Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
File: 0KNDo37K0r-yw1vZsm1_SLy1dTc.mft (raw, json)
Hash identifier: HrztpNci1ujVoSnz8I4heN9wy7dhOJsmN1CJr5VsTtA=
Subject key identifier: 26:0D:F9:C2:9E:39:30:E4:3E:F1:E1:53:DE:FD:AF:00:FF:B1:90:55
Authority key identifier: D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
Certificate issuer: /CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Certificate serial: 019A003587C0ADB7BD477B60ACABCC64B422
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
Manifest number: 1675
Signing time: Mon 20 Oct 2025 06:01:39 +0000
Manifest this update: Mon 20 Oct 2025 06:01:39 +0000
Manifest next update: Tue 21 Oct 2025 06:01:39 +0000
Files and hashes: 1: 0KNDo37K0r-yw1vZsm1_SLy1dTc.crl (hash: DuYGqIAX9q+j/nr8ENyJ4dlR8sFZLVO1Ci11S+WSE6s=)
2: cednPNYKxfRsr4W4osQ0UxWr_xg.roa (hash: bAnClABodJAGvw6mOL61pHv3A1a0Gmryz3vjrqAKOxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 06:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:87:c0:ad:b7:bd:47:7b:60:ac:ab:cc:64:b4:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Validity
Not Before: Oct 20 06:01:39 2025 GMT
Not After : Oct 21 06:01:39 2025 GMT
Subject: CN=260df9c29e3930e43ef1e153defdaf00ffb19055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1b:2b:3d:95:57:d3:49:6d:a3:2c:1e:ab:0c:
55:f7:72:5b:4f:49:51:9b:90:b9:38:cb:ae:b9:7d:
7d:f0:9b:d8:aa:d8:72:5b:d9:5f:c8:51:6c:60:ad:
8c:f5:25:87:0d:f6:9e:20:f8:14:16:0b:be:05:2f:
ca:52:52:71:3a:7a:07:e6:e3:9f:a4:a8:5e:57:a7:
fd:73:62:68:0a:ed:61:98:cc:da:91:9b:82:18:71:
bf:c5:7f:22:ae:e9:3f:c8:96:87:ef:13:2f:b6:99:
c2:22:b9:c1:e5:5b:ba:12:4a:a8:71:1e:d9:1d:a9:
26:7a:5d:8a:f1:9f:d5:63:75:ab:35:13:11:1d:da:
5c:68:c9:f3:a8:66:16:49:79:ab:19:0d:60:ac:15:
49:ab:23:de:e5:fa:0b:25:25:52:ff:66:f4:7e:32:
49:28:7a:15:18:3b:9c:4b:d5:18:2d:3f:ec:d0:a9:
38:ae:27:2f:1b:aa:1d:a7:73:38:aa:1b:8c:e1:db:
39:0e:4f:1a:58:f3:31:9b:5a:a5:9a:a6:40:c2:bf:
1f:0c:25:b2:38:a9:54:68:b3:46:8a:f5:6f:85:f9:
f1:9a:35:a4:33:c3:53:03:22:20:9d:28:8f:e6:27:
3f:33:ba:8f:38:6d:ab:c6:8e:90:77:d5:fd:84:67:
be:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:0D:F9:C2:9E:39:30:E4:3E:F1:E1:53:DE:FD:AF:00:FF:B1:90:55
X509v3 Authority Key Identifier:
keyid:D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:2a:56:a2:e1:d8:fe:8d:43:ec:39:40:d1:b0:5c:52:d1:a5:
a1:1f:41:82:c0:06:91:ad:da:fe:63:0b:31:19:4d:c9:bf:0b:
98:36:73:de:ba:13:18:d7:78:65:e0:08:74:d3:d8:2e:5f:56:
ed:77:db:12:15:42:2c:29:d5:c2:f7:85:a2:7f:e4:2f:c0:ce:
25:1d:3c:20:ef:6e:43:3e:10:72:71:45:ea:23:b7:a4:81:78:
d7:1d:95:1c:2e:8a:e6:3e:6b:8f:e9:23:d6:83:81:79:5d:d1:
d0:3c:a1:08:2d:97:93:61:a0:cd:64:13:bc:11:9f:49:49:1f:
12:35:a2:9b:18:66:58:e7:db:d9:c3:05:d7:58:0a:a0:9c:ae:
ec:a0:9c:98:38:8d:21:be:74:06:1a:d5:66:60:38:86:af:7a:
a4:11:3d:ad:ea:4c:ef:28:48:00:ee:bd:2e:05:86:50:aa:ca:
da:cd:99:dd:d6:37:7c:ae:3e:6d:02:9e:c0:d3:59:ce:1c:b8:
8d:fb:da:25:15:f0:a3:5d:04:4f:fd:17:22:64:20:a8:a8:88:
3e:94:f0:c3:46:99:06:35:06:71:11:ce:a8:c2:4f:da:95:61:
27:ea:6b:af:71:48:b2:a6:39:fd:55:1c:f2:6b:bb:c2:d3:21:
0e:ed:15:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:15:41 2025 by rpki-client