Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft
File: 02vm8HVADTBaFt3mkOJcvZRkXL4.mft (raw, json)
Hash identifier: tCQZ2Fcmn81Zw1rYvQrzmGY8dFCkhdZtjkc4rbLTBwA=
Subject key identifier: 04:CF:DA:D9:34:6D:58:40:A7:5B:F6:09:C4:73:EB:DB:FF:9F:F1:DC
Authority key identifier: D3:6B:E6:F0:75:40:0D:30:5A:16:DD:E6:90:E2:5C:BD:94:64:5C:BE
Certificate issuer: /CN=d36be6f075400d305a16dde690e25cbd94645cbe
Certificate serial: 019A71B91FC8FD0FBEE3CB007505EC7A2527
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft
Manifest number: 1670
Signing time: Tue 11 Nov 2025 07:02:29 +0000
Manifest this update: Tue 11 Nov 2025 07:02:29 +0000
Manifest next update: Wed 12 Nov 2025 07:02:29 +0000
Files and hashes: 1: 02vm8HVADTBaFt3mkOJcvZRkXL4.crl (hash: fWV3yI00NMEPRR/PN/QLNeLdyGOTxerhee/K/sLP/U4=)
2: bTRllN3rhV7rnjQJp0rvDHo40Gs.roa (hash: Bx0kFO6OMs0rFfJ2IZkuiIUT2mg/0ptdVSDBzsrl1H8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:1f:c8:fd:0f:be:e3:cb:00:75:05:ec:7a:25:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d36be6f075400d305a16dde690e25cbd94645cbe
Validity
Not Before: Nov 11 07:02:29 2025 GMT
Not After : Nov 12 07:02:29 2025 GMT
Subject: CN=04cfdad9346d5840a75bf609c473ebdbff9ff1dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:76:0b:83:f5:70:d1:fc:8f:ac:38:20:59:a7:
01:1e:ab:c6:24:4a:54:e6:23:8a:7e:1b:b2:0b:e7:
77:50:b6:40:15:63:55:8f:7c:d7:24:2a:b4:3f:7a:
4a:c7:ea:c8:2f:32:9d:2c:36:1f:92:27:94:ef:d9:
11:6b:4d:81:1e:73:43:b5:e1:9b:e4:8f:77:08:11:
b6:2e:d9:8a:22:53:e0:16:b5:4e:47:9a:b0:17:e8:
c5:8d:22:98:32:14:33:4a:f2:dd:ff:32:10:d3:91:
be:ef:d8:c2:ca:9c:9c:27:0e:be:b6:83:7a:2e:85:
bf:a6:48:a1:0d:24:f3:fb:29:9c:a6:e2:7f:3a:53:
2a:33:91:62:45:ed:8f:35:b4:0a:fb:80:5d:ce:a6:
cc:70:4e:01:e3:83:da:db:44:a1:fe:cd:f9:85:2f:
c6:d8:2f:65:78:76:5c:18:7b:14:c0:27:62:37:73:
b9:c7:2c:8d:b6:fa:d3:f9:4b:e3:78:3a:0e:6f:12:
af:e0:8d:13:c1:86:5c:7a:a9:cc:4f:01:4d:9d:08:
99:b4:3b:e9:ad:4e:2f:f6:2a:80:03:f6:51:53:bd:
99:6a:28:37:58:0e:02:24:0b:38:6f:2f:31:61:07:
d2:54:33:41:7a:14:df:c7:f0:8e:09:bc:25:4d:fa:
84:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:CF:DA:D9:34:6D:58:40:A7:5B:F6:09:C4:73:EB:DB:FF:9F:F1:DC
X509v3 Authority Key Identifier:
keyid:D3:6B:E6:F0:75:40:0D:30:5A:16:DD:E6:90:E2:5C:BD:94:64:5C:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02vm8HVADTBaFt3mkOJcvZRkXL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0fde38-e9b9-4b69-b414-30c1c5a080d9/1/02vm8HVADTBaFt3mkOJcvZRkXL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:2b:65:5d:c8:f9:17:fa:6a:8c:a5:6f:d4:42:75:1a:e3:6a:
ad:c1:92:d3:08:3e:f7:f9:0e:4c:97:23:10:8c:d2:22:15:0c:
ff:eb:da:99:66:7d:14:0a:63:40:4e:4e:dc:5d:09:47:ea:f6:
a3:b7:20:de:4a:a5:a1:15:74:79:06:22:35:b2:25:29:ed:79:
53:ef:cf:ca:f4:b2:4e:e8:5f:ac:f6:5d:1f:c5:78:ef:30:c7:
6d:c2:d3:89:a7:be:e2:53:8b:6d:88:fa:c1:15:a3:5a:89:b5:
73:4b:c4:b9:60:2c:51:8c:53:20:80:cb:a3:ce:23:2c:07:c5:
6d:fa:38:05:35:05:5e:c4:a7:2a:59:ac:27:fd:f3:78:d3:43:
52:6c:16:5c:52:a6:f3:12:66:6d:30:37:af:53:c1:5e:9f:3d:
7e:06:91:56:1c:29:3a:73:8a:2b:0a:80:d1:d3:a3:f5:e3:e4:
7e:b3:49:44:10:91:2e:3e:a0:bf:16:3e:17:1d:cb:33:a2:8f:
38:9f:4d:3d:b5:ce:e5:e8:1e:f1:45:33:01:35:4e:ee:98:47:
af:3e:fa:c3:db:ff:61:76:e1:70:5e:55:61:50:3b:24:2c:43:
cb:27:c5:b4:e8:4b:62:fe:46:f5:e3:80:ce:62:88:9c:32:90:
68:30:cd:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:22:29 2025 by rpki-client