Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
File: 0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft (raw, json)
Hash identifier: IOKTdHr38x3mdnVBwjCumGv1goXNoCeOr3l0AVOsUVs=
Subject key identifier: D2:30:78:4E:D5:7D:37:37:F9:26:38:9B:DD:FD:D1:9B:7D:4E:9D:62
Authority key identifier: D2:71:E4:ED:84:25:38:3F:6C:81:C2:1A:48:94:A4:37:63:67:5E:FC
Certificate issuer: /CN=d271e4ed8425383f6c81c21a4894a43763675efc
Certificate serial: 0199FD3456D09C13854193B87E088E349B81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
Manifest number: 01EA
Signing time: Sun 19 Oct 2025 16:01:29 +0000
Manifest this update: Sun 19 Oct 2025 16:01:29 +0000
Manifest next update: Mon 20 Oct 2025 16:01:29 +0000
Files and hashes: 1: 0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl (hash: hu48IMfU5ry2Nf2RZICsj8JcHj+VyX/wKFPdS442qus=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:56:d0:9c:13:85:41:93:b8:7e:08:8e:34:9b:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d271e4ed8425383f6c81c21a4894a43763675efc
Validity
Not Before: Oct 19 16:01:29 2025 GMT
Not After : Oct 20 16:01:29 2025 GMT
Subject: CN=d230784ed57d3737f926389bddfdd19b7d4e9d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e3:0d:86:c5:59:42:64:28:77:4f:33:aa:a0:
d2:0b:b8:bc:d5:e3:84:cb:b0:d8:e9:72:43:a9:e6:
7a:cb:69:6c:9e:3c:53:38:5d:c1:48:c4:6f:d2:94:
6a:bb:19:90:48:87:ac:96:34:f7:2f:f9:2b:70:e5:
b6:8f:bb:17:6d:53:f2:a0:b5:a2:d9:3c:88:3d:84:
a6:db:6e:f9:0d:d3:4b:c9:5a:0a:70:f9:27:34:50:
af:ec:fe:88:27:3e:3a:30:f3:d6:61:83:ab:3a:46:
3a:27:09:cb:6f:ff:c5:6e:ad:06:4a:55:43:7b:f1:
7f:b1:8e:50:d4:4b:d8:ec:b9:0f:4c:87:bd:c4:37:
0b:8d:dd:66:74:38:22:ce:d9:ec:87:b7:c5:61:fd:
53:da:19:af:03:93:47:88:bf:af:b7:ce:57:a3:84:
07:00:69:9e:e8:69:8d:18:93:5e:f7:51:78:d9:f2:
cb:b4:ab:f9:7e:60:60:a3:a9:b6:16:86:0e:17:dd:
bf:e3:46:26:13:aa:4e:dc:d7:ad:19:97:0a:44:2c:
a7:8c:96:19:c8:56:1f:f3:e3:f5:99:62:41:82:34:
a6:e7:82:bc:26:34:54:9a:6a:50:77:0a:31:ac:66:
73:ae:73:ec:ee:66:04:ee:87:b9:95:88:9a:10:f7:
93:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:30:78:4E:D5:7D:37:37:F9:26:38:9B:DD:FD:D1:9B:7D:4E:9D:62
X509v3 Authority Key Identifier:
keyid:D2:71:E4:ED:84:25:38:3F:6C:81:C2:1A:48:94:A4:37:63:67:5E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:7f:fb:82:46:a8:90:f1:3b:7d:1c:d7:8d:35:1f:ff:42:2e:
26:91:e8:38:2b:93:62:c1:40:b2:b6:e1:97:de:33:5b:00:0a:
fe:f5:74:15:8e:04:cf:4c:8f:77:80:6e:d5:96:65:31:8b:11:
3e:45:f1:68:58:2b:75:14:80:59:be:83:4c:e8:57:1f:17:20:
bb:28:d0:2f:8d:22:58:31:45:0c:52:4b:71:53:33:ec:49:5d:
c9:0f:37:41:fa:04:22:ce:40:1d:e1:da:bf:06:b8:2e:13:91:
d9:f1:c4:45:2f:66:6a:65:ac:f6:44:e5:bd:f3:0a:e9:5a:ee:
f6:54:6f:17:cc:b4:9c:4d:97:63:0c:a2:88:16:ad:d4:53:26:
b4:80:9b:17:2e:49:36:fa:a4:39:60:f2:ec:9b:7b:1d:4e:07:
68:da:39:ba:82:99:6c:85:cd:77:28:97:d8:b9:c7:3b:64:38:
a1:d0:57:1e:71:17:e4:20:a9:f2:e8:8c:b7:d1:04:b1:7d:71:
0f:d2:c3:6f:a5:b0:39:21:4a:39:36:41:a7:39:f3:24:d1:cd:
58:99:73:e9:2c:71:32:f5:86:cb:86:be:79:ec:8f:e8:1a:7b:
62:c9:01:35:95:b5:1d:3f:30:2c:46:44:ab:d2:67:12:af:40:
52:b3:8b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:01:44 2025 by rpki-client