Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
File: 0dMLd0soDDfhxe1dimnLmvZIsGU.mft (raw, json)
Hash identifier: j5562RtGvVkG614CVHx2hsJl4KeBxyyfSVtiv0MTiXI=
Subject key identifier: 4C:42:C5:F1:24:E3:F5:18:2E:ED:3E:86:2E:C8:18:80:5C:53:C3:19
Authority key identifier: D1:D3:0B:77:4B:28:0C:37:E1:C5:ED:5D:8A:69:CB:9A:F6:48:B0:65
Certificate issuer: /CN=d1d30b774b280c37e1c5ed5d8a69cb9af648b065
Certificate serial: 019A18E23920A8E740A84A643CF0CBC31D33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dMLd0soDDfhxe1dimnLmvZIsGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
Manifest number: 0B5E
Signing time: Sat 25 Oct 2025 01:01:10 +0000
Manifest this update: Sat 25 Oct 2025 01:01:10 +0000
Manifest next update: Sun 26 Oct 2025 01:01:10 +0000
Files and hashes: 1: 0dMLd0soDDfhxe1dimnLmvZIsGU.crl (hash: o0fvxtS1SaNeQRG6CR62ogfwtOZ6G7SjdrdU+Fys6kc=)
2: Z6jijp-NqGecwIu65j-qEMAm0nw.roa (hash: 19TQbomnm0YTugnf3c9Z0fKykpuT1EtKWHuZ0GsZG+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0dMLd0soDDfhxe1dimnLmvZIsGU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:18:e2:39:20:a8:e7:40:a8:4a:64:3c:f0:cb:c3:1d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1d30b774b280c37e1c5ed5d8a69cb9af648b065
Validity
Not Before: Oct 25 01:01:10 2025 GMT
Not After : Oct 26 01:01:10 2025 GMT
Subject: CN=4c42c5f124e3f5182eed3e862ec818805c53c319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5f:8e:14:94:09:1e:f0:61:0f:ee:3a:d9:39:
e3:5c:65:0c:30:69:b8:48:dc:8f:a5:69:fc:da:6b:
23:11:34:9d:27:1f:29:1e:0d:46:5a:6c:63:65:a2:
e1:ad:2a:ab:eb:2d:a1:fe:14:97:7d:b2:4d:f8:a0:
07:5d:9c:8a:dd:19:4c:0c:58:10:48:99:78:ff:d1:
cb:ea:90:f8:1a:e8:98:1d:2f:e3:16:e3:37:0b:24:
fb:ea:7c:3a:3f:4a:a0:90:44:ae:12:a7:da:8e:0b:
90:c6:a5:7a:d3:26:96:c2:16:b5:55:81:dc:76:30:
c4:2e:ed:be:ed:4a:8c:ef:be:7d:3d:b7:8a:ef:77:
aa:d6:84:8a:6a:fc:cd:8c:c5:ca:34:75:05:2e:2d:
37:ba:e8:1c:d6:ab:4f:33:9c:64:26:6c:e9:da:dd:
14:30:c0:88:f0:17:cc:e7:a5:8d:69:9a:cf:2a:ee:
ab:5e:50:48:43:31:52:9e:12:57:ee:04:d3:35:5b:
59:26:1f:c4:c6:0b:26:b9:05:1c:8d:ff:63:91:ab:
42:e8:82:a2:22:ff:a0:df:2f:9f:2d:20:d9:11:cf:
12:e4:19:44:19:32:c6:7d:ae:55:a7:d0:65:73:a4:
70:56:b0:2c:b9:4c:31:52:43:f7:cf:02:e3:55:de:
ef:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:42:C5:F1:24:E3:F5:18:2E:ED:3E:86:2E:C8:18:80:5C:53:C3:19
X509v3 Authority Key Identifier:
keyid:D1:D3:0B:77:4B:28:0C:37:E1:C5:ED:5D:8A:69:CB:9A:F6:48:B0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dMLd0soDDfhxe1dimnLmvZIsGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:03:c6:73:84:97:2a:a6:39:67:a0:24:3b:7c:f5:e6:85:5c:
35:78:36:09:e6:8b:5c:0a:f8:10:02:e4:32:36:80:fa:94:37:
f1:96:c7:bd:01:dd:b7:a9:28:4f:04:20:de:2b:46:e5:95:6a:
10:90:09:3b:85:b5:18:e5:3a:96:d4:8f:1c:08:ea:bc:9a:96:
d9:72:a7:2f:85:7c:13:d4:b2:0e:5d:18:7a:96:45:ed:1a:bf:
5f:1b:27:e5:d2:41:8d:03:6b:2d:dd:3b:12:39:84:c0:ac:16:
27:f7:18:dd:a5:4e:44:d1:bf:57:71:38:9f:7f:92:59:07:22:
5b:5f:6f:2f:58:62:e1:d8:3c:d3:af:23:be:50:b1:4d:39:ed:
22:12:d9:9b:4c:09:34:ca:04:53:ae:d8:5a:20:e4:6d:54:49:
50:ab:f8:a5:d5:9f:d7:87:79:1b:22:b3:fa:71:c4:43:08:04:
e0:88:92:07:a1:bf:1e:c5:f8:73:c9:d7:25:27:b8:83:f0:26:
94:0b:32:40:1c:bb:35:d9:f7:a3:a4:23:2e:f5:ea:f5:f8:bd:
ad:b9:99:cc:29:dd:ef:45:58:28:ff:c5:64:0d:fc:c4:9c:a2:
5d:b0:40:c4:b5:7d:41:aa:99:f9:d6:e9:23:94:59:c6:f2:78:
d8:d9:64:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 06:13:50 2025 by rpki-client