Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
File: 0mHPvAfsMGN33LFql6EWDHptgsw.mft (raw, json)
Hash identifier: WNUOrzAgovp7Kky0hA1Yst7Em8CL4BJWWRLsKM1hz8Y=
Subject key identifier: 48:83:26:6F:A4:E6:66:E6:5C:1B:B0:D0:73:70:C9:64:E9:B7:52:F0
Authority key identifier: D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC
Certificate issuer: /CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc
Certificate serial: 0199FAD825D1D020F9473C30C8FDFC76B58B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
Manifest number: 0322
Signing time: Sun 19 Oct 2025 05:01:33 +0000
Manifest this update: Sun 19 Oct 2025 05:01:33 +0000
Manifest next update: Mon 20 Oct 2025 05:01:33 +0000
Files and hashes: 1: 0mHPvAfsMGN33LFql6EWDHptgsw.crl (hash: vJPznfJstv+IrxXl/Y9A/nNeYni9YE6YbcB6P18zbFQ=)
2: 1-242YNLxFtHiZKrZjOTCTUI_hX4.roa (hash: Zl/0hNDNG1rQGa8HsGyytZ4/ZO9Krs9kfipHSTu8iZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:25:d1:d0:20:f9:47:3c:30:c8:fd:fc:76:b5:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc
Validity
Not Before: Oct 19 05:01:33 2025 GMT
Not After : Oct 20 05:01:33 2025 GMT
Subject: CN=4883266fa4e666e65c1bb0d07370c964e9b752f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:da:eb:28:e5:ed:41:0c:2a:6a:c9:c1:40:61:
1a:2d:35:4b:2b:87:34:4e:dc:0e:91:d4:c5:6e:ef:
19:01:2c:76:02:19:80:cd:0d:b0:b9:a0:1f:c5:09:
bf:4b:0f:9e:0b:d4:b0:d9:e2:41:00:89:90:29:6c:
36:2e:7e:7c:67:bd:8d:62:83:09:a0:f0:6f:e3:4f:
cd:2f:37:e4:cc:e9:2b:8c:f9:46:db:3c:b2:ae:88:
74:52:55:97:39:41:09:39:80:62:c8:87:52:14:5d:
bc:71:99:22:16:d7:a9:ff:b4:ac:d1:f5:a7:90:2f:
0c:30:86:ae:2f:4c:0a:cd:cc:fa:53:ad:0d:89:d7:
51:8e:a0:17:33:7e:5e:ac:6c:b1:4d:7a:1f:aa:0a:
ed:98:85:9c:7a:50:ed:f8:9b:6c:01:04:6e:36:b3:
a2:8b:6a:0f:cc:27:0b:d9:ac:be:80:82:90:0d:08:
46:7d:3d:9f:c6:82:c7:41:e0:14:a9:61:78:d4:d7:
ca:00:ab:64:3e:23:42:8f:ce:f6:d4:22:0f:3d:68:
c7:e2:7a:c9:36:8b:c4:d6:1a:f5:91:3d:d4:f1:14:
b5:0c:d8:12:1e:e7:59:df:3d:31:08:66:1a:25:15:
56:aa:16:e1:98:94:b9:2e:51:60:c1:7b:6f:a3:b7:
f4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:83:26:6F:A4:E6:66:E6:5C:1B:B0:D0:73:70:C9:64:E9:B7:52:F0
X509v3 Authority Key Identifier:
keyid:D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:2c:ad:17:57:86:d4:02:06:17:67:6a:74:24:20:6a:95:94:
a3:99:f4:2d:6a:ab:b8:41:53:43:e8:60:aa:22:af:4d:1a:2e:
3f:1f:33:72:90:76:cd:45:99:92:c3:1f:3f:d7:11:7b:a5:6f:
dd:15:48:bd:64:fb:57:bb:22:cc:e1:ef:4e:10:a1:22:4c:84:
f6:38:a2:89:19:e5:3b:1e:43:c9:e2:92:59:aa:71:eb:d5:df:
15:51:11:1c:03:a1:83:fc:71:9d:87:34:30:da:b1:0a:20:82:
64:f6:cb:8b:18:d8:89:60:58:09:45:23:17:d4:ea:dc:9c:22:
83:e2:82:8c:a5:08:59:9c:1a:6b:68:a4:be:2c:47:62:b8:58:
c6:ef:bf:04:fb:ad:cb:99:80:ac:65:6a:6c:c1:44:eb:3d:62:
74:ef:9e:32:b4:9b:76:29:95:36:99:f5:fb:3e:43:4e:c0:bc:
87:ab:d9:f1:39:d1:c6:14:39:e4:25:d6:88:57:20:ce:b4:04:
32:62:90:2c:15:dd:02:ba:83:70:85:4d:56:c7:56:66:49:fa:
86:a3:d6:19:f7:d7:90:e9:2a:90:d4:6f:f6:29:11:a6:46:f1:
77:2b:74:17:70:86:c7:12:2d:85:5f:b8:d1:3c:6e:8d:df:d2:
7e:e3:d6:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:21:02 2025 by rpki-client