Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json)
Hash identifier: ZQ/+vxN1LrPJuDetHCpSw6SPaobSnDFKIN75urW7zlk=
Subject key identifier: 41:84:E2:D4:37:47:70:05:6D:C3:6F:FE:B7:61:D4:BC:73:7C:8F:35
Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782
Certificate serial: 0199FC21A330C49EEF383231E9575BA0684A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
Manifest number: 0DB9
Signing time: Sun 19 Oct 2025 11:01:26 +0000
Manifest this update: Sun 19 Oct 2025 11:01:26 +0000
Manifest next update: Mon 20 Oct 2025 11:01:26 +0000
Files and hashes: 1: KH_j-0tZP7kZGa_RGAqb8KjeOKE.roa (hash: nJQFit94GD/cIbI8GNPP+c6lmHYIPdofJMVeQt5hkQ4=)
2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: merZQV/rcT+STnh/o4hVZI4zG8xemzE1TUvrBm/hlQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:a3:30:c4:9e:ef:38:32:31:e9:57:5b:a0:68:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782
Validity
Not Before: Oct 19 11:01:26 2025 GMT
Not After : Oct 20 11:01:26 2025 GMT
Subject: CN=4184e2d4374770056dc36ffeb761d4bc737c8f35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d8:27:61:3f:57:67:de:72:f3:b5:02:c3:76:
1b:5a:46:5e:5a:28:0e:df:61:70:0e:75:7f:fc:36:
71:d5:da:9e:90:ce:ea:8d:56:6b:f4:45:64:9c:ba:
f2:d5:32:51:13:44:98:b9:72:1b:5d:15:67:f9:70:
f3:52:3d:c6:0b:37:4a:67:58:8d:ad:b3:1d:35:38:
bf:39:6a:4c:cc:7b:ec:6b:0d:fa:d2:2c:dc:ae:f1:
db:bf:ea:9e:5f:62:6d:9c:af:0e:38:49:d6:16:bf:
74:88:3f:e5:60:42:04:75:b9:54:4d:ad:71:8f:ae:
4b:88:92:dc:90:67:c9:84:c3:b8:6b:ea:65:6d:ba:
fb:96:7c:80:32:cb:07:35:77:31:53:a1:34:4e:31:
ec:15:35:15:d2:9a:8c:1c:69:2d:f5:01:17:2d:d5:
0b:da:21:ca:5f:30:99:44:cd:14:d9:cf:5c:e7:92:
a8:1d:80:08:df:57:f5:09:dc:63:cc:d7:ef:69:70:
1e:97:67:d2:a4:49:01:4b:05:13:e1:87:bd:65:d6:
ee:9e:fe:71:aa:f3:cb:2a:58:c1:90:9e:5f:f4:f9:
a0:55:a0:5b:64:4a:7c:94:db:20:d4:9f:6d:29:07:
29:65:ca:ae:32:ca:13:91:88:ab:bb:63:9b:20:e3:
e6:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:84:E2:D4:37:47:70:05:6D:C3:6F:FE:B7:61:D4:BC:73:7C:8F:35
X509v3 Authority Key Identifier:
keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:a9:32:8d:71:fb:da:b0:44:2b:60:ef:7b:8f:e8:04:1b:f5:
a8:5d:e9:60:7f:c2:f7:98:65:9b:05:76:c1:6a:cd:0f:f7:7b:
5c:91:51:ca:6e:32:90:68:83:bb:6d:88:ee:ec:c3:3f:ed:8e:
5f:51:bf:5c:cd:c4:bc:d5:2a:ba:94:a8:2d:a0:61:5f:3c:45:
11:b0:fb:9c:a5:5f:a7:c8:a8:22:c7:c4:10:2b:3a:a1:d5:6a:
13:84:92:89:92:3b:d1:a0:29:64:52:cd:a1:5a:eb:5d:6b:25:
04:bf:f9:04:b5:2a:f6:3c:83:5e:75:47:3c:e1:85:45:f4:2e:
aa:03:2e:4f:ea:e1:e4:00:46:0b:ce:c6:d1:37:f2:ee:14:77:
ba:a3:2a:10:4e:6b:45:8c:65:94:b3:8a:74:dc:9e:05:74:82:
63:7f:1d:ee:44:5b:3e:ff:91:1b:5f:9d:55:d3:4c:1e:45:da:
3b:39:a2:26:22:07:52:f5:51:11:96:4a:7c:ca:0c:35:d4:73:
f0:a5:50:6a:f3:ec:1f:1f:3a:03:a6:e4:89:36:0a:66:ca:9e:
a3:a6:8f:40:92:c4:20:2f:9b:f8:03:1a:65:4d:85:25:c2:e9:
a6:8e:9d:3c:7f:ba:ea:72:43:61:c9:3c:50:9f:1e:76:1e:d9:
b6:ff:4e:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:02:56 2025 by rpki-client