Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: eP8X+nJGd36+nGWQjRgeRafAqsJ4BGAoEg4D1+fRNX4=
Subject key identifier: 16:71:D8:36:64:08:6B:96:05:A4:54:EE:03:B0:CE:D9:43:BD:D5:E9
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 0199FE7DD4997D56D54977438A57D70B6237
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 07F6
Signing time: Sun 19 Oct 2025 22:01:23 +0000
Manifest this update: Sun 19 Oct 2025 22:01:23 +0000
Manifest next update: Mon 20 Oct 2025 22:01:23 +0000
Files and hashes: 1: EKdJIayRjGqpNjC_sXcLD4LpFxg.roa (hash: Q7XyDf/+ZYlwIoQHzzpWgBVzZ1z6oDECbrHcCzM9GG4=)
2: _-z4nvaTTyccKXJFwod66iKewX0.roa (hash: B/6vrb0o2kiLAGPMrkOgglOkupcsHoxdqdIe49F5XFQ=)
3: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: bgad6+ds1eNaxvjgXkftuG2E4rZLcHqnINGPIYBCHBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:d4:99:7d:56:d5:49:77:43:8a:57:d7:0b:62:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: Oct 19 22:01:23 2025 GMT
Not After : Oct 20 22:01:23 2025 GMT
Subject: CN=1671d83664086b9605a454ee03b0ced943bdd5e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c4:9e:24:08:67:61:d8:2e:80:46:04:7b:f2:
fb:f2:70:0e:d0:9f:70:eb:0c:65:32:3a:eb:df:67:
a9:1e:7f:a8:22:00:4b:4b:a5:a2:fe:44:8b:6b:bc:
11:8f:3f:77:8e:b0:8b:0c:f5:e8:76:54:e4:84:bd:
10:82:5b:4a:2e:48:fb:c4:28:23:c8:1a:0c:fd:96:
c3:d1:cc:76:fd:83:92:0a:b5:af:14:76:2f:44:1a:
dc:18:92:b7:da:8c:82:f5:1f:25:a0:af:1c:cb:86:
fb:25:e0:70:d8:d3:aa:6b:e1:fe:35:bb:a8:8d:01:
46:db:71:72:69:99:2d:79:a9:e1:59:63:97:ab:b4:
f1:7b:62:e6:d2:49:fe:5c:af:30:1c:0d:08:8f:80:
5a:fb:61:45:73:cf:59:d0:5d:84:58:75:09:58:e0:
7e:38:e0:0b:29:70:bd:96:44:4a:60:c1:5d:6e:aa:
b7:85:4a:30:4c:8d:b2:1c:ae:91:92:f0:32:8b:4e:
73:20:e0:4f:e7:ad:0e:c9:e8:31:ab:6a:09:7c:e5:
be:2e:86:b9:d5:31:c7:1a:45:0f:00:04:3f:4c:18:
26:f8:a3:ad:cb:f6:31:a5:5b:1f:7b:68:87:7e:c0:
a4:73:fc:d6:73:ac:71:e3:3c:a7:9a:a9:15:13:ca:
d7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:71:D8:36:64:08:6B:96:05:A4:54:EE:03:B0:CE:D9:43:BD:D5:E9
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:0d:9e:f4:6d:c2:9d:bc:50:26:22:55:f9:cf:7e:ae:1c:8f:
1c:4a:92:48:7f:7f:a5:f8:50:d6:6e:04:b1:41:7a:d2:10:b5:
35:7d:99:99:d5:e0:61:7c:d6:29:6d:fd:a8:fc:70:22:18:b4:
d3:86:ca:d7:b1:dd:4b:70:55:09:c0:fd:e5:cf:1a:23:70:6c:
0e:f2:b1:bc:a0:ed:49:58:7b:7c:19:04:ca:91:8e:97:37:0d:
9d:d2:2c:e0:17:37:9c:58:8f:76:91:e2:64:51:58:6a:16:5c:
1d:02:1f:54:8d:de:a1:26:f8:e8:35:64:2e:c1:35:14:3a:77:
79:56:1f:c1:34:74:77:b7:f9:1e:d8:88:af:48:ca:30:30:f3:
16:f6:14:f1:38:9c:f5:ef:ff:70:2d:71:02:2c:4b:f4:d6:81:
7c:6b:5d:c4:bc:11:4f:23:04:ad:f0:eb:5b:15:e0:c8:2a:50:
a4:6e:e2:4c:d5:4f:1d:54:25:3d:d9:c9:f7:4b:f2:a8:f0:ec:
3e:f2:13:0b:df:9a:ac:70:23:ca:93:89:5e:92:c0:49:2f:92:
85:8a:fa:80:5a:62:d8:a8:77:bc:60:41:9a:6c:32:e4:d7:f7:
a2:c2:06:eb:9f:43:0d:b4:e9:fc:04:b4:13:f4:29:56:4d:71:
67:ef:83:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:50:53 2025 by rpki-client