Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: r1MHH3iOr77Uw+F7IoDu/tj66tJhfIRo33nN9JcwSqQ=
Subject key identifier: 8D:57:4B:B0:1B:64:AF:55:53:2F:04:46:55:99:B2:63:80:68:C1:58
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 0199C48E52D49B99C566C65C2376D53F4ED2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 07D8
Signing time: Wed 08 Oct 2025 16:01:25 +0000
Manifest this update: Wed 08 Oct 2025 16:01:25 +0000
Manifest next update: Thu 09 Oct 2025 16:01:25 +0000
Files and hashes: 1: EKdJIayRjGqpNjC_sXcLD4LpFxg.roa (hash: Q7XyDf/+ZYlwIoQHzzpWgBVzZ1z6oDECbrHcCzM9GG4=)
2: _-z4nvaTTyccKXJFwod66iKewX0.roa (hash: B/6vrb0o2kiLAGPMrkOgglOkupcsHoxdqdIe49F5XFQ=)
3: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: 34lbXdDf8ohi2v4Bm74hURllCP303KNB6L52toOSIJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Oct 2025 16:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:c4:8e:52:d4:9b:99:c5:66:c6:5c:23:76:d5:3f:4e:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: Oct 8 16:01:25 2025 GMT
Not After : Oct 9 16:01:25 2025 GMT
Subject: CN=8d574bb01b64af55532f04465599b2638068c158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:48:7f:aa:b5:43:62:4c:6e:7a:b5:98:ba:5b:
03:73:8e:42:16:f4:1f:de:3d:9a:9b:ba:ee:0b:5c:
4e:5c:35:de:cf:4a:56:88:b8:03:65:5d:19:b5:8a:
da:b6:a9:ad:de:21:29:58:a9:4f:41:b3:5e:4b:3b:
52:81:f3:fd:f5:47:2d:c5:27:c1:34:43:7f:f2:b3:
5f:09:64:97:7f:66:4b:8e:b7:c9:57:bc:ab:48:47:
30:a9:96:fe:53:d2:7f:51:ea:be:82:4c:10:2e:06:
77:64:b2:fe:83:40:1b:3e:c5:33:b3:2f:f5:c6:79:
bd:ab:06:57:fe:a2:78:28:d9:eb:d8:96:e8:1b:c7:
4a:2a:06:c7:03:82:6c:9e:f9:34:16:78:a2:5b:06:
26:2e:b9:fa:c4:b8:7f:f2:b9:fc:7f:36:26:c4:3f:
01:90:76:4e:e3:91:35:01:72:92:a4:43:54:db:f8:
fc:6b:f0:26:4d:bf:f1:6b:39:ac:73:0d:3b:5d:a5:
9c:5d:5a:db:63:2d:6f:4a:8b:0a:d5:ef:7b:cb:5d:
dc:f6:03:89:19:8c:86:b8:03:3e:fe:7a:b4:fa:ac:
70:88:15:18:9f:4b:99:f4:59:c9:89:7f:89:1f:4e:
0e:70:44:c2:b5:dc:10:44:c4:cc:15:4a:59:af:1c:
41:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:57:4B:B0:1B:64:AF:55:53:2F:04:46:55:99:B2:63:80:68:C1:58
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:5f:73:05:ac:13:4f:fd:91:fa:97:b7:42:8a:ed:5b:b9:02:
eb:bd:cb:6f:73:0f:dc:31:58:7c:71:84:37:f0:b6:2f:af:9f:
26:13:06:9a:dd:f3:41:71:5c:38:10:41:68:dc:d7:af:99:05:
17:07:c2:17:d1:ac:a5:49:cf:1b:3f:a0:1d:86:0a:8a:f6:d9:
14:68:bc:24:fe:38:49:2a:0d:e4:3b:23:54:26:59:1f:a8:aa:
fb:99:90:de:ef:33:30:ee:73:91:9e:c7:91:19:62:12:99:52:
94:a2:1c:62:b5:f3:f8:96:88:69:b7:0b:a8:5e:60:56:5a:e7:
af:cd:39:50:f1:0d:21:6c:f5:63:52:a3:d9:cb:70:52:7c:0b:
77:a6:d5:8e:16:64:7d:0a:a3:bd:6b:18:84:23:19:c6:ac:fe:
c8:dc:53:de:45:72:95:08:63:40:da:ae:0f:97:15:ff:4e:28:
3a:e5:c3:35:fa:5d:3b:62:30:d7:4e:62:34:4a:ad:6f:8d:7a:
a8:3f:a3:cc:1a:f8:2e:1c:84:d3:89:97:e7:7a:3b:d9:34:90:
a4:fa:be:9d:cb:ea:52:d8:42:91:8a:01:2f:d3:a9:be:11:9e:
e4:62:97:a4:d6:c4:94:43:7f:43:b7:ee:14:a7:d5:91:a9:09:
f4:3e:39:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 9 01:24:20 2025 by rpki-client