Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft
File: m0FaAwWfspWkuWyc5erbWP6Y-oY.mft (raw, json)
Hash identifier: HeNdA69HGMRtFpJgz/nSmAQDSnnLq9TAywR1FUGgg4M=
Subject key identifier: 4B:A7:C0:C4:CF:0B:48:E1:54:20:6E:68:E0:F4:97:DF:26:0D:18:CF
Authority key identifier: 9B:41:5A:03:05:9F:B2:95:A4:B9:6C:9C:E5:EA:DB:58:FE:98:FA:86
Certificate issuer: /CN=9b415a03059fb295a4b96c9ce5eadb58fe98fa86
Certificate serial: 0199FC586AE38E03DDF0F4A49141D4197729
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft
Manifest number: 0925
Signing time: Sun 19 Oct 2025 12:01:16 +0000
Manifest this update: Sun 19 Oct 2025 12:01:16 +0000
Manifest next update: Mon 20 Oct 2025 12:01:16 +0000
Files and hashes: 1: 00e-JENKJtNxBi-As1sYUq5EX18.roa (hash: YsSrS2JJTX4eWuRZQoJnhVIIQfCJDpSvv/nCINRxU3I=)
2: m0FaAwWfspWkuWyc5erbWP6Y-oY.crl (hash: cUIytejeFD6hlyYKHQBW/xjzsVoZAJ/VwR7CelPvtO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft
rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:6a:e3:8e:03:dd:f0:f4:a4:91:41:d4:19:77:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b415a03059fb295a4b96c9ce5eadb58fe98fa86
Validity
Not Before: Oct 19 12:01:16 2025 GMT
Not After : Oct 20 12:01:16 2025 GMT
Subject: CN=4ba7c0c4cf0b48e154206e68e0f497df260d18cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:13:49:56:64:ac:d3:89:3f:05:28:ef:8d:d2:
e1:51:52:9d:c9:11:7e:8d:a0:f7:18:f3:75:b6:e3:
8d:d8:d2:57:34:84:06:47:b4:3f:ff:a2:a0:63:1d:
24:1b:aa:cb:9a:ab:b9:44:45:32:4b:63:ea:a7:8d:
3c:06:93:24:42:d0:c3:16:5c:80:e4:6d:fe:c9:df:
55:6b:95:96:3e:35:90:1f:56:b6:32:ff:d7:0e:a0:
b5:47:76:87:ac:26:e8:79:cb:28:00:b4:fb:63:dd:
c9:d3:17:93:ba:8b:4c:9c:c6:0b:24:1a:d3:d0:8b:
c5:1b:7c:74:0c:93:f8:ff:15:d0:38:56:2f:19:32:
3c:c4:67:99:cc:77:26:dd:b0:ae:be:84:2c:29:26:
84:d8:d4:85:6a:60:84:a4:3f:30:20:0b:2e:9f:2c:
50:74:5d:da:5d:b7:2d:0e:f7:75:79:27:86:cf:ba:
2b:7a:a6:1c:c9:ae:30:d8:a0:cf:03:65:ba:38:b3:
ac:a6:de:b6:84:4b:ae:f4:8c:c9:f9:f5:e1:45:71:
4a:4c:ca:8d:8f:7c:9f:88:c9:69:fd:79:75:22:48:
bb:e0:61:13:1c:ea:a8:75:05:a5:21:65:c5:8b:24:
81:dd:f8:b3:0a:03:9f:70:bd:35:02:fe:f1:47:52:
46:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:A7:C0:C4:CF:0B:48:E1:54:20:6E:68:E0:F4:97:DF:26:0D:18:CF
X509v3 Authority Key Identifier:
keyid:9B:41:5A:03:05:9F:B2:95:A4:B9:6C:9C:E5:EA:DB:58:FE:98:FA:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:60:76:f2:71:a7:ec:cb:69:2f:9d:a5:67:53:94:05:e3:91:
b8:d0:a1:35:42:b4:92:02:2c:32:43:16:a9:f3:5f:2f:aa:3e:
73:03:16:e3:f5:a4:1b:0e:46:34:76:f2:64:d7:aa:81:fe:b8:
af:13:85:e3:09:25:1a:8a:b9:b3:d8:db:f1:17:14:3e:63:ff:
6b:aa:3e:c5:4a:26:64:d8:bf:4c:eb:01:db:f1:99:78:73:a3:
ac:9a:87:ca:90:21:73:16:3b:c5:f0:ab:a2:7a:b8:67:5c:4a:
fb:dd:6b:e0:3e:7a:46:ae:9f:7c:64:c6:0f:ed:75:22:0f:e3:
fd:d6:73:d4:ec:73:1f:2a:c1:8e:85:82:2d:d7:bc:a5:96:6d:
80:fa:ce:78:4d:bd:ac:65:08:57:46:c4:5b:7f:62:41:d3:d0:
e9:df:e3:02:ab:5f:ab:0c:b3:d7:86:85:3d:e0:ec:3d:6f:63:
61:ff:12:8d:82:0c:f2:29:8e:3c:a8:da:7e:7d:0f:35:64:bc:
e1:37:66:73:9a:f1:cd:34:c5:66:cc:5c:9f:e6:36:48:72:86:
eb:2c:9d:26:7d:11:a6:e3:00:c2:ab:04:71:70:b5:98:9e:dc:
d5:9a:b1:4d:0c:8c:1f:dd:7a:71:cc:fe:d3:c2:fc:c6:10:ca:
97:a2:b1:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:09 2025 by rpki-client