Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
File: D5otI3SqascUtfim7duA3GlnnMY.mft (raw, json)
Hash identifier: /yyHYjpRNDusxwskk0LtRriQ/QtT61RE8SboaInv99E=
Subject key identifier: 8E:FD:3B:3F:53:49:71:51:D4:28:8D:B9:AE:1F:C1:4C:95:13:E0:5D
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 0199FBEB0A0E8880BA4D462FE2DE215A0740
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
Manifest number: 0D46
Signing time: Sun 19 Oct 2025 10:01:48 +0000
Manifest this update: Sun 19 Oct 2025 10:01:48 +0000
Manifest next update: Mon 20 Oct 2025 10:01:48 +0000
Files and hashes: 1: D5otI3SqascUtfim7duA3GlnnMY.crl (hash: 4GUjI7MWVlNxAN8JS0DJCIoK9ZxNCL7KSE+r5cstDbk=)
2: RNk_0Bt2Bdlaf0Pdd2eUPaMyW8E.roa (hash: m6J+0888VMRpST0J5iXwVh9t9K8LOLn/EV2xZ10pPjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:0a:0e:88:80:ba:4d:46:2f:e2:de:21:5a:07:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: Oct 19 10:01:48 2025 GMT
Not After : Oct 20 10:01:48 2025 GMT
Subject: CN=8efd3b3f53497151d4288db9ae1fc14c9513e05d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:39:45:cd:be:d6:12:50:d5:51:52:91:36:5c:
2c:6e:32:ce:23:b2:35:67:db:9a:3c:1c:b2:d6:60:
58:90:04:00:a9:26:74:8c:40:d7:9e:af:c8:bc:05:
53:27:88:f2:0c:4b:7e:94:02:ba:4f:ed:62:ed:c8:
68:ca:68:f6:54:74:05:bc:1c:fd:f8:39:7a:c8:1a:
29:dc:d1:4b:cd:f2:be:4c:d5:c2:fe:2c:69:bf:94:
64:9f:80:15:ac:6a:dd:17:b2:29:be:89:33:6f:c6:
3d:20:1e:dc:5e:c1:e3:e7:31:2a:57:92:2d:1f:74:
eb:17:26:2e:dc:1e:c6:a1:33:25:e7:84:79:b3:2b:
8b:4e:16:e3:9c:ff:a8:f9:2f:05:22:b0:7a:b2:07:
5d:80:aa:de:76:31:12:02:06:39:ee:d8:5d:29:1d:
b2:2a:58:16:7e:08:28:3f:39:aa:d3:ff:bb:84:75:
94:9c:ca:4b:83:55:61:57:ca:51:e1:b6:fe:0f:18:
73:ee:b1:67:5a:89:ac:3f:45:a8:5f:63:ab:29:6c:
d1:41:61:23:74:5c:d3:e8:87:42:43:b1:ee:e7:b0:
a6:b4:d1:a5:5d:eb:ba:66:38:08:61:db:2e:e4:36:
49:3c:03:b3:d5:2f:b6:72:37:02:71:02:69:ca:25:
09:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:FD:3B:3F:53:49:71:51:D4:28:8D:B9:AE:1F:C1:4C:95:13:E0:5D
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:b8:ad:f5:41:ff:d1:d3:0c:50:54:1d:50:c4:4c:d5:09:1d:
a7:5f:b8:22:b5:57:ef:a9:e3:c6:19:d6:17:f6:ff:68:68:2a:
48:13:ac:47:e1:63:61:52:33:8f:8a:5a:56:89:39:b6:69:d3:
a9:19:2c:36:3d:c5:50:2f:98:1a:3f:ac:89:89:94:41:06:30:
b4:60:67:dc:99:56:fc:49:35:b7:12:52:81:42:dc:ae:b2:ed:
31:6c:fa:3d:6a:26:5e:cb:fd:12:f0:1f:72:f3:ba:23:46:41:
a8:92:0f:23:c0:a4:97:de:f5:e6:ea:ef:dd:35:8f:9f:07:43:
5d:aa:40:f3:49:fd:13:f7:59:6b:2e:5e:de:50:c9:bd:78:fb:
cd:48:2b:db:68:57:ec:6d:8d:03:e8:e7:82:c8:3a:dd:b7:83:
ae:56:4e:11:ce:a5:37:91:53:32:41:63:f6:4e:ba:ee:d0:97:
27:91:ec:93:d5:c3:37:26:91:85:aa:59:29:83:12:84:2c:06:
38:63:4a:9d:17:0d:0a:22:7b:27:83:54:25:34:7a:6b:38:d7:
4e:30:4a:61:ca:e5:a3:e0:ef:b3:88:e8:65:51:aa:7f:8c:e3:
85:54:4a:07:56:b2:28:06:c6:24:45:27:79:12:12:f3:cd:95:
6c:df:a3:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:39:42 2025 by rpki-client