Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
File: CtBt0nvZOjgNpMddGovwdoKP1ko.mft (raw, json)
Hash identifier: BIpZz1VPGY6oJDMU+ARXCk4uK6vdpSNMocdB35TLFD8=
Subject key identifier: 34:AE:F4:BD:D1:15:3D:D2:72:4B:50:07:34:63:79:73:EB:FB:DF:38
Authority key identifier: 0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A
Certificate issuer: /CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a
Certificate serial: 019A183CE22B7809423775D4752330E3E1CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
Manifest number: 09E9
Signing time: Fri 24 Oct 2025 22:00:34 +0000
Manifest this update: Fri 24 Oct 2025 22:00:34 +0000
Manifest next update: Sat 25 Oct 2025 22:00:34 +0000
Files and hashes: 1: 24PmMpD-bHbUV8mxF_RlzuSRjLU.roa (hash: ohLVMvfqoqKO1xPsU0QfK7dKJZtv+ZBmQ14II/YiXms=)
2: CtBt0nvZOjgNpMddGovwdoKP1ko.crl (hash: C/oPfs1XD8wnbEbMTsAGYwJSf6O2Czc/iLZaQ6DRscs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 22:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:18:3c:e2:2b:78:09:42:37:75:d4:75:23:30:e3:e1:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a
Validity
Not Before: Oct 24 22:00:34 2025 GMT
Not After : Oct 25 22:00:34 2025 GMT
Subject: CN=34aef4bdd1153dd2724b500734637973ebfbdf38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1f:ae:99:64:8c:b2:1e:f8:25:b8:19:7f:fe:
01:4c:b4:28:28:3a:35:d3:81:98:74:40:0d:5f:5b:
67:e3:58:3b:8b:f9:dd:c8:e2:b4:c5:d3:7b:de:0f:
73:70:d0:ea:14:d6:90:22:b6:99:47:48:bc:0b:cf:
e9:4e:08:e0:5d:75:e5:e2:27:72:cc:20:9b:b6:9b:
6d:66:b0:b0:e3:25:44:be:26:6c:19:e1:77:74:14:
3c:5d:59:61:58:50:01:88:18:f6:10:68:75:e0:32:
04:fa:eb:01:c1:a5:ae:b8:a3:45:9a:72:10:4b:09:
c0:07:e9:c7:b1:20:9b:13:9b:d8:3f:a1:18:4a:1c:
e4:60:83:b8:df:c3:cb:14:28:fe:98:99:eb:61:5c:
16:a2:76:12:00:0e:82:cf:c3:e5:a6:22:d5:0c:5d:
16:ab:53:29:84:a4:f3:35:38:ca:ed:ba:42:a2:a6:
b8:db:02:80:c3:02:13:df:66:21:ee:98:0d:97:fc:
93:27:32:f7:eb:ee:7f:24:56:5a:32:4a:61:04:72:
f9:e6:28:5e:13:22:f9:96:49:fa:91:be:06:27:12:
d1:08:d4:07:fe:e5:14:b4:af:fe:32:53:5c:b3:80:
a7:41:26:70:c0:96:1d:f0:8c:b6:23:b8:d4:a1:60:
b7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:AE:F4:BD:D1:15:3D:D2:72:4B:50:07:34:63:79:73:EB:FB:DF:38
X509v3 Authority Key Identifier:
keyid:0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:49:ff:63:57:8e:ad:56:37:c0:da:df:1d:a3:5a:44:bf:6a:
2b:40:6f:4d:6f:8c:18:4e:d9:52:65:b4:d0:50:47:dc:38:3f:
55:20:da:0f:cb:4e:1f:2f:70:30:01:f7:e1:3b:7d:6f:84:c0:
88:54:91:0e:7e:87:9a:63:8e:19:6c:a3:42:27:c9:2f:f6:8a:
b4:ed:85:5d:c3:39:b1:8f:ec:2f:ce:4c:e2:a5:cf:a2:b3:01:
b9:d2:5c:32:f4:bb:7c:aa:eb:94:b0:7c:4c:64:c4:22:05:c7:
5a:f0:99:c0:5e:18:3f:d4:01:ff:a5:ca:e4:3e:1d:5b:16:04:
fa:d3:e8:47:cd:30:9d:b0:c1:1b:92:5f:4b:b8:5c:a5:59:74:
34:b9:ee:5d:aa:28:69:f1:62:37:22:d5:e2:b6:de:a6:37:03:
b9:5b:3a:80:1d:01:11:d5:c6:fa:8d:b7:a0:8b:e1:7f:92:76:
10:76:7f:85:3d:08:e7:2e:d9:c6:b9:94:eb:55:fe:46:05:4b:
f0:bf:2f:dc:cc:3e:5b:4d:7e:a3:8e:0b:d2:00:f9:9d:5e:5b:
7f:38:b7:90:e8:9e:09:23:e9:f8:b9:a0:0a:ee:cb:27:a5:ef:
22:15:f9:2d:aa:e3:5e:e5:33:9f:20:e3:25:04:74:92:51:3a:
dc:3e:fe:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 06:12:59 2025 by rpki-client