Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
File: DoMf1wxr03oqddeg6sAxyS2o4YU.mft (raw, json)
Hash identifier: FMj3L2aajkXk6rV/ZLh/aFgNHqslvZL5giFZAP5cPOg=
Subject key identifier: D7:8B:C5:8E:84:BD:3C:2D:E1:C3:EF:0B:2B:25:DA:C8:4F:B3:02:61
Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Certificate serial: 0199FBEB63078A6379E7D58F251C559D231A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
Manifest number: 1364
Signing time: Sun 19 Oct 2025 10:02:11 +0000
Manifest this update: Sun 19 Oct 2025 10:02:11 +0000
Manifest next update: Mon 20 Oct 2025 10:02:11 +0000
Files and hashes: 1: AbAz97rI6RXbeaGg0ju1UGvv4xM.roa (hash: 6SJubAUNhK59Bg5EEa587Nx4giyrDXi2DFXXzhtFznQ=)
2: DoMf1wxr03oqddeg6sAxyS2o4YU.crl (hash: G5ATVFDn864lzd2HQWqYlNVK9loLJ9etXc5GgZOOggQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:63:07:8a:63:79:e7:d5:8f:25:1c:55:9d:23:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Validity
Not Before: Oct 19 10:02:11 2025 GMT
Not After : Oct 20 10:02:11 2025 GMT
Subject: CN=d78bc58e84bd3c2de1c3ef0b2b25dac84fb30261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:da:ab:a2:28:00:71:2e:97:bd:18:02:e9:f2:
1b:31:77:ce:4c:92:8b:95:e5:02:dd:94:74:ea:34:
d5:fc:92:3d:61:0c:a7:8d:98:8e:8a:fb:f7:6a:27:
df:16:ee:2e:d6:44:76:ec:9b:2f:d9:1a:01:38:69:
fd:05:a8:34:4c:ce:99:a8:5a:6f:97:72:81:f5:8b:
ac:4e:06:6a:01:9b:4a:60:bb:ca:a3:ee:5b:55:83:
bd:a8:bb:a2:d5:91:3c:62:67:53:77:34:49:0a:73:
62:3d:6c:68:f1:8f:f9:43:67:8a:13:88:3a:70:42:
d8:3f:5d:6f:72:e2:fc:d0:3f:01:d7:14:4b:5e:30:
63:42:b4:c4:24:ce:30:15:19:95:6a:f9:99:14:1c:
d5:93:f6:74:a8:46:d9:8d:47:a7:37:0b:e1:a8:2c:
27:80:7e:c5:e7:1e:2a:d6:ad:ee:9a:92:e5:91:57:
cc:01:8d:99:b1:1a:ec:63:20:2f:84:30:a5:5c:57:
c6:84:a7:65:33:09:49:c3:db:61:75:9a:f8:70:de:
96:df:4c:ab:cf:d7:b0:99:d2:b6:32:2f:ce:63:58:
ea:27:a2:83:70:f2:6e:2b:57:28:c0:35:2c:ae:f8:
a6:84:5b:69:bf:85:8f:e2:48:10:45:09:69:a0:49:
c9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:8B:C5:8E:84:BD:3C:2D:E1:C3:EF:0B:2B:25:DA:C8:4F:B3:02:61
X509v3 Authority Key Identifier:
keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:74:7d:c4:d2:e2:13:06:1f:0f:a1:68:69:07:93:79:5e:75:
f0:31:96:c9:13:b5:fd:26:cd:a3:dd:06:5f:b5:7e:e8:f7:49:
1c:37:91:9e:40:14:47:45:18:d5:8a:bf:6f:b1:a3:e9:2d:98:
31:ea:bf:3d:d4:2b:d8:e2:28:a3:33:3c:58:54:36:d6:82:50:
62:a8:e8:dc:43:ee:ae:13:ba:a0:71:33:e5:21:8b:f8:de:c5:
86:62:9f:62:b6:d0:d3:ab:7a:f6:50:30:77:77:a6:79:14:b4:
b8:e4:32:f4:1f:ce:ca:80:25:4b:73:b3:d8:8a:4c:56:b3:69:
a3:dd:a8:64:f8:60:3e:7d:a2:c7:ce:fc:18:c5:1a:2b:e9:e0:
5f:0b:2f:12:d2:6c:19:b5:c2:3f:ba:e6:66:03:70:6b:8d:e2:
70:24:55:8f:de:12:31:fd:ed:0f:18:9c:29:79:45:22:3e:05:
15:47:bd:02:e1:40:eb:79:21:99:e2:73:9b:09:23:b9:81:af:
dc:70:aa:f4:da:73:35:ba:7e:eb:71:67:3e:77:7d:b3:84:35:
35:a8:da:de:98:75:a0:8f:22:f4:7c:28:fb:da:5f:94:6b:16:
d8:99:a9:b2:2b:94:85:c1:1c:21:60:ba:fc:40:c2:f0:0c:33:
36:7b:35:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:05:50 2025 by rpki-client