Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
File: dLOekBkiWjsP_gWoNW6-8zwnvpc.mft (raw, json)
Hash identifier: xDUz1gcT9K/n0yg0Uodce2lv4xdXPfTTZuMMvD4id+8=
Subject key identifier: 4B:4F:D0:A0:A9:B0:80:94:BC:A9:39:3C:04:D4:FD:E1:D7:CB:DF:AC
Authority key identifier: 74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97
Certificate issuer: /CN=74b39e9019225a3b0ffe05a8356ebef33c27be97
Certificate serial: 019A1EAE07C409A2EEE909AEA79902F40A27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
Manifest number: 06E7
Signing time: Sun 26 Oct 2025 04:01:52 +0000
Manifest this update: Sun 26 Oct 2025 04:01:52 +0000
Manifest next update: Mon 27 Oct 2025 04:01:52 +0000
Files and hashes: 1: ZRVv1QEy1kLLZIQQzKY3v_cBQvM.roa (hash: dP4rVEZl+sj+rbeXk/M+iHEaNgIv2c4UoqRTeljUbU8=)
2: dLOekBkiWjsP_gWoNW6-8zwnvpc.crl (hash: +R3qnFcjngCT67xAKqzKBJnTXxfydJWkW7lGnsammLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 20:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1e:ae:07:c4:09:a2:ee:e9:09:ae:a7:99:02:f4:0a:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b39e9019225a3b0ffe05a8356ebef33c27be97
Validity
Not Before: Oct 26 04:01:52 2025 GMT
Not After : Oct 27 04:01:52 2025 GMT
Subject: CN=4b4fd0a0a9b08094bca9393c04d4fde1d7cbdfac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ca:45:b0:2d:5a:54:62:f0:a6:a0:e8:89:c7:
66:81:18:2f:0c:cc:02:0d:fd:b0:ea:3b:63:5e:59:
e4:9f:1e:6c:23:e6:65:48:82:2f:a0:1a:1f:a0:8c:
0a:85:8c:b2:a9:78:4e:01:b3:2a:1e:a4:4b:48:f2:
ce:9a:c3:a7:3e:5e:66:88:4e:e8:b1:22:be:58:4c:
80:92:89:76:e1:59:fe:b0:af:41:1f:51:fb:4a:17:
0d:a6:fc:b2:29:13:ac:7d:f0:6d:72:41:3f:74:67:
34:86:01:62:08:4c:40:cd:65:1e:7c:c5:38:87:3f:
0b:0a:c2:09:ad:9f:3c:74:74:62:c4:d3:a0:6e:c5:
00:13:b7:26:9e:64:80:46:1b:fb:3d:d9:06:34:e0:
f1:00:9d:ea:87:a8:02:9d:b5:96:46:00:21:e3:68:
03:e4:4b:2c:95:9c:b4:e1:00:e7:a0:62:4f:ff:f8:
60:6f:b3:9e:cc:b4:ba:ea:28:07:69:4d:b5:99:74:
e3:d7:70:04:a6:d7:7a:42:a0:57:66:f1:dc:9f:b6:
63:13:35:22:72:54:1f:9d:63:c4:1b:c2:a3:a1:21:
41:b3:d7:d5:64:1d:de:bb:0a:75:ee:9a:30:21:37:
4e:ec:46:45:ec:f4:35:73:ef:17:fb:ac:2b:26:97:
7a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:4F:D0:A0:A9:B0:80:94:BC:A9:39:3C:04:D4:FD:E1:D7:CB:DF:AC
X509v3 Authority Key Identifier:
keyid:74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:c6:3b:1e:c3:1e:dd:ae:74:ee:76:37:0a:90:ed:41:d0:a5:
33:1b:a0:9f:24:0b:74:e2:85:a5:ab:15:19:1e:03:bd:39:f9:
0e:f8:05:19:8d:80:af:3f:1e:ae:95:be:cb:2c:13:1d:c9:b4:
57:43:e9:f8:b1:51:de:bf:cb:70:a9:cf:2e:86:bc:d8:09:d6:
d6:0c:44:4d:57:c9:ed:a5:29:60:82:43:7a:f0:73:e1:40:74:
70:33:a7:33:b3:b9:89:bb:67:b6:32:26:2b:65:5c:3b:80:aa:
f5:a9:31:11:1b:55:dc:84:65:d8:92:66:e4:8b:2a:c7:eb:12:
8d:f6:bb:74:db:58:a4:cc:af:8e:a9:43:9f:41:40:17:05:17:
e6:73:7c:96:7d:0b:cd:5d:c8:6e:13:ab:f7:de:7d:71:52:31:
7f:1c:e3:ea:b2:fd:2f:f1:1f:c7:9f:50:db:3d:10:4a:81:86:
dd:db:d6:d4:45:28:13:55:81:25:29:86:15:d5:c7:71:05:ac:
30:9a:9f:a5:c9:9d:43:f5:c6:46:a9:24:d4:0d:e2:8c:b8:0d:
12:83:66:a8:7b:af:19:e7:57:71:c0:75:ad:05:a8:30:7d:36:
5e:c3:43:36:29:b2:d6:35:4f:e0:59:20:aa:20:02:b8:8c:ad:
22:56:87:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 06:14:08 2025 by rpki-client