Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
File: 0PFLigjLX4BX1IsD5T9Fi44f7tY.mft (raw, json)
Hash identifier: 3trmA6bjYk6TnkXO4tzVM4KZzO89gP/xs/uAdDQ/h/M=
Subject key identifier: 0F:78:1B:21:34:56:60:6F:93:57:E5:A4:9D:19:EB:4E:2E:F6:88:33
Authority key identifier: D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
Certificate issuer: /CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Certificate serial: 019A2C9FD3B4880DA0E496981BCC195C0C92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
Manifest number: 0349
Signing time: Tue 28 Oct 2025 21:01:03 +0000
Manifest this update: Tue 28 Oct 2025 21:01:03 +0000
Manifest next update: Wed 29 Oct 2025 21:01:03 +0000
Files and hashes: 1: 0PFLigjLX4BX1IsD5T9Fi44f7tY.crl (hash: ZA59acedQOi3nsQcp7pM3r4eGYqfAM9P2MyeunHxfeY=)
2: 5XHmlHMatoj7HuqzW-xKZFCBoCk.roa (hash: 2LwcEFXQBzd4wv+NbYjPLMlRT/J2wftX73OmJ3FhceM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 21:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2c:9f:d3:b4:88:0d:a0:e4:96:98:1b:cc:19:5c:0c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Validity
Not Before: Oct 28 21:01:03 2025 GMT
Not After : Oct 29 21:01:03 2025 GMT
Subject: CN=0f781b213456606f9357e5a49d19eb4e2ef68833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:91:52:35:65:fc:34:a0:c6:9a:06:db:d7:9c:
95:6b:a8:a2:47:6c:e3:0d:f7:a2:49:29:8a:b0:2e:
fa:e3:80:55:4a:a5:23:37:6c:ea:83:63:76:41:67:
52:1a:9f:66:be:f5:31:98:27:66:80:e6:63:54:74:
26:f3:e2:e8:a5:b9:c0:b5:74:3b:47:6a:39:8c:9c:
78:3f:f8:d0:52:7c:1b:c2:37:f7:01:f5:ec:d6:a7:
ad:a8:75:ff:3a:2f:09:f4:de:22:31:63:f5:76:38:
5e:31:9e:65:2c:6c:07:ed:3e:c2:41:c8:ec:8e:06:
10:bc:ec:18:5c:1b:d2:af:20:76:b2:a8:b2:e0:51:
b3:ea:23:55:6f:99:e2:ee:44:39:1b:c5:a4:a9:84:
9d:22:70:09:65:a7:00:53:dd:88:ed:4a:6b:35:01:
75:61:37:dd:6c:89:96:a9:b2:1a:6e:ae:82:e9:da:
44:ea:2e:35:c9:a2:85:9f:4d:72:d0:e2:2b:20:51:
1d:47:49:87:6a:f2:68:c8:1a:07:7b:60:11:b1:60:
b6:f8:fe:66:45:39:02:94:7c:0e:36:9c:65:ab:d9:
3d:9b:7d:5d:e4:b7:ee:d4:58:be:ff:5e:1f:d6:bd:
e5:8f:ec:c1:85:b0:6f:1d:39:e4:e0:e4:15:f4:65:
64:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:78:1B:21:34:56:60:6F:93:57:E5:A4:9D:19:EB:4E:2E:F6:88:33
X509v3 Authority Key Identifier:
keyid:D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:e8:c3:ba:99:28:70:cb:bd:4a:2a:3b:66:bd:a9:af:67:dd:
47:e0:f5:1e:26:a0:0b:59:1c:de:2c:05:4e:4b:fc:51:ae:b9:
0c:c7:64:53:3b:43:ed:3d:dd:36:f7:70:f7:74:ee:a1:d4:11:
ee:3e:16:c6:96:41:3a:e0:18:95:e1:4d:f5:0e:9d:90:5c:63:
d1:2f:e4:fd:04:77:83:25:ec:4a:29:80:d7:67:b1:cc:60:04:
ec:66:fc:f9:1d:d4:2a:9b:77:b4:7f:7b:1e:69:4e:30:e4:d1:
3f:6a:6a:cf:91:df:82:98:3d:10:99:c3:a8:59:3c:30:28:64:
31:f7:af:72:69:e4:d9:50:43:f8:64:0c:39:83:aa:0d:c3:59:
ad:9d:b4:4b:7b:ca:c3:c7:77:3a:61:ae:7a:31:4f:f1:83:a3:
1c:8e:cb:3d:9b:8b:87:ee:56:ce:5b:d8:fc:b3:07:39:ad:a8:
af:63:f9:7e:f4:81:4e:40:59:23:c9:4e:61:75:16:60:e4:3b:
c9:82:dc:62:a7:39:4a:06:6e:eb:7a:30:df:9d:c8:dc:14:43:
2a:af:4b:d4:1e:e7:49:c8:51:37:36:48:57:56:7c:a1:f9:9f:
21:42:ce:31:b7:b3:e0:41:e4:c3:87:b6:44:0a:0c:ab:e8:ce:
15:08:72:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 02:35:32 2025 by rpki-client