Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
File: doZr5p83cHIKbcxHkuaA_H9zIaE.mft (raw, json)
Hash identifier: K6AaLJZBWS3cSzLGvTl3FsS5RmgUOuhLsLQnYZ+3Pw0=
Subject key identifier: 80:48:DB:28:43:C0:B6:A4:F5:35:CA:18:E8:A1:06:78:CD:93:4F:1A
Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Certificate serial: 019A1A621095BFC34D1361D0BDCBE77F01E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
Manifest number: 16F4
Signing time: Sat 25 Oct 2025 08:00:25 +0000
Manifest this update: Sat 25 Oct 2025 08:00:25 +0000
Manifest next update: Sun 26 Oct 2025 08:00:25 +0000
Files and hashes: 1: VGNUuwe-hqqAy7oOkHM2nEayK1o.roa (hash: PbhbER0ewQHcNx+5Jye/cmyEemdCt4HhzE4je62M8OM=)
2: doZr5p83cHIKbcxHkuaA_H9zIaE.crl (hash: 4mMv8oPjNN3OwvLrMP+SadnLRKfHMidWY5XT+c3R8/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 08:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1a:62:10:95:bf:c3:4d:13:61:d0:bd:cb:e7:7f:01:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Validity
Not Before: Oct 25 08:00:25 2025 GMT
Not After : Oct 26 08:00:25 2025 GMT
Subject: CN=8048db2843c0b6a4f535ca18e8a10678cd934f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b7:61:44:3e:9a:89:12:45:13:21:fb:95:2d:
f0:c6:bd:04:3f:0e:76:1b:45:2c:bb:ab:69:bc:3b:
43:05:55:18:cc:cb:3c:b4:bb:1f:b3:1b:49:c9:18:
e2:65:b8:cb:b8:30:aa:cf:b6:7d:2b:68:70:8f:a1:
2b:b9:7d:4c:08:e6:d6:8a:20:7f:8b:eb:20:22:04:
cc:01:3f:5f:4c:29:c7:d0:13:96:20:a1:be:54:3b:
ea:cf:64:7d:bb:c3:57:98:eb:c7:47:db:ab:cd:17:
10:1b:91:29:45:17:28:ce:7a:ff:35:81:bf:1e:70:
cd:8d:31:b8:7f:7b:16:ea:a1:2d:05:91:db:a3:48:
12:47:1e:16:9d:9d:be:4b:60:64:0d:5f:74:02:ba:
bf:83:56:00:80:d2:f3:ed:83:48:a8:81:98:75:7d:
9c:95:c6:b0:b5:c3:a4:2d:1a:fc:4a:cd:85:27:26:
ed:1a:d5:40:26:4b:bc:d9:53:49:41:d3:73:41:f8:
58:8e:a3:82:74:e3:7b:22:81:48:e2:97:7a:b9:c4:
dd:93:c9:78:92:5a:9b:b3:f9:36:1c:43:ab:26:c1:
70:2a:a8:82:1b:32:9e:1f:3f:87:7f:da:a8:98:cb:
d8:a3:49:7c:e1:29:d8:d0:5d:45:31:84:0f:60:c5:
9a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:48:DB:28:43:C0:B6:A4:F5:35:CA:18:E8:A1:06:78:CD:93:4F:1A
X509v3 Authority Key Identifier:
keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:56:11:88:a9:2e:68:52:20:8a:f2:c4:67:e0:c9:33:41:17:
51:68:53:b2:2f:ad:0f:2f:34:f6:86:52:94:99:91:50:e5:98:
70:10:ab:2f:8e:93:b6:62:78:68:9d:d0:de:c6:69:4b:ee:af:
8a:31:0d:ff:d3:9b:a9:8f:75:a0:20:30:e9:28:94:22:1a:1f:
09:f4:56:3a:8e:e5:66:a4:02:9a:39:f5:1c:aa:ea:75:cf:7d:
c9:e2:ad:4f:59:e7:12:1c:f4:fe:2a:31:3c:96:c1:b8:7c:bd:
c5:b8:70:9f:48:26:84:e9:c6:7c:d5:f3:ab:02:df:63:17:09:
ef:1d:b2:e2:de:3e:cf:29:32:be:ba:09:95:94:0f:21:90:be:
d4:ce:43:d6:d2:28:7b:a5:cd:aa:bc:d5:ad:b2:79:f1:46:47:
be:32:47:b8:2f:db:df:67:33:9a:46:55:67:e4:b1:cd:74:56:
17:b3:12:6f:12:9b:7e:77:e3:bf:ff:ea:9e:7a:d5:56:aa:31:
23:2f:b1:7c:6a:2b:3e:7f:5a:34:55:f8:04:f2:0a:26:fd:89:
84:82:d3:6c:50:92:34:28:59:28:15:8d:2a:f9:d3:ab:b2:60:
dc:e3:91:99:04:5b:ab:46:6e:bb:0d:36:cc:a8:0a:41:9c:a2:
cb:7f:37:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 18:03:23 2025 by rpki-client