Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
File: 0KpKGno60j-q4q6un6YZTwISgSk.mft (raw, json)
Hash identifier: JoLSqxplRHtbluELZeGo59h8Ypncpcyi3lnc5bDuxAw=
Subject key identifier: 37:25:42:2B:E6:FD:47:D9:B7:06:A7:F8:C2:8A:19:D5:A4:2A:96:D7
Authority key identifier: D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
Certificate issuer: /CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Certificate serial: 0199FC8F1867BF73E40A621DAE1C93EF6E3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
Manifest number: 02FE
Signing time: Sun 19 Oct 2025 13:01:00 +0000
Manifest this update: Sun 19 Oct 2025 13:01:00 +0000
Manifest next update: Mon 20 Oct 2025 13:01:00 +0000
Files and hashes: 1: 0KpKGno60j-q4q6un6YZTwISgSk.crl (hash: XIXRZK/mar203crTJBpUp+Z9owfa79AxrS2qoR1cWJs=)
2: 2mOIvyxqACEFmIkGDLPkH-bc67w.roa (hash: a5V4lxFeCQH7YtlBbiNtuF1rDDvq1OPE/o43ZTFdAYQ=)
3: BPcKYotNA4ZeZvm82W73v75zPQs.roa (hash: oHpWOGTj/PoKbHsHCYFs8uXPSnbHGEoV8KY7k9zJBk4=)
4: GkxGrjdz0A7AWmifnWDimQZWI38.roa (hash: tHXJR2KGAG4wHE8bdFOYoF9Jdtd+4jQD2aXhMHJzWK8=)
5: ief4j2bb-cAvwzzS1T0xB8OgxGk.roa (hash: cv2vWMrY2M65pVapU15+XFEE8tVsd4Na8PnjBxEQRuA=)
6: wkwsgzJc2eo9ng8QQ8kvMc3qjbc.roa (hash: +iuoTytPo6r5GmeijHeI4hmWR8iJmhnqPLAkE9k79sI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:18:67:bf:73:e4:0a:62:1d:ae:1c:93:ef:6e:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Validity
Not Before: Oct 19 13:01:00 2025 GMT
Not After : Oct 20 13:01:00 2025 GMT
Subject: CN=3725422be6fd47d9b706a7f8c28a19d5a42a96d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:73:1c:ae:f3:13:ef:48:a9:5f:a2:31:88:be:
31:5f:56:1e:c0:88:df:bd:60:17:5b:9c:53:b2:ec:
74:b6:b3:36:7d:0f:c0:6f:fc:e3:ee:f6:b9:df:da:
e7:ce:d0:25:e3:0e:5a:1f:7c:90:43:27:3f:fe:03:
d3:05:7b:8e:61:3b:22:e2:0b:e5:22:a2:ff:69:d8:
7d:c1:c7:c5:65:41:53:94:5c:41:4b:51:52:63:5c:
27:9f:bf:47:3d:d4:36:80:d0:09:6c:84:5f:bf:61:
b8:26:a6:04:c7:94:6d:4f:51:1e:1e:cc:12:3d:4b:
fa:a3:7f:39:3c:31:3d:79:e2:48:b9:35:9d:8a:6c:
bd:1f:42:18:73:c3:d8:14:b1:ec:5a:fa:c6:69:9b:
95:f4:02:68:34:e7:0e:98:e2:68:a0:a8:b5:80:6f:
d4:f6:0e:fa:4b:e9:f5:d2:df:8e:74:5d:0a:12:51:
e8:32:df:fa:af:51:b1:f0:85:6f:92:85:5c:e9:85:
f1:44:6c:01:a1:be:c5:e9:63:68:f3:d0:19:f7:09:
6c:c7:16:19:88:da:b0:10:bc:8b:5f:6c:e2:34:da:
4f:e7:56:87:a8:38:e5:8f:57:f0:27:55:da:75:c7:
8b:29:c8:17:18:9a:01:76:14:ae:90:90:e0:49:79:
7f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:25:42:2B:E6:FD:47:D9:B7:06:A7:F8:C2:8A:19:D5:A4:2A:96:D7
X509v3 Authority Key Identifier:
keyid:D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:83:af:ed:7f:05:d6:15:14:63:15:51:f5:e3:89:66:a4:54:
63:ff:91:bb:03:b6:27:0d:fd:35:3c:ad:12:8e:21:36:b7:d9:
58:c1:da:be:bb:ee:63:f9:bd:98:ca:a8:c6:ba:15:57:6d:08:
bb:78:ec:1c:88:d3:b6:8e:ee:c6:56:48:1f:09:45:64:e9:ac:
5b:fc:cc:95:11:4a:f9:b6:ec:34:a4:bc:a4:d9:33:a7:d0:54:
11:e5:bc:2f:d7:1a:62:13:9d:ed:5f:0d:9a:f7:4b:22:f3:14:
d7:48:39:59:1b:8e:fb:72:ab:67:69:1d:b0:93:38:d5:6e:47:
c7:74:06:c1:aa:55:49:c5:41:75:2a:b1:71:b4:38:ae:b3:d3:
7b:d9:c4:db:ba:aa:9e:28:1c:38:a1:99:1a:d9:87:af:20:24:
54:35:51:a8:a7:31:80:c9:34:2c:d3:58:0b:1c:a0:e5:12:e0:
64:9c:ac:72:ff:7e:32:99:40:18:07:60:5c:d0:e7:c0:90:41:
2f:20:9f:8a:44:fd:bd:d0:15:54:b7:62:0e:af:71:32:38:79:
b0:2c:bf:6e:78:84:8b:99:85:ee:2f:63:d7:80:93:0f:19:5f:
19:17:5a:ee:a3:2d:3a:5a:df:39:71:47:ae:35:3f:60:95:af:
c6:4f:54:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:12:46 2025 by rpki-client