Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
File: a0P3ovQ2ixel4DXOS9km-KFC1os.mft (raw, json)
Hash identifier: n1bAGtZsihSuhZtn3KxE/uz9mg/hLCf70wJGteNsjDo=
Subject key identifier: C5:A4:E2:1F:D6:EF:42:80:14:18:F4:3C:BC:DC:E4:9B:07:BB:31:DB
Authority key identifier: 6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
Certificate issuer: /CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Certificate serial: 0199FB7CE63E6E8FC466BCC0BBA63294B666
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 08:01:30 +0000
Manifest this update: Sun 19 Oct 2025 08:01:30 +0000
Manifest next update: Mon 20 Oct 2025 08:01:30 +0000
Files and hashes: 1: MRvoKs_tNg3-xTMgCbueoBg-yMU.roa (hash: lEsMSNpmyZrLO0pVpESTwzarMUanf5zfZ6XbX+ha5s8=)
2: a0P3ovQ2ixel4DXOS9km-KFC1os.crl (hash: OuRvgtolBUXFn8rA6066KbU6iCRuBiuhRUMEl2pyXVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:e6:3e:6e:8f:c4:66:bc:c0:bb:a6:32:94:b6:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Validity
Not Before: Oct 19 08:01:30 2025 GMT
Not After : Oct 20 08:01:30 2025 GMT
Subject: CN=c5a4e21fd6ef42801418f43cbcdce49b07bb31db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f6:68:d4:74:bf:2c:10:3d:c0:ec:36:bd:b3:
80:b4:0d:a3:91:70:e8:5f:0b:c4:d9:f6:8d:d1:e2:
48:8b:c4:7e:94:c6:d7:52:14:15:12:a4:6a:f9:d7:
2f:e0:75:68:31:e4:c3:65:d7:cc:ba:9e:cf:41:96:
b9:a3:0f:7e:4b:e0:7f:2b:26:26:e2:e9:77:a9:d6:
17:e2:1f:1f:91:3d:2e:2c:a1:63:2b:af:1d:28:91:
9e:69:e0:52:f7:7a:8c:aa:68:5f:02:7f:e0:57:75:
f3:ff:eb:34:a0:52:4a:30:40:37:7f:35:77:61:74:
53:70:48:f9:07:33:d4:46:3c:9e:e3:78:74:f4:26:
03:90:05:32:04:1c:57:4b:6e:b6:8b:9f:74:ad:4d:
49:80:3c:ae:de:52:69:b6:44:d7:b1:77:e9:0f:c3:
8d:35:7c:e0:b5:16:49:6f:6e:36:17:34:ba:4f:1f:
2a:ea:e2:48:f0:e3:45:55:e7:8c:11:7e:19:8e:a7:
52:8b:7c:53:4d:1d:94:d8:55:05:1f:6e:ce:5b:cc:
ed:88:6e:bb:f0:ae:8e:d7:35:1d:80:19:f9:12:42:
22:4e:2a:cd:10:ed:07:c6:99:82:de:f6:ba:38:cd:
b8:3f:b8:70:01:af:80:7f:79:e6:27:10:43:fe:1e:
96:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A4:E2:1F:D6:EF:42:80:14:18:F4:3C:BC:DC:E4:9B:07:BB:31:DB
X509v3 Authority Key Identifier:
keyid:6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:03:ef:1f:5a:42:ca:53:6e:92:b6:2f:38:6a:8c:3b:a4:52:
6d:d8:e0:94:a5:74:a0:32:71:17:64:e1:23:10:32:b2:02:19:
6b:8f:2b:6f:ff:7f:ba:b1:22:35:1c:f6:6b:a1:64:23:65:c9:
08:2d:56:7b:28:3c:80:58:84:2a:07:d0:d0:31:4a:93:f0:55:
77:8b:e8:8b:26:42:b8:db:27:e1:cf:2a:e5:83:92:12:8e:8b:
11:04:f0:7b:a8:dd:c4:de:b0:71:b7:27:53:50:99:fa:69:12:
7a:f4:1d:09:a3:d3:2b:49:a6:53:26:0c:8b:66:34:cf:db:78:
d7:60:6c:02:39:0c:75:c7:cf:dc:62:eb:59:fd:2c:88:4e:57:
40:2e:34:61:3b:19:dd:0b:8d:fa:6c:08:ca:68:b8:84:47:8f:
a0:5d:c9:ff:eb:fc:85:f1:99:6d:17:68:2c:82:ef:f0:0b:c5:
d7:e9:ef:84:d3:ea:d5:d1:22:aa:b5:1f:44:0f:48:d2:c5:13:
98:71:e4:df:aa:b9:08:24:ba:a0:69:8d:85:fc:97:85:1d:49:
d2:f3:2a:e0:7a:fb:c8:90:06:a5:fb:c2:df:b8:ed:8d:d7:9a:
6f:ee:82:cc:62:f0:2d:d7:44:c6:84:8a:a4:95:10:e4:ee:52:
86:7b:5f:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:49:07 2025 by rpki-client