65:dd:b0:5f:
35:a6:24:26:d6:47:a3:86:0c:d2:ea:0e:41:56:fb:
69:56:af:72:d5:27:e5:79:4d:61:88:47:c8:b6:46:
c4:dc:47:c5:b0:90:ec:1c:4d:7e:10:74:dc:6a:83:
2c:fb:5d:cc:22:cd:29:0f:32:ed:cb:ce:82:f1:5c:
f3:be:18:68:7d:95:2c:cf:03:9b:95:e9:5f:3e:1a:
b7:71:bc:03:95:13:4b:63:83:bf:dc:3f:3c:7d:9e:
45:ea:a9:09:1d:74:b4:aa:fb:25:37:5f:0d:48:61:
98:87:71:c1:b6:15:05:b2:e0:00:e2:fe:91:39:82:
54:0d:ae:e1:0d:1c:63:fe:6e:a2:f1:7a:fd:68:bb:
6d:e8:71:82:8f:ab:51:23:50:bc:34:26:61:23:6a:
5a:00:99:dc:8e:7e:77:9b:5e:42:b1:26:2f:eb:33:
61:a8:56:3c:60:4e:1a:81:96:c4:b3:69:91:9a:65:
4e:90:87:26:30:fc:f9:ae:52:0f:48:aa:42:3e:2a:
85:09:01:e9:b9:1f:62:f2:25:d7:2a:cf:1b:53:61:
1d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:D5:4D:03:CC:27:0B:58:F5:51:3A:F6:9B:AE:70:AC:05:63:5E:D8
X509v3 Authority Key Identifier:
keyid:D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:65:c0:65:d7:c7:de:92:ff:e0:cc:a4:a7:24:29:37:dc:3a:
d3:f9:3c:92:42:18:9f:32:6e:8a:02:32:7e:88:52:e1:27:96:
ee:2b:5f:33:52:ac:b5:7b:69:2c:00:ec:5b:b0:42:04:8f:bc:
24:78:ff:6a:89:af:08:87:32:34:b2:90:76:bc:d6:77:de:6f:
5c:ba:2c:59:80:e2:97:68:42:90:40:41:cb:28:69:23:c8:e8:
9d:1f:49:cd:d9:18:27:2e:d3:29:35:c6:84:57:15:27:41:e7:
77:77:ab:8b:c8:47:94:56:f5:9c:c9:6c:aa:3d:27:d0:fa:3b:
c4:2a:3f:0b:e5:b2:42:aa:1b:a2:50:07:b5:55:b7:15:70:fc:
55:87:3e:e1:48:98:9b:5b:a9:e2:14:6d:42:d6:d2:cd:61:4b:
85:03:26:3c:89:e6:0e:d5:c5:05:a2:9a:39:e9:df:f2:65:96:
61:b5:ef:73:75:5d:61:c3:a9:6f:a8:14:fc:6f:27:64:6f:46:
69:0a:06:e4:6c:f4:24:6e:5c:1d:8d:6f:b4:4d:4f:69:8c:3b:
7c:60:03:78:38:4d:ad:2f:df:4e:f3:7d:63:6b:36:72:30:9d:
b1:be:7b:86:05:62:0d:c5:97:2f:7e:a6:6d:2a:8d:13:6a:91:
ef:ad:9c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:42:38 2025 by rpki-client