Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
File: 0YHQxAlRpPkA5NndnCDkhWNQkg4.mft (raw, json)
Hash identifier: 4t+LSAWNHRpxw9dkwKBQAAK9786+PL5Evt5ntCKU5aM=
Subject key identifier: 29:88:64:64:5B:49:4A:4E:9D:44:E9:A6:DB:7B:97:9B:A3:E8:7F:3D
Authority key identifier: D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E
Certificate issuer: /CN=d181d0c40951a4f900e4d9dd9c20e4856350920e
Certificate serial: 019A1B74CBA48E223930CB99FCB0149B796A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
Manifest number: 16F7
Signing time: Sat 25 Oct 2025 13:00:30 +0000
Manifest this update: Sat 25 Oct 2025 13:00:30 +0000
Manifest next update: Sun 26 Oct 2025 13:00:30 +0000
Files and hashes: 1: 0YHQxAlRpPkA5NndnCDkhWNQkg4.crl (hash: 4KnKQR5VN9bezV+tYjf4xqxiW3hHi2V9K0DfvrgBsyo=)
2: 2VAk9AH_jCxBcmS3UFNJkQWmjmM.roa (hash: OTJmVbnhsENHWSTSM66puZiLKu+kw6NtZbXCQeGN/YQ=)
3: 5kzmDTi0KIXTn8Ss2d36rIX1bZA.roa (hash: VgZeJy91lZpXmzMfyFbTui1JSN8xoQwBbcwBQ01/D0A=)
4: SA8oSTczcAjgQR1zXNlc0Vgrtd0.roa (hash: fw6Ud0wGZN9ltnlpcBVHmq+wSri7RZaFK71pfthgGyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 11:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1b:74:cb:a4:8e:22:39:30:cb:99:fc:b0:14:9b:79:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d181d0c40951a4f900e4d9dd9c20e4856350920e
Validity
Not Before: Oct 25 13:00:30 2025 GMT
Not After : Oct 26 13:00:30 2025 GMT
Subject: CN=298864645b494a4e9d44e9a6db7b979ba3e87f3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c6:f1:ab:79:4e:71:e9:62:65:92:9c:a1:e2:
aa:f8:54:9e:77:6b:18:67:48:6c:4c:e5:77:d3:db:
42:2f:a7:a4:61:1f:f5:4e:5c:b0:3b:fb:0d:04:57:
7c:6f:28:84:da:02:b7:de:53:8a:4e:de:83:dc:fd:
b9:be:14:2e:47:33:ab:bb:9b:27:2b:fc:59:97:de:
6d:73:65:da:81:63:2d:9b:0b:38:1d:15:fa:7d:a3:
eb:5f:da:2d:d1:a9:9d:2f:7c:f9:f8:c9:5d:7e:46:
f9:a2:11:b1:4b:47:fa:9b:4d:a5:22:b1:ec:3f:81:
8a:d3:b4:b5:0d:08:c9:45:58:a2:c9:bf:16:f7:1c:
59:21:28:c8:67:15:63:26:67:78:47:f9:8b:7f:b4:
6e:55:51:a5:c0:cd:dc:65:4e:2f:cf:8d:ee:ce:c1:
e5:61:e3:fc:c8:2d:12:e0:c8:01:ec:4f:dc:0a:8b:
0d:06:5e:a8:0f:98:2b:68:ec:a7:02:09:8e:01:a7:
91:0c:91:6a:32:49:af:88:24:5c:42:10:f1:74:4b:
20:72:b7:7a:65:23:f2:07:77:88:4b:a3:1e:aa:e8:
07:df:c4:0b:b0:03:b6:39:47:9d:2e:51:42:ed:cf:
f0:8d:91:ea:61:db:d6:66:86:22:f5:6b:2a:a1:bb:
9b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:88:64:64:5B:49:4A:4E:9D:44:E9:A6:DB:7B:97:9B:A3:E8:7F:3D
X509v3 Authority Key Identifier:
keyid:D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:6c:80:85:ff:6e:0e:8f:f4:67:34:51:dd:2b:9b:d6:64:71:
cd:59:5d:60:11:32:94:22:d8:d7:12:0e:b7:fb:c7:51:8e:24:
d8:f1:b9:f8:51:e8:56:c6:0c:69:95:9f:41:85:31:60:a0:ce:
40:d9:fb:cc:e4:49:ab:91:15:a9:2e:3b:b6:fa:93:a9:16:04:
b7:fd:59:47:2d:88:7f:a6:98:13:a4:56:4d:a4:07:77:c5:da:
e5:5a:8f:f7:da:2a:50:44:fa:7f:e4:6e:e4:07:aa:2a:f9:b6:
98:9b:e6:ae:14:57:1a:20:c5:78:1f:8f:ce:9c:16:b5:37:6b:
ed:6c:ee:27:61:2f:a1:96:ac:c4:d1:52:be:0d:28:25:4d:ee:
0f:a5:ba:18:ef:49:d9:b2:f1:74:4f:80:d8:67:b6:c9:a2:ab:
fa:69:8e:fe:44:1e:6e:33:74:90:09:a4:55:ca:7d:17:58:23:
3e:73:0b:50:ce:9c:9e:3c:92:cf:ad:5f:4f:aa:52:91:0f:d4:
a4:c7:45:2b:1a:c1:87:68:61:3e:d0:4d:d4:21:6b:e8:37:a2:
14:54:58:7b:81:90:f9:13:4f:b7:9a:3c:f2:f2:f7:af:3e:2f:
a5:35:18:b6:6b:2d:14:d4:48:2f:54:e9:a1:03:28:48:ae:a5:
88:ac:20:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 19:57:39 2025 by rpki-client