Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
File: 0mKOBpte2LRVk0O1tn9atPkiUf4.mft (raw, json)
Hash identifier: 98Jlnj0LSS9d3/pFGv+8gfgAterc3GRoPspaxiM7WkU=
Subject key identifier: 53:3E:20:CA:29:97:EE:60:2C:CD:F0:1D:CA:83:D2:5D:BE:99:F6:FC
Authority key identifier: D2:62:8E:06:9B:5E:D8:B4:55:93:43:B5:B6:7F:5A:B4:F9:22:51:FE
Certificate issuer: /CN=d2628e069b5ed8b4559343b5b67f5ab4f92251fe
Certificate serial: 0199FC21D401EDF80B54EC820B2F27D60737
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
Manifest number: 022D
Signing time: Sun 19 Oct 2025 11:01:39 +0000
Manifest this update: Sun 19 Oct 2025 11:01:39 +0000
Manifest next update: Mon 20 Oct 2025 11:01:39 +0000
Files and hashes: 1: 0mKOBpte2LRVk0O1tn9atPkiUf4.crl (hash: y2z8HeZ4op1fz5xa52a7Q7bvYrGf/w+Ws4t0alzARmQ=)
2: IcIhqkwJl3oIn1TFze0JKC2ukZo.roa (hash: N9HPji4dA8H0kkRU9JW+TERsQXqgse1gQnpLkAfBwZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:d4:01:ed:f8:0b:54:ec:82:0b:2f:27:d6:07:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2628e069b5ed8b4559343b5b67f5ab4f92251fe
Validity
Not Before: Oct 19 11:01:39 2025 GMT
Not After : Oct 20 11:01:39 2025 GMT
Subject: CN=533e20ca2997ee602ccdf01dca83d25dbe99f6fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:55:f8:52:5c:1c:83:1a:63:15:43:18:db:5b:
d7:fc:3f:3a:df:78:90:73:2d:71:6d:5c:ec:51:e2:
de:f9:cb:c6:a2:68:24:77:4c:7f:6c:2a:91:1c:a4:
a4:84:41:63:93:00:c0:9b:c8:62:e6:1c:fb:74:a1:
07:bf:89:23:c5:a4:9b:ab:c5:07:56:3e:81:ba:cd:
64:b6:ee:53:3f:3b:50:89:87:24:e4:ff:cc:6a:69:
01:55:dd:cb:94:43:05:db:65:32:a4:c6:57:a4:e0:
6c:6f:58:84:7b:22:79:ec:85:bf:3d:38:61:37:9f:
ab:02:9e:47:75:0f:b3:c1:33:2f:2b:97:8d:c3:ec:
ae:56:97:14:a1:c5:dc:73:af:75:9e:0e:08:35:20:
ea:07:03:dd:38:20:40:a1:6e:65:97:8b:c8:22:b9:
dd:74:76:a2:d0:e7:f3:29:61:9f:0b:14:10:08:26:
7d:c3:e9:cd:ff:a6:d9:b3:cf:3b:c9:18:60:33:c7:
10:84:2b:50:5b:97:92:21:c8:5b:d5:22:10:2d:69:
06:e7:86:95:0a:98:c6:50:b2:87:e1:5d:59:28:78:
15:da:ca:69:f2:3b:95:07:2a:90:f8:1c:4b:a9:a0:
e6:0e:b7:02:2f:04:c5:f0:36:1d:3e:46:b0:ff:ad:
b4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:3E:20:CA:29:97:EE:60:2C:CD:F0:1D:CA:83:D2:5D:BE:99:F6:FC
X509v3 Authority Key Identifier:
keyid:D2:62:8E:06:9B:5E:D8:B4:55:93:43:B5:B6:7F:5A:B4:F9:22:51:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:97:3f:17:57:67:a2:e4:5a:3b:8e:91:e6:61:38:7f:49:8c:
f1:7c:7c:17:5e:b8:e4:3c:15:3e:c8:20:f2:17:73:81:4a:2b:
a5:47:e9:fa:32:c1:dc:50:b4:62:33:b1:07:fb:46:63:64:cb:
52:7f:f8:0b:56:1d:44:8c:05:91:3b:58:9f:48:30:7d:2c:64:
bf:ea:6a:fc:87:d1:45:cc:3a:8e:2e:82:4f:bb:27:64:75:df:
bd:ac:7c:56:1d:76:9d:e4:d5:b0:63:e9:d4:4e:08:ce:ac:31:
19:0a:1b:46:46:db:86:df:49:16:1f:5f:1a:27:67:7e:1e:dc:
c3:e0:dd:8f:49:31:7f:8f:d3:98:92:0a:5d:98:08:a8:40:b0:
25:fa:81:31:76:91:3c:0b:09:aa:36:eb:ce:01:b5:0e:59:70:
d9:e0:3e:01:e5:92:97:31:51:69:ef:04:bd:64:08:bd:2e:86:
6c:f1:a4:b7:2b:3b:4f:76:8e:c3:eb:55:d2:11:db:b5:f2:bd:
5e:4f:86:2a:af:ea:c4:c0:91:38:86:65:c3:c0:f2:9e:f8:f7:
7c:f6:7b:ee:67:67:bc:3e:aa:35:94:dd:91:72:01:14:af:80:
b4:c4:84:52:76:9f:43:ab:ad:89:c0:f4:e3:eb:10:a1:3c:68:
54:a7:89:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:27:13 2025 by rpki-client