Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.mft
File: 6oRgBs-LnjiPMUUTWAklAs7METY.mft (raw, json)
Hash identifier: FvJQs/r41OFW9Bre8EV0AmYxd7W/isRHke3dNIu7B5U=
Subject key identifier: 6D:7F:7F:8B:B0:AF:EC:A2:03:72:4D:A0:56:C0:03:AF:5D:D6:1F:D9
Authority key identifier: EA:84:60:06:CF:8B:9E:38:8F:31:45:13:58:09:25:02:CE:CC:11:36
Certificate issuer: /CN=ea846006cf8b9e388f31451358092502cecc1136
Certificate serial: 019A71B7A00CEAE4AD3B61DD51B8730BFD01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6oRgBs-LnjiPMUUTWAklAs7METY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.mft
Manifest number: 0F22
Signing time: Tue 11 Nov 2025 07:00:50 +0000
Manifest this update: Tue 11 Nov 2025 07:00:50 +0000
Manifest next update: Wed 12 Nov 2025 07:00:50 +0000
Files and hashes: 1: 1caWY1h99shWYECynlPTo8_1vrA.roa (hash: Aon6FQO3a7yW1GjMXQDU5WdJ0X3x57CSJl9oOPxCpMk=)
2: 6oRgBs-LnjiPMUUTWAklAs7METY.crl (hash: f6dwUT6KQOi9aWdDpuk45s/1Pb6g0epdb61Cil4OBjw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.mft
rsync://rpki.ripe.net/repository/DEFAULT/6oRgBs-LnjiPMUUTWAklAs7METY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:a0:0c:ea:e4:ad:3b:61:dd:51:b8:73:0b:fd:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea846006cf8b9e388f31451358092502cecc1136
Validity
Not Before: Nov 11 07:00:50 2025 GMT
Not After : Nov 12 07:00:50 2025 GMT
Subject: CN=6d7f7f8bb0afeca203724da056c003af5dd61fd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:fc:f7:34:75:21:5c:c2:2b:fa:50:48:ad:1b:
9c:01:66:c5:3a:2f:a6:c2:54:0f:fa:52:69:c3:fe:
d0:73:bf:60:db:31:c8:46:ee:65:92:08:c5:50:4f:
77:9f:bf:82:bf:2c:7f:19:0f:d5:a8:c4:07:69:69:
5b:95:14:b2:cd:dc:62:ef:1b:ab:51:5d:f7:d9:02:
98:5c:5e:98:8d:f1:ae:7e:ea:2e:30:c0:9c:78:c9:
65:ce:dc:ba:3f:0f:c3:91:c1:15:08:73:8b:4e:1f:
0b:d6:1c:ee:74:7e:e4:ce:67:28:38:49:e0:33:21:
ad:5f:5d:55:76:95:f0:13:33:e9:8a:95:b7:5c:6b:
bd:37:0a:bb:3d:a1:ec:1a:ed:12:b6:4e:30:87:cc:
4d:93:d4:c4:84:f6:49:4d:77:22:48:95:a4:45:8c:
b7:d7:07:a1:a7:1c:4c:14:28:55:2e:24:c0:9b:92:
97:6d:21:ac:60:bb:29:84:cb:ad:dc:88:cd:19:d0:
59:ae:22:24:89:c2:22:83:b2:e0:65:3f:83:a1:31:
f9:7a:2f:d2:19:5e:7e:be:54:31:aa:8e:14:6c:7a:
f8:10:43:23:61:c7:8d:9b:29:3a:c1:de:16:ab:45:
16:33:50:74:af:d4:ed:3a:9b:67:0f:71:e8:ed:5b:
d1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:7F:7F:8B:B0:AF:EC:A2:03:72:4D:A0:56:C0:03:AF:5D:D6:1F:D9
X509v3 Authority Key Identifier:
keyid:EA:84:60:06:CF:8B:9E:38:8F:31:45:13:58:09:25:02:CE:CC:11:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6oRgBs-LnjiPMUUTWAklAs7METY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:8d:1c:a1:56:fc:1f:b4:a9:0a:12:6e:09:34:9f:cc:10:a0:
52:4e:aa:2a:c9:a4:00:33:19:9d:9e:ec:f1:7e:1f:3c:50:e7:
a9:0d:cc:2a:02:81:cf:02:5a:d6:c8:9e:73:cf:95:6d:f9:df:
15:4f:1d:76:7a:2f:0a:eb:2a:6a:c1:5b:29:b9:d9:fc:07:ea:
7d:98:49:c5:0e:45:63:c6:16:73:12:03:93:63:28:fa:1d:0d:
c0:51:e9:7a:25:63:ea:a6:ea:63:e8:dd:1d:a0:a9:78:e1:73:
a5:8c:2a:17:ba:6e:9f:35:9d:ec:83:b7:c0:46:b8:24:69:76:
e1:69:25:15:0e:22:50:51:60:55:08:28:42:dd:9f:78:71:41:
c5:d6:5a:2d:b6:e4:5f:a6:11:ea:b7:df:ed:81:0f:2e:0e:9f:
9a:8a:2f:fa:69:dc:00:13:93:36:76:23:9c:15:4b:d6:bc:e8:
e5:1d:24:bd:df:ae:0f:48:95:48:b3:0a:c0:31:ce:bb:0b:7c:
70:3d:5b:67:48:ae:4b:c4:8b:fd:28:72:b7:0f:95:1b:50:7b:
4b:49:49:c8:05:7b:97:78:c9:b8:c3:9d:44:e3:87:35:07:b9:
71:90:d7:91:28:d9:22:07:9a:a2:f3:53:5d:c7:4a:ac:d5:d1:
64:63:0f:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:17:19 2025 by rpki-client