Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
File: 0f00NtehmnND-oANh6Aa8YPaMYs.mft (raw, json)
Hash identifier: 1LLhNCgwlHVNhCdcRhwsejyDfYB/vCs7RWuQAYoNgY8=
Subject key identifier: 77:5C:DC:83:21:38:17:C8:4D:6E:A6:68:18:CA:27:04:99:FF:0F:D6
Authority key identifier: D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
Certificate issuer: /CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Certificate serial: 019A01111A36006E05CCD4A65AEE059DD70C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
Manifest number: 0CF1
Signing time: Mon 20 Oct 2025 10:01:29 +0000
Manifest this update: Mon 20 Oct 2025 10:01:29 +0000
Manifest next update: Tue 21 Oct 2025 10:01:29 +0000
Files and hashes: 1: 0f00NtehmnND-oANh6Aa8YPaMYs.crl (hash: 7jF5gCG+0HPdpnJLeCOVzgPpMnDFtkdfE9VCt+LceVc=)
2: 289E-Jj1-_NHnfIspmJ6dDyJHMo.roa (hash: WdW5apU9mzQj50OlelJWc6bz8hGD+pm8qBunEBj3yw4=)
3: Cs1qBn4VjrBIRHmPJXLiE1xFxCY.roa (hash: MWgCuKpBS+l+AyVioTFlRoxqt43GEYXQ/PHcMYuFOog=)
4: h6nXa6s8OWHMrQG1DSMZKlfJDE8.roa (hash: oPs+na6jf/GLFYpEpQKvloInu3ZuLoam22sOPdiiyEs=)
5: iW93Iii_wpRaBJx4UitIZE8Hirs.roa (hash: nFhRjV7MRzVZ4mQI/ZjUoZj1OD4mh/1+uDWJfZv9Rc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 10:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:11:1a:36:00:6e:05:cc:d4:a6:5a:ee:05:9d:d7:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Validity
Not Before: Oct 20 10:01:29 2025 GMT
Not After : Oct 21 10:01:29 2025 GMT
Subject: CN=775cdc83213817c84d6ea66818ca270499ff0fd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:98:23:38:c8:76:ac:3a:b4:a2:83:f4:2b:eb:
70:c8:7c:af:43:3f:19:e0:ac:ec:d6:e4:8e:22:ca:
3a:25:38:34:0b:6d:85:65:4a:09:51:c4:e8:da:bd:
3b:d0:d0:54:ab:9b:1b:cf:0d:92:c6:c9:d5:97:bb:
7e:65:00:50:49:9f:01:2e:c7:ad:c2:96:f1:0c:9c:
b5:d0:cc:ab:42:f3:fe:15:f4:f9:fe:7f:87:51:31:
ee:db:4f:b3:08:56:2a:98:80:3e:b0:ee:3c:4c:ad:
bf:47:06:2b:92:d9:32:15:b3:e7:b0:f1:3c:ca:26:
34:f0:93:45:8b:08:6a:ca:3e:af:4a:46:8d:24:b4:
8b:ca:bc:b6:3f:92:90:8b:43:0c:a7:50:6b:80:d1:
7f:ea:d7:9d:31:b6:7b:d6:75:0c:93:46:89:5b:ec:
68:3c:e7:ea:6c:74:81:a9:0a:01:26:58:bd:40:66:
72:43:78:7b:10:ef:a1:65:1b:83:72:6e:96:b5:21:
12:b1:b2:bb:c7:c8:03:de:bd:74:4e:28:6f:f4:56:
a6:59:a1:71:0f:a0:c8:35:a7:02:eb:91:59:b2:dc:
8e:32:6c:12:bf:6a:ad:e4:34:4b:be:df:60:f8:52:
7e:0a:c9:cb:30:e3:f6:4a:1c:43:58:70:40:6f:7e:
ee:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:5C:DC:83:21:38:17:C8:4D:6E:A6:68:18:CA:27:04:99:FF:0F:D6
X509v3 Authority Key Identifier:
keyid:D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:27:50:8b:43:18:4f:e3:c8:ae:14:d6:be:27:05:35:53:20:
b9:31:b1:40:e9:ee:6d:1b:36:63:b9:cc:9c:b9:8e:bb:84:74:
20:39:ed:49:39:e7:d7:26:65:d8:33:f8:44:41:d2:e3:79:33:
0d:46:8d:e3:4c:df:99:00:42:e5:3b:1d:18:26:b3:12:eb:e2:
12:bb:c9:b3:63:34:02:e8:49:c9:5c:e6:fa:d3:8a:dc:41:21:
92:c3:86:d8:b8:19:e8:f0:b3:c4:41:5f:bb:b6:da:13:ff:80:
c0:1e:7a:0a:7e:d1:07:0b:76:93:79:cb:07:7a:cc:aa:9e:46:
ca:9a:15:09:04:95:c0:d3:3a:30:e4:ed:f8:ff:bc:d6:a3:1a:
31:88:a6:f3:a1:4d:b1:e1:19:93:d2:15:6e:5c:47:19:09:ad:
77:7f:f7:4a:18:17:5c:60:0e:b3:17:57:14:44:d6:8b:0e:2b:
78:bd:21:ed:c1:85:06:a5:6a:f2:57:69:d0:dd:02:e0:bb:18:
22:e8:5f:4d:b1:02:42:88:e1:85:d9:f6:ed:2c:06:c9:2e:c2:
28:c2:cd:ac:68:b8:c5:e3:ba:b5:18:b7:b2:96:d0:e6:f6:8a:
97:2c:d6:47:af:cf:8d:81:9b:a3:22:77:0d:3d:26:9a:49:9a:
29:df:58:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 17:44:36 2025 by rpki-client