Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
File: 0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft (raw, json)
Hash identifier: MsbExSZo3HkfVQV+oLICSv8Co6JMi+p+hUzo6NCAG7U=
Subject key identifier: 4F:BB:97:72:98:91:7B:9D:75:A4:ED:C6:FE:72:24:E4:80:96:AF:9A
Authority key identifier: D0:E6:5B:EC:5C:76:5C:85:0E:E8:FF:97:CC:41:B3:80:31:D1:D8:3A
Certificate issuer: /CN=d0e65bec5c765c850ee8ff97cc41b38031d1d83a
Certificate serial: 019A71B8C1D01A199BAB4B8A783616CD6BF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 07:02:04 +0000
Manifest this update: Tue 11 Nov 2025 07:02:04 +0000
Manifest next update: Wed 12 Nov 2025 07:02:04 +0000
Files and hashes: 1: 0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl (hash: dOHowKWaB2rpTQaSTnwROfMFvOB8Me6xbtJ7/noYcR0=)
2: AddwdaQYSDgJ_-W9pipGLPibD4Q.roa (hash: YjKAFD6jnw8P32xCITagf8KVgpNGeRxCswidFmsKIOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:c1:d0:1a:19:9b:ab:4b:8a:78:36:16:cd:6b:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65bec5c765c850ee8ff97cc41b38031d1d83a
Validity
Not Before: Nov 11 07:02:04 2025 GMT
Not After : Nov 12 07:02:04 2025 GMT
Subject: CN=4fbb977298917b9d75a4edc6fe7224e48096af9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7c:f3:25:40:28:09:8b:89:d0:e8:e6:cd:eb:
cc:33:d4:f7:bd:21:ec:7c:c9:50:02:f6:d2:41:ad:
60:27:69:42:e2:e2:17:82:f2:63:49:3c:20:b3:06:
38:b3:a0:0d:7d:ac:e4:41:8f:55:8e:6f:26:f1:d8:
0d:ef:0d:1e:ce:71:0f:64:9d:c2:3d:04:a6:40:b3:
82:54:d3:be:c4:20:a1:04:0c:cc:16:48:8f:2d:af:
a8:b0:4a:c5:dd:ab:2f:53:b9:b3:a3:66:77:9e:b3:
d9:87:ae:97:00:92:b1:01:db:d0:e0:3d:d5:8e:39:
67:e4:85:07:d9:f9:4b:e7:2e:d9:c0:01:5e:39:73:
50:bc:93:c6:97:37:5b:5b:6e:7e:1f:33:a3:aa:0a:
1c:03:67:b8:0e:03:31:83:37:f5:3f:02:13:d0:54:
e8:fd:30:e3:9d:cd:71:83:10:20:8e:a2:62:77:a9:
54:63:6b:5f:09:35:7d:80:6c:ee:4f:5d:c4:42:1d:
33:24:03:38:d1:9a:0b:69:a9:11:5b:3e:19:29:d6:
12:35:de:0b:ec:06:36:c8:0f:8a:67:5c:75:46:eb:
4d:1a:a9:4f:0a:dd:02:92:20:ce:c2:e3:b8:e2:bf:
9a:c1:f4:cc:7e:fe:16:2c:ba:ae:8a:c8:d9:89:07:
7e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:BB:97:72:98:91:7B:9D:75:A4:ED:C6:FE:72:24:E4:80:96:AF:9A
X509v3 Authority Key Identifier:
keyid:D0:E6:5B:EC:5C:76:5C:85:0E:E8:FF:97:CC:41:B3:80:31:D1:D8:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:72:ee:87:aa:de:35:e8:5e:e6:ac:00:5c:d1:15:f2:c7:a4:
8b:b0:3b:b3:32:7b:ed:7b:7b:64:3a:8e:63:b4:cf:d1:a2:1c:
1f:d2:cf:9c:bc:7e:f8:79:48:70:68:55:b0:3b:41:65:30:77:
75:e7:13:ba:38:93:03:2e:87:91:99:98:4b:07:ff:01:f6:f5:
d8:c8:45:c4:42:2e:c1:0a:52:e5:59:06:b8:b9:11:58:28:25:
b6:15:e7:06:90:24:42:dd:52:df:81:3e:0b:c9:d3:6e:8a:26:
71:39:e6:41:cb:17:0a:a0:61:6f:39:34:c7:eb:9f:41:54:f3:
43:f4:90:2e:d9:f9:cc:e7:91:54:ad:11:7a:7f:ea:40:60:30:
e6:81:5e:50:1e:48:2e:d2:5b:ae:49:1a:f8:b2:9a:6d:ff:ca:
ae:37:f5:0e:6f:93:17:74:a0:b9:fb:4f:ec:68:d3:e7:e8:5e:
76:89:2e:10:a8:63:41:61:36:ac:11:fd:7e:2b:75:1c:5e:c4:
81:6a:71:fc:28:fc:0a:c9:f2:bd:00:6f:6e:f4:c3:64:7b:9b:
74:b6:f7:0c:77:34:61:6a:05:03:5e:33:b2:e8:d6:1b:91:df:
a6:57:a7:88:ef:d3:51:a1:5f:27:af:1a:58:c9:af:e4:13:ea:
6e:6f:56:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:52:30 2025 by rpki-client