Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
File: 0PT6gHWHU7JDohZe3ep12-7oJsQ.mft (raw, json)
Hash identifier: HoEpoeBxjL0/tRvIXh+gbf+xAEC7Q5lBS4OdWrx+le8=
Subject key identifier: 61:26:F6:BE:29:CF:85:5A:3D:C3:77:19:41:42:27:61:CD:FF:70:C4
Authority key identifier: D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4
Certificate issuer: /CN=d0f4fa80758753b243a2165eddea75dbeee826c4
Certificate serial: 0199FCFD5E807607063608F7D4EEB7ADFC82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
Manifest number: 11CE
Signing time: Sun 19 Oct 2025 15:01:27 +0000
Manifest this update: Sun 19 Oct 2025 15:01:27 +0000
Manifest next update: Mon 20 Oct 2025 15:01:27 +0000
Files and hashes: 1: 0PT6gHWHU7JDohZe3ep12-7oJsQ.crl (hash: GZuauOym3BvbgqqBSsA+Ii6Dafh9f3vBzFXkEXMxmLY=)
2: dylc3WZzrjgV2VB-T70ps5y7_v8.roa (hash: CjiSp/7ghqmIWPlGrqN52h+3zV23QhuVF2kvnW7CFVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:5e:80:76:07:06:36:08:f7:d4:ee:b7:ad:fc:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f4fa80758753b243a2165eddea75dbeee826c4
Validity
Not Before: Oct 19 15:01:27 2025 GMT
Not After : Oct 20 15:01:27 2025 GMT
Subject: CN=6126f6be29cf855a3dc3771941422761cdff70c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:35:f1:07:50:e2:5b:ce:b0:cb:c6:9a:65:21:
0e:41:63:c1:d1:d2:0e:fd:fc:b4:14:6a:d6:a6:67:
dc:85:4b:fd:73:15:27:43:d5:3e:84:a7:de:47:15:
60:48:86:da:d8:e2:f9:10:ef:cd:4f:97:28:4b:b8:
3a:e9:97:af:25:f9:f9:11:6f:f8:81:bd:51:09:76:
73:78:ab:78:e8:eb:70:8f:69:e9:1f:91:83:4e:7d:
f8:72:1b:a1:f7:b3:c2:b1:e8:f2:b6:e4:48:08:0a:
b0:e8:af:de:d5:c2:c7:51:0d:47:18:6d:9c:e7:f9:
bc:d3:bc:cc:09:0d:c7:2f:3f:ff:5a:70:4d:b5:47:
c0:5e:03:20:20:a8:c2:87:d1:4e:b1:ae:84:fd:3b:
d9:1b:b9:cb:78:aa:4f:ec:c3:30:6c:9a:e6:0f:d2:
9a:28:3d:b4:26:ec:63:3d:66:25:ea:75:44:2a:d1:
26:b6:af:af:c4:27:ba:65:70:29:bb:95:c5:98:c4:
0a:bb:f5:28:50:35:eb:76:66:90:c0:f5:b3:08:0f:
cf:ef:ed:90:30:6a:9a:e8:a3:63:e1:58:83:bd:91:
06:4b:61:86:46:8f:c7:3d:e2:6b:bc:9a:c0:55:a2:
83:a6:78:85:4d:e7:e2:d8:89:96:bb:26:80:97:aa:
91:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:26:F6:BE:29:CF:85:5A:3D:C3:77:19:41:42:27:61:CD:FF:70:C4
X509v3 Authority Key Identifier:
keyid:D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:4c:6d:0a:dc:68:ed:7e:15:6c:18:78:7d:a8:68:a1:c7:8a:
73:0d:4f:32:7b:2e:db:4c:24:71:1c:69:54:1f:50:55:71:2c:
d7:98:c1:5d:64:80:c5:e4:84:e9:38:7b:18:0d:55:ac:3a:05:
e7:76:45:4c:93:7e:6b:8c:a3:7b:18:69:68:07:b4:3c:ea:7a:
ac:bb:ed:eb:d2:b8:cc:39:96:01:d6:2d:67:25:c6:f7:4f:37:
f9:06:12:82:36:8a:ed:a3:bb:1d:86:c5:8b:83:b4:e3:17:28:
a0:43:c3:71:80:f2:4c:92:12:52:8b:cc:78:51:f2:b8:a0:30:
f8:ef:bf:66:b9:28:d4:61:19:a5:e1:77:9b:0a:e0:5f:01:9f:
fb:6c:cd:bf:ca:f6:1f:e9:78:97:af:02:7c:b2:ad:10:a3:c3:
ab:30:e1:6e:25:fd:06:66:7b:29:53:fd:65:22:ce:17:51:58:
1a:f3:ce:bf:00:bb:f9:6a:87:d3:6b:b3:09:f3:71:ee:2a:8a:
39:c6:ba:bf:45:92:7c:0f:b7:b6:75:4a:e9:0e:9a:ed:42:69:
83:09:22:51:e4:33:b3:62:aa:25:2d:ae:da:91:1a:42:8c:9d:
a7:18:4c:94:3b:d8:08:16:f3:1a:5f:22:65:59:b3:e2:f4:26:
ef:c1:7c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:29:51 2025 by rpki-client