Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
File: 0LYdHx2czatrbY4UUMLJNtOX5nA.mft (raw, json)
Hash identifier: n2SkxR3fyCPQs6BYNaj2eXbhMI06lQgjjmm0bq9rcGY=
Subject key identifier: EB:62:3F:8E:65:6C:84:0D:7F:73:84:B2:87:9A:F6:CC:27:E1:F1:2F
Authority key identifier: D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
Certificate issuer: /CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Certificate serial: 019A27E6C2AC3247AADB7D4909917EF6EEF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
Manifest number: 03DD
Signing time: Mon 27 Oct 2025 23:00:25 +0000
Manifest this update: Mon 27 Oct 2025 23:00:25 +0000
Manifest next update: Tue 28 Oct 2025 23:00:25 +0000
Files and hashes: 1: 0LYdHx2czatrbY4UUMLJNtOX5nA.crl (hash: Swj7VOVxOPwSqDUDIMV15i/X2oWIn8+66ZcNWjJYNP0=)
2: DhPaCGROVzc_RyLkimAXvuteooA.roa (hash: 7GJwuhnVTvbxl3b1/oKcnOg3a/h9WeQA7faf/qH9pFA=)
3: WtuPQAz22oEnCEx3Rc-9J0U0Qbk.roa (hash: LqsVaHB6US9lWput6TNuWvOyM8xnvQFU16n5uBdiSPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 23:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:e6:c2:ac:32:47:aa:db:7d:49:09:91:7e:f6:ee:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Validity
Not Before: Oct 27 23:00:25 2025 GMT
Not After : Oct 28 23:00:25 2025 GMT
Subject: CN=eb623f8e656c840d7f7384b2879af6cc27e1f12f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:3a:5e:9f:bf:fe:8e:2e:ac:12:68:ec:02:11:
7a:44:85:ec:84:66:1a:a4:df:38:e4:02:16:3f:47:
f4:df:2a:31:e0:8a:7f:dd:a1:1a:ae:de:43:bd:b4:
c4:3e:38:5d:d4:37:5c:a1:d5:59:90:ad:1d:9f:14:
ed:c4:4b:03:f4:c7:6f:ae:98:6f:48:72:f3:4d:6a:
48:9b:0e:c0:42:4e:09:c2:85:d5:63:a3:46:f8:9d:
3b:0d:93:b6:38:2b:a4:78:03:aa:6c:ee:9f:75:f3:
62:50:0c:59:58:02:cc:fa:1f:9b:67:3d:72:85:fb:
dc:b2:80:96:dc:29:fc:52:5c:b5:81:92:2c:32:0b:
48:a8:72:14:0f:f3:4d:db:f4:b0:41:fa:3d:34:10:
fd:62:80:c9:1b:19:c2:c3:12:c8:60:ed:a1:25:b6:
04:b1:42:01:2c:7d:d8:f8:d7:98:88:68:36:61:02:
a5:7a:e1:c5:0b:19:9f:9f:58:ff:08:46:f0:54:fa:
c6:4c:48:ef:aa:68:d5:8c:55:17:22:08:d3:fd:73:
87:ca:40:ce:6e:b0:92:33:19:37:0d:b3:b5:2d:6b:
f5:f8:df:e2:74:8b:e4:b1:96:00:d5:ba:e9:4d:33:
c3:96:c1:9d:9f:5f:37:e5:ec:e7:fc:17:bc:6f:ed:
12:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:62:3F:8E:65:6C:84:0D:7F:73:84:B2:87:9A:F6:CC:27:E1:F1:2F
X509v3 Authority Key Identifier:
keyid:D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:d2:ff:39:fb:97:d9:23:d6:df:87:3e:71:50:12:34:44:e2:
73:45:1b:32:43:5f:49:e3:4b:81:f4:51:09:eb:1b:59:11:e6:
cf:1f:84:01:fd:87:46:7c:10:44:82:0b:9a:61:f0:22:82:4c:
68:ed:6f:db:8f:e2:66:4e:e5:1f:9f:fa:13:b6:0b:a4:df:b3:
47:2c:24:bc:bc:b6:c9:0e:46:d2:48:f4:58:2a:ad:32:a3:db:
a4:b2:97:6a:e4:e6:ba:40:4f:70:02:49:5c:22:f4:f8:2e:3a:
b7:a1:ab:d2:79:e3:c6:eb:88:bf:25:f7:26:47:3d:3a:4c:4a:
22:ad:e6:43:77:4c:75:8a:53:ab:e5:5c:70:61:10:cc:be:7b:
a5:72:3f:ce:96:b4:62:01:c1:eb:12:35:f2:4c:52:d1:52:a2:
3f:6e:e0:46:d2:ec:84:e0:c1:5f:da:ff:e7:b6:06:eb:43:5a:
5b:09:26:41:75:95:06:e9:9d:1a:cb:79:74:b1:28:b9:f2:0f:
76:e2:e6:36:49:7b:ea:be:34:9e:ce:15:d6:16:da:ad:67:1c:
eb:fb:82:f0:31:a1:b4:35:cf:10:54:11:7f:65:5f:f3:84:a1:
6b:81:76:1a:6e:e1:fb:c4:a7:84:89:4d:38:72:7e:2e:0a:c2:
6c:ce:3d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 05:21:23 2025 by rpki-client