Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
File: 0fbkNwERz7-WhASFQie4CShRRQ0.mft (raw, json)
Hash identifier: BH2/TB86VkKDG0LIOjWVRZin7nAtBj+/KWjo9F5gUVg=
Subject key identifier: 1F:59:A6:17:1C:E4:BE:58:D8:4D:E1:A1:35:2C:23:5B:17:32:3D:A2
Authority key identifier: D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
Certificate issuer: /CN=d1f6e4370111cfbf968404854227b8092851450d
Certificate serial: 019A1FF63A31C0D8101C9AB80BDBDB1241CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
Manifest number: 0F56
Signing time: Sun 26 Oct 2025 10:00:21 +0000
Manifest this update: Sun 26 Oct 2025 10:00:21 +0000
Manifest next update: Mon 27 Oct 2025 10:00:21 +0000
Files and hashes: 1: 0fbkNwERz7-WhASFQie4CShRRQ0.crl (hash: emdnrvt52mU36L+QWW60Ox8tl6WoZb92MJ0j9me7xJM=)
2: w9laCbfNTG9x8SgYBLM8cjfOdmA.roa (hash: WglJOtLwDI5HpNhEnz7a8Exzapc/0A4kuz517Fgs06A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 05:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:f6:3a:31:c0:d8:10:1c:9a:b8:0b:db:db:12:41:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f6e4370111cfbf968404854227b8092851450d
Validity
Not Before: Oct 26 10:00:21 2025 GMT
Not After : Oct 27 10:00:21 2025 GMT
Subject: CN=1f59a6171ce4be58d84de1a1352c235b17323da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:82:66:be:03:4e:2d:d8:17:aa:b9:bc:51:8d:
73:4c:09:b1:43:cc:19:3b:51:ed:0e:26:1e:62:92:
66:6c:66:37:c6:0d:87:6f:40:a8:52:73:ef:98:58:
c1:f5:bf:c5:41:e8:f3:41:2d:7b:7d:5a:50:9c:83:
46:1d:c3:a5:44:7a:0d:bd:a2:b6:88:9f:4e:e0:4c:
ad:b9:9d:b5:f9:59:0b:f2:35:0d:59:fa:b2:a6:53:
54:39:0b:a9:d8:ae:93:a4:75:08:da:78:80:de:da:
f9:56:da:3c:04:d2:c3:7f:f6:33:7e:f1:ed:a3:74:
46:ac:47:88:2c:a5:7b:c3:d0:f2:05:8b:80:cb:7a:
9e:c1:90:5c:15:8e:85:f2:75:c4:96:9a:d2:df:d2:
a0:a9:61:73:fc:f1:ca:af:b8:67:6e:6a:68:e0:8f:
29:bd:55:3e:74:31:76:49:47:d4:dc:19:fd:8f:1b:
e8:88:65:cc:d3:22:73:01:1a:f5:6f:7a:60:a2:ce:
94:09:18:18:de:98:d6:56:a6:ab:a4:3c:98:98:30:
5a:24:e7:b0:3a:da:f0:62:5b:83:78:5c:95:81:0b:
2d:7d:e8:6f:cc:2f:cb:8a:45:3a:86:d9:a8:ed:3d:
31:ed:b3:2c:a3:c7:19:d1:39:df:6b:c7:53:6e:90:
4f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:59:A6:17:1C:E4:BE:58:D8:4D:E1:A1:35:2C:23:5B:17:32:3D:A2
X509v3 Authority Key Identifier:
keyid:D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:fe:8a:c7:d1:61:92:d9:65:9d:86:e8:0e:3e:db:ad:8c:93:
9e:2f:e4:44:f2:65:18:e3:b1:0f:26:e2:24:c9:99:11:b1:90:
d6:83:af:2b:e5:2a:6a:7c:ca:01:26:00:85:13:83:ff:08:e6:
38:ce:a9:42:34:be:22:bb:15:48:2b:f6:c3:4f:2f:b7:02:54:
3d:0b:51:6a:94:d4:8f:f0:90:a3:a2:03:f1:b3:99:ce:3e:a6:
a9:5d:f3:8c:74:eb:17:e2:b6:c4:03:79:0e:ff:da:a4:70:d3:
39:31:96:93:0e:6d:b6:e9:b9:ef:b8:ee:10:f6:40:55:90:12:
30:2a:5b:b3:73:8f:13:2f:73:7d:47:29:ef:2f:88:a4:58:e5:
3b:e3:88:f4:3d:33:c6:5e:e7:0d:d0:34:eb:90:1b:2a:69:52:
ce:2c:60:e0:28:d5:7c:0b:9f:14:e5:f3:0c:4d:ad:4a:6e:77:
b2:44:de:fe:86:61:26:ed:90:12:86:98:a9:d6:bb:22:c4:82:
1d:7e:d5:cd:99:29:57:68:61:9b:cc:68:2a:dd:b4:5b:2c:2a:
08:26:a2:4a:ec:6f:4e:f2:84:b1:e4:70:88:52:0b:2d:0d:84:
1e:c0:d5:0f:ae:9f:39:dd:15:cc:df:56:cf:57:18:ec:30:44:
14:87:d4:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 14:58:20 2025 by rpki-client