Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.mft
File: 0vONSutNAojbuFTR6uC9itP4Qfo.mft (raw, json)
Hash identifier: vjzs2+Shav/e3zRxYu64j2ntTv2zBH/wI7UUPMD8ySs=
Subject key identifier: 3F:41:6E:1B:98:F4:12:D3:6F:2A:D6:68:31:66:26:9F:5E:4A:4F:63
Authority key identifier: D2:F3:8D:4A:EB:4D:02:88:DB:B8:54:D1:EA:E0:BD:8A:D3:F8:41:FA
Certificate issuer: /CN=d2f38d4aeb4d0288dbb854d1eae0bd8ad3f841fa
Certificate serial: 019A7293882C3FB3C14691BBAB4C1A17A185
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0vONSutNAojbuFTR6uC9itP4Qfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 11:01:02 +0000
Manifest this update: Tue 11 Nov 2025 11:01:02 +0000
Manifest next update: Wed 12 Nov 2025 11:01:02 +0000
Files and hashes: 1: 0vONSutNAojbuFTR6uC9itP4Qfo.crl (hash: YDmzynJmvHJ6jlwxCsbbDfszhofQpzvz2gl4a3y57HQ=)
2: ERnL-2TcZrO4tJF-sDDaVNlMYnY.roa (hash: +H0qLZUs9MIqoA3GO45JQCdAhU27Z3D/QbaTtfRGmIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0vONSutNAojbuFTR6uC9itP4Qfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:88:2c:3f:b3:c1:46:91:bb:ab:4c:1a:17:a1:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2f38d4aeb4d0288dbb854d1eae0bd8ad3f841fa
Validity
Not Before: Nov 11 11:01:02 2025 GMT
Not After : Nov 12 11:01:02 2025 GMT
Subject: CN=3f416e1b98f412d36f2ad6683166269f5e4a4f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6f:d9:30:42:0d:98:86:3d:88:da:42:7f:fd:
0a:ec:57:0d:36:5e:2b:e7:57:9c:f2:96:da:8a:34:
34:1b:dc:e5:32:3e:24:69:bc:61:64:26:e8:0f:39:
b5:fe:52:ad:d1:7c:da:83:0d:f4:90:54:42:58:b4:
24:07:dd:77:6c:c9:f8:8b:81:29:ef:a7:7e:ad:2d:
07:65:6d:d2:64:d9:fe:b9:47:d7:16:6b:d9:bf:a8:
db:e1:79:98:dd:9c:d3:43:b9:fb:53:25:71:ef:67:
f2:b7:25:f6:f3:8c:b5:fa:55:3a:ef:3a:cf:9e:0c:
06:57:0e:64:ef:5f:d0:c0:8e:5e:aa:03:2a:11:d7:
fb:a3:75:83:c1:9b:a0:c1:97:11:59:d1:52:06:f2:
00:68:d8:2c:5b:88:5d:00:34:70:6b:af:38:c8:80:
65:c9:90:2b:17:b8:bd:e3:67:96:cc:40:0a:7b:31:
b3:b3:7f:8d:25:cb:e2:5f:9d:e8:3a:10:09:3c:00:
07:43:b9:2e:d1:0d:3b:64:30:f7:0b:e7:58:a7:8e:
af:c8:b3:f5:e0:32:7a:43:9b:72:9e:19:4e:b1:98:
42:76:c4:82:2a:99:a1:f1:45:a1:ac:bf:43:1c:a4:
97:f8:22:96:ef:0b:ad:e5:10:ff:70:4b:85:17:a9:
21:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:41:6E:1B:98:F4:12:D3:6F:2A:D6:68:31:66:26:9F:5E:4A:4F:63
X509v3 Authority Key Identifier:
keyid:D2:F3:8D:4A:EB:4D:02:88:DB:B8:54:D1:EA:E0:BD:8A:D3:F8:41:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0vONSutNAojbuFTR6uC9itP4Qfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:e8:c8:2a:85:d7:be:97:01:d3:80:1b:31:4e:fa:30:27:2e:
b0:87:ee:32:b3:83:fe:03:e2:22:d2:1e:77:2e:0e:bc:16:4a:
65:22:02:90:41:4c:ec:66:21:23:95:62:a7:23:22:34:8e:e8:
9c:3f:1e:3f:ea:22:05:4c:13:68:04:0a:7e:39:17:b7:f0:f7:
bb:9b:28:1e:63:0c:22:96:39:66:77:d9:19:61:04:30:60:a7:
fa:19:c6:20:ef:58:a1:72:32:fd:6a:8f:c0:dc:19:59:46:8c:
d9:de:00:90:9e:fc:e5:b5:8b:82:26:b4:6b:fc:b1:b9:10:ec:
7e:92:3b:d7:62:7f:6e:07:7e:67:2c:57:56:d0:f8:d2:c1:17:
77:d2:a7:99:b1:9a:a4:28:90:99:df:65:18:cf:b7:3e:78:cc:
25:cc:38:7e:eb:1c:d3:0e:f5:da:e4:f2:4e:84:b0:f2:b3:cc:
27:cf:0e:3f:e3:f3:38:2f:6b:be:b8:28:3f:16:ed:40:b7:e8:
04:5d:6c:a4:4c:0e:c1:15:9d:83:f8:b9:f7:b4:a4:76:a9:4c:
56:60:b6:22:a5:e5:44:18:24:94:06:f4:43:c0:e4:b6:81:61:
50:06:6e:d8:ed:82:68:e7:5a:7c:7f:b2:a7:05:93:65:e2:ff:
b0:33:b1:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:52:54 2025 by rpki-client