Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
File: dThqb64eVfV2pAW9dLfwjnpsRlM.mft (raw, json)
Hash identifier: crjzrWrGv/NIMvBr+8JHu/kovo33JTgvzYlgw0Z/y4I=
Subject key identifier: 65:FD:9B:98:2D:37:17:3E:A3:37:85:AA:26:2E:DD:A4:D5:CE:31:C4
Authority key identifier: 75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
Certificate issuer: /CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Certificate serial: 019A1D634785CA8421F37C8CC70764EDC673
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
Manifest number: 09A0
Signing time: Sat 25 Oct 2025 22:00:36 +0000
Manifest this update: Sat 25 Oct 2025 22:00:36 +0000
Manifest next update: Sun 26 Oct 2025 22:00:36 +0000
Files and hashes: 1: RbCZ4FuBiM5bQVW3sP5PrxSE_ic.roa (hash: heyjJE1M941WJSvHrhTQkBoLwbj5RIQs9kFiPjSVnUw=)
2: VgQVNXTLznzmHsP79v3Zsr2IWwU.roa (hash: V8Zv8ak7cEH62i1TGjfWmCMowy8kun9bTSlwi87+E9s=)
3: dThqb64eVfV2pAW9dLfwjnpsRlM.crl (hash: vHh0VfDKXnurzIuNR6d0XOQaZn3rIlGscCizywcrV1Y=)
4: rgad5_QrqjzIqPuzW_IRWvVFFb4.roa (hash: CW37KfuVvlCtejt5YGCTadY3jiqhfL5iQfoIqu008Bo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 20:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1d:63:47:85:ca:84:21:f3:7c:8c:c7:07:64:ed:c6:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Validity
Not Before: Oct 25 22:00:36 2025 GMT
Not After : Oct 26 22:00:36 2025 GMT
Subject: CN=65fd9b982d37173ea33785aa262edda4d5ce31c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:16:00:c5:47:69:f0:aa:98:6a:22:26:98:25:
1f:ef:5e:c2:fa:a4:c8:95:c7:31:36:ce:96:3f:bb:
82:18:cd:ee:d4:56:f9:48:1c:1e:92:52:a3:c1:34:
35:eb:86:28:dd:75:73:23:ae:0a:26:d9:9f:2e:61:
a4:3e:45:19:92:c0:24:03:fa:00:4c:e9:dc:64:52:
08:8c:8b:31:df:23:9a:80:43:4e:27:08:62:21:f0:
7d:6a:dc:1f:66:0a:2a:b2:7f:38:13:ca:0e:da:78:
d5:53:50:5f:b9:ff:b5:bf:c2:78:d0:3a:bb:8a:a7:
5e:a7:e0:09:55:d0:7f:f2:20:c6:a3:40:e7:62:93:
0d:e8:a2:d8:b7:80:6a:56:ed:44:d7:1a:12:b5:ee:
08:bf:0b:d0:b7:e3:c6:bd:20:b5:8e:1e:d3:ab:01:
20:92:07:02:53:59:e3:65:ad:42:a9:cb:35:03:29:
53:dd:1b:10:dc:b5:28:ac:8e:ae:07:27:f5:bd:bf:
26:41:4d:e7:e5:91:81:df:94:48:25:2f:1d:d8:5b:
ad:15:0b:f9:1f:cb:eb:3e:fd:f8:27:76:25:d8:db:
ca:34:9a:df:56:17:aa:f6:17:d4:98:7c:dc:ff:df:
df:e2:73:6e:46:18:28:bb:40:2c:18:ca:a2:c7:6f:
0e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:FD:9B:98:2D:37:17:3E:A3:37:85:AA:26:2E:DD:A4:D5:CE:31:C4
X509v3 Authority Key Identifier:
keyid:75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:8d:9f:1b:40:ad:92:4e:04:dc:f2:f3:27:b7:27:a8:f8:f3:
26:98:cc:c6:d9:d6:69:3f:d3:c1:91:84:3d:38:7f:02:2a:c3:
65:6d:82:41:04:b6:89:1b:57:64:8e:b7:67:b5:c7:60:53:1f:
94:51:22:35:7f:b0:b0:04:eb:68:af:eb:22:db:72:e5:93:ca:
6a:52:db:6a:bb:e1:d9:03:63:b2:b4:ca:62:41:a1:0d:c2:d4:
ea:32:c8:a5:d7:48:e4:ab:10:43:2b:84:0e:dc:10:70:2a:1a:
68:9e:93:3a:75:21:50:b8:a4:3a:6d:54:9d:29:0e:da:51:30:
81:67:49:b5:35:81:7d:0f:29:3a:68:e7:5d:cf:1b:b0:65:6a:
83:c4:67:2a:7e:fb:8d:8b:ae:36:52:26:e9:88:fd:67:4f:cd:
47:55:bd:61:4e:06:78:69:f3:da:15:37:c1:ff:8c:de:8f:62:
86:ab:26:28:69:03:d5:a5:9f:75:40:10:d7:9f:35:52:b7:38:
31:4b:3b:24:db:26:e4:2c:6e:4b:37:90:38:07:06:f2:00:42:
0e:96:40:61:2f:a0:63:57:d6:f4:16:d4:65:d5:d1:45:19:f3:
a6:32:c5:26:bb:a7:e4:46:e5:96:fe:cd:fe:da:2e:e9:c1:47:
22:d4:12:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 06:40:27 2025 by rpki-client