Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: MATkMLFzgu0Vi94UryG4QiKOXTcvkCrRVGYSwy4MrUc=
Subject key identifier: 5F:83:16:91:C0:F7:CE:28:F2:B1:C4:21:39:36:7F:D8:D2:B7:9D:5B
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 0199C4C4AD3377CE1E3E64DE24E1F427971B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 01DB
Signing time: Wed 08 Oct 2025 17:00:47 +0000
Manifest this update: Wed 08 Oct 2025 17:00:47 +0000
Manifest next update: Thu 09 Oct 2025 17:00:47 +0000
Files and hashes: 1: GdRMKH6WdmmVubPmURRtVnS8GV8.roa (hash: gQYTKVfews/6lfRAQlloM0LgEpj91iqOXwXozcwIpNc=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: 3YbeK7z/HiTQjSscqzlu6ia1pAVFvRoDrXVA+5jsSFA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Oct 2025 16:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:c4:c4:ad:33:77:ce:1e:3e:64:de:24:e1:f4:27:97:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Oct 8 17:00:47 2025 GMT
Not After : Oct 9 17:00:47 2025 GMT
Subject: CN=5f831691c0f7ce28f2b1c42139367fd8d2b79d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:87:fe:fe:8d:43:02:30:e9:8f:76:f7:14:e1:
d4:2c:f5:55:6d:6c:85:ca:0d:4c:37:d3:f0:dd:68:
d1:ba:fa:6f:c4:e0:64:43:bc:0d:fb:bb:96:61:e2:
1a:c9:de:4e:95:40:33:77:ad:18:f3:37:4f:3d:cd:
30:3f:1d:08:cf:d8:fc:5f:b1:8e:85:0a:e8:ac:47:
fb:6c:42:32:48:fb:0e:bb:dc:18:11:60:93:c7:76:
2f:e5:ad:a1:b3:f3:ad:ef:8f:fc:a6:7b:16:8f:86:
b1:eb:d9:2b:51:86:92:ae:b1:cc:64:b7:57:20:6b:
c8:e3:95:d1:9c:bb:d5:09:57:58:3c:86:af:b9:eb:
40:1d:1c:65:f7:2f:3a:12:92:69:4e:99:e9:96:40:
97:d2:74:68:1f:4e:c5:b3:e1:84:e8:c0:91:30:d9:
57:76:0d:b8:f2:49:7e:2d:3d:86:2f:c6:b0:58:16:
f6:5a:c7:d0:5e:32:ac:23:f8:b1:b5:46:fa:ee:18:
c7:ef:3f:09:91:10:05:c5:a6:75:0b:14:90:ce:95:
01:49:0c:6d:bb:0b:f7:57:ec:2b:14:22:05:d4:82:
2f:64:ab:b8:de:d9:74:5d:c6:4f:b8:e5:e5:58:ff:
b5:1e:48:c7:4f:57:dc:06:e9:f3:a0:91:7b:a2:7a:
23:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:83:16:91:C0:F7:CE:28:F2:B1:C4:21:39:36:7F:D8:D2:B7:9D:5B
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:49:18:43:c5:f8:af:85:07:f4:54:43:c5:14:ee:05:4f:b7:
fa:89:ce:ea:12:93:bd:5b:f9:5a:c2:33:24:0d:65:4d:cf:5c:
05:51:30:ff:84:cb:0e:40:62:42:ea:7d:66:cd:b0:cd:14:0a:
16:e3:a2:67:c9:fa:75:dc:4c:b4:54:a7:f1:da:8c:a6:d4:7c:
4a:c9:1c:b2:9f:09:0f:ad:01:70:d4:63:fa:66:a0:42:32:14:
a7:22:ca:64:ca:08:ba:c1:90:7e:2a:61:06:d1:88:90:9f:cf:
9f:09:8d:a4:14:aa:48:85:28:2f:d3:9c:aa:40:53:5d:1a:a1:
44:94:31:60:fd:e4:b7:55:00:2f:bf:8d:7b:4c:83:c6:f7:71:
c6:7d:ef:6d:0d:84:a4:a7:ad:a5:f9:62:d9:65:dd:ea:04:17:
aa:a7:1e:1c:50:e7:f1:31:87:66:71:a2:f2:21:c4:48:e6:b1:
32:44:a1:3f:01:47:57:7b:1b:b9:4a:71:9d:a7:f0:61:87:9c:
33:97:3c:de:d4:22:71:bd:89:e2:c6:3f:7d:58:db:c4:ee:96:
03:e8:a4:93:10:7c:5c:8d:5d:4e:a1:8d:6e:ed:f6:f2:12:8b:
cb:91:47:20:4f:73:c0:e1:30:5b:3f:cb:75:bc:56:f0:0c:21:
f5:3f:e7:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 9 01:22:51 2025 by rpki-client