Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
File: d2-uQ_c9o1_houQpZirguRdR4_s.mft (raw, json)
Hash identifier: ZtCZ/2B1lBJac7biP/VNFD9PVabH4eRhf+479sLG0nI=
Subject key identifier: FE:66:29:1B:4C:89:E6:5F:84:2D:EF:47:C9:FC:C5:B8:22:D4:5A:E9
Authority key identifier: 77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
Certificate issuer: /CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Certificate serial: 019A274201DFA03DEC8CA3253ADCE477D1DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
Manifest number: 141D
Signing time: Mon 27 Oct 2025 20:00:28 +0000
Manifest this update: Mon 27 Oct 2025 20:00:28 +0000
Manifest next update: Tue 28 Oct 2025 20:00:28 +0000
Files and hashes: 1: BIbyN6MobH1STyCEPdXKcXxO-0I.roa (hash: Os4l0m9oxr0hmnuszsL7ZwnRaiayTTQWv9r3AFurnXg=)
2: Bbz0bBQb7OvBUdzdUU2fR0aTHW0.roa (hash: oXnG95uJE4GWCusPMitN/8TOoOTM8j2qb4pX4QMQ5u0=)
3: bdDCotOAfO1kv_FK4imM3A-Vth0.roa (hash: SflKXIddgIp/qAd1Zs2morymiezh6i6wy0uu+gUqlSk=)
4: d2-uQ_c9o1_houQpZirguRdR4_s.crl (hash: 2i4wXiESGlzHNai5q6Y/v5XhIx5+NWK8Wo4OXr3eHMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 20:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:42:01:df:a0:3d:ec:8c:a3:25:3a:dc:e4:77:d1:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Validity
Not Before: Oct 27 20:00:28 2025 GMT
Not After : Oct 28 20:00:28 2025 GMT
Subject: CN=fe66291b4c89e65f842def47c9fcc5b822d45ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:01:b8:f7:bf:cb:02:28:e6:d9:78:4e:cf:01:
86:ae:d1:c9:45:eb:af:6b:7d:04:9d:22:e5:c5:c2:
aa:29:61:44:b1:4f:07:cc:12:e6:ec:5e:fe:b8:21:
18:a5:3a:cf:8f:c6:d4:78:0a:58:17:18:5b:95:0e:
94:f8:95:28:aa:e3:e1:36:d0:69:ff:f8:a5:e3:74:
1e:1c:17:f1:0c:2e:4d:a5:6b:1e:d3:d9:29:1c:41:
a5:d3:13:ec:22:4e:11:c2:21:cf:71:22:12:b8:df:
b5:1f:ea:89:75:b0:b5:fa:02:17:12:25:b3:74:ff:
33:86:af:14:32:40:c9:31:01:41:af:98:c2:6a:b4:
64:61:ae:08:48:6a:f2:a8:0b:bb:2a:fb:f3:35:47:
0d:24:50:6f:0c:d6:47:18:1b:51:a9:c6:5d:19:59:
7c:9c:56:6f:34:73:f5:5c:7d:5a:bf:52:c0:f8:17:
31:ca:0c:c3:51:19:7b:68:97:a2:5d:1b:11:a0:f9:
f3:22:a2:fc:6c:f3:cb:92:60:cc:21:ab:ee:ee:83:
56:5d:0f:ae:70:c9:7c:e3:9d:53:7f:2e:dd:9a:90:
8c:73:e2:27:63:b6:22:a3:00:8b:3c:63:06:52:85:
92:78:23:d7:e1:3d:72:67:e0:f1:ea:56:81:a7:90:
58:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:66:29:1B:4C:89:E6:5F:84:2D:EF:47:C9:FC:C5:B8:22:D4:5A:E9
X509v3 Authority Key Identifier:
keyid:77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:9d:3e:5c:2d:c8:6d:e1:91:ea:30:d9:4e:ec:06:a7:2b:01:
6b:b5:b0:3e:72:21:33:c6:4d:f1:3d:3c:df:7e:84:8d:b9:8c:
8d:b0:92:7f:a2:88:b8:e0:84:b6:0a:95:91:9f:cb:7b:41:35:
37:79:c6:45:8c:dc:a3:8f:61:c2:5e:76:37:77:59:c5:c8:a3:
54:c8:72:f4:74:47:ed:f7:6c:0c:d5:c9:3a:74:05:f3:54:d9:
1e:61:31:db:a4:f9:ec:5d:82:a1:34:5c:b0:0e:2d:d5:25:90:
4a:5f:fd:d7:fd:7c:9e:48:e2:e0:24:96:67:fc:8d:31:9c:c8:
e6:92:6d:f9:dd:9d:c1:4d:b1:70:c5:11:12:40:68:fc:d6:41:
72:b8:68:0e:45:09:d7:b5:93:aa:6c:04:1d:ed:6e:8c:78:bc:
ed:e1:6c:3b:3c:d0:64:26:db:3d:74:80:77:1e:5a:27:94:e9:
a6:ad:c7:20:fd:df:43:e9:ca:6e:ef:db:55:de:34:d2:e5:49:
2c:79:0f:e2:36:6a:22:15:62:a8:3c:a5:72:a3:dd:00:79:95:
b9:d9:17:a5:b2:65:26:57:b3:8f:b8:66:36:fd:b5:85:7e:60:
71:8b:9c:f6:8c:af:26:26:a7:e4:f2:ad:df:23:37:47:a5:46:
76:f4:2d:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 04:21:09 2025 by rpki-client