Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json)
Hash identifier: izo40wYy5CYRtpSMMEpz718FLl+PpEwrPKvO6sjPuis=
Subject key identifier: 91:E2:42:35:DA:0B:D5:AC:49:B1:AF:0A:2B:5E:53:2F:92:C3:06:17
Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782
Certificate serial: 019A2A799D7D6BCE07F14F7DBF3BBCFB9F42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
Manifest number: 0DD1
Signing time: Tue 28 Oct 2025 11:00:04 +0000
Manifest this update: Tue 28 Oct 2025 11:00:04 +0000
Manifest next update: Wed 29 Oct 2025 11:00:04 +0000
Files and hashes: 1: KH_j-0tZP7kZGa_RGAqb8KjeOKE.roa (hash: nJQFit94GD/cIbI8GNPP+c6lmHYIPdofJMVeQt5hkQ4=)
2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: eUURlw1gWeKiuabIbfWMdSvJ23vLYLvn7i0BvneXmS4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 11:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2a:79:9d:7d:6b:ce:07:f1:4f:7d:bf:3b:bc:fb:9f:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782
Validity
Not Before: Oct 28 11:00:04 2025 GMT
Not After : Oct 29 11:00:04 2025 GMT
Subject: CN=91e24235da0bd5ac49b1af0a2b5e532f92c30617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:79:e7:2b:79:08:6a:66:6d:3d:10:97:5f:3f:
fb:6f:dd:40:49:86:db:87:54:cf:71:df:63:6f:78:
a7:80:22:75:b1:9f:7c:a6:89:08:f0:80:b9:49:5b:
c6:d7:0d:38:de:59:6a:c7:92:01:7b:70:83:d2:1a:
cb:0a:77:90:08:bc:8c:3f:da:17:7a:c0:a3:80:57:
90:df:c6:72:b9:a0:71:de:2e:0f:51:0a:69:c7:20:
69:c5:e4:37:bc:4c:ee:f3:df:3a:80:96:e2:6f:03:
37:39:a8:4a:78:cb:39:ea:60:58:f5:46:3d:74:f2:
e9:41:09:90:63:66:cf:b4:b9:c0:d8:f7:ae:57:e3:
8a:53:4e:9a:48:85:66:60:08:66:21:99:08:0b:d0:
19:47:17:ac:e9:2a:c2:fc:94:0c:b0:20:4e:5c:28:
3f:d9:df:45:cb:63:36:32:16:e3:cb:67:7d:f9:3d:
e3:57:7a:37:9e:92:28:d9:47:53:60:d3:d0:2b:60:
52:a4:41:be:b1:86:d6:5f:40:6b:78:ee:8e:ab:af:
29:5d:a7:d9:2e:58:3e:c3:86:26:f3:67:8b:39:40:
a5:00:7c:16:42:9b:49:be:83:32:13:bc:ad:f2:c0:
29:60:b4:01:e9:44:41:4d:1e:4b:4d:5b:58:a2:72:
92:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E2:42:35:DA:0B:D5:AC:49:B1:AF:0A:2B:5E:53:2F:92:C3:06:17
X509v3 Authority Key Identifier:
keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:76:38:4c:03:14:54:00:b2:1b:17:2e:cf:8c:af:24:fe:db:
20:10:29:3c:5d:56:fa:eb:5b:4f:0c:3e:2e:5c:a0:b5:ba:16:
22:41:a3:4b:7f:28:18:d3:c3:ae:f8:5d:be:92:c1:d9:4f:09:
16:df:f3:e8:ab:2b:85:a3:d4:4b:43:ed:9b:6c:c0:cf:82:e2:
de:1b:1a:a1:ae:5d:c3:4f:28:98:53:af:d7:cc:b2:5c:6f:5f:
6a:2b:65:07:a3:8c:e8:47:cf:db:56:63:0e:18:bf:c0:23:36:
66:88:9b:8d:3c:1a:72:18:1e:bb:59:ee:a8:b9:30:d6:44:aa:
d0:e9:7a:0c:72:26:c4:99:fd:93:11:00:77:40:17:c9:a8:e2:
60:db:e6:ca:c7:9b:6a:76:a9:99:fd:18:61:59:0a:e0:5a:2f:
ed:0e:92:48:b7:2d:08:2c:78:a4:5b:6a:e7:49:a5:f6:17:af:
33:d9:f2:6e:17:55:4a:b3:7a:c4:64:c4:d0:01:b5:e8:01:4a:
81:c2:bc:c6:b4:22:ca:7d:4a:5c:5e:45:1f:89:fb:f9:6f:10:
9b:30:0f:a8:5a:8d:91:d5:14:06:37:e8:f9:54:6b:7a:9b:62:
36:00:17:ba:56:33:6b:2d:cd:84:13:ef:30:0d:41:61:28:30:
72:58:5a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 16:40:08 2025 by rpki-client