Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
File: dahWeFOS2ifQC9snCRxZJsMVXYk.mft (raw, json)
Hash identifier: 9GZ3/7RR+CK0IQmGWRp0BP69ruFDhuxAvu3cGkwoWbQ=
Subject key identifier: B0:20:99:7F:B4:3B:EA:EC:B2:3D:99:10:51:4F:7B:46:78:14:66:66
Authority key identifier: 75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89
Certificate issuer: /CN=75a856785392da27d00bdb27091c5926c3155d89
Certificate serial: 019A1504DB3FB16721441CA1A2E233370C7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
Manifest number: 0F22
Signing time: Fri 24 Oct 2025 07:00:30 +0000
Manifest this update: Fri 24 Oct 2025 07:00:30 +0000
Manifest next update: Sat 25 Oct 2025 07:00:30 +0000
Files and hashes: 1: 4Ibv1mRm3BSugEZRLZ50GEzm6Bc.roa (hash: Ox7Eku50X67DCQ6L0nXfJGgK/iPhql76+0sQGSQq9Q4=)
2: dahWeFOS2ifQC9snCRxZJsMVXYk.crl (hash: TQ5qYaAM5zcubOXb3//IIi3xlnfeBerTyIirddeWOEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 07:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:15:04:db:3f:b1:67:21:44:1c:a1:a2:e2:33:37:0c:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75a856785392da27d00bdb27091c5926c3155d89
Validity
Not Before: Oct 24 07:00:30 2025 GMT
Not After : Oct 25 07:00:30 2025 GMT
Subject: CN=b020997fb43beaecb23d9910514f7b4678146666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8a:f5:e4:b1:0f:5a:f6:56:a1:76:1e:84:34:
91:35:a6:de:02:65:38:7a:b2:5b:9c:9c:a9:46:0b:
cc:3b:1c:03:91:06:82:82:66:6c:19:ee:30:09:92:
cf:d9:f3:57:01:cf:eb:a6:07:6d:53:84:cb:07:41:
28:bf:c2:62:f5:47:d9:ab:b6:6e:f7:9a:ed:df:cd:
d9:09:c8:1b:ca:e0:bb:61:f4:57:24:99:f6:d0:71:
3c:3c:8a:ec:3c:29:8c:fa:82:8c:d1:59:2b:13:dd:
0a:86:d6:6a:dd:f4:80:cc:45:49:b9:ea:8a:d0:0e:
de:b0:08:dd:a5:ed:0c:5b:e2:f6:59:34:e8:f0:b4:
9f:e7:77:f8:cc:e1:52:dc:7b:60:d2:cb:95:05:3e:
91:dc:e7:56:03:44:04:8c:e7:85:1c:18:b4:92:0c:
08:89:ca:a5:7d:5a:b9:42:cd:b0:da:8a:4d:9b:34:
62:a5:f1:57:6c:16:df:9f:79:a6:2a:e6:06:0d:55:
08:4b:8f:41:d9:0b:17:58:1d:3c:45:da:ec:be:c3:
a2:b3:65:0c:e6:87:1c:dd:ed:76:6a:1d:db:6b:10:
10:9a:73:81:9a:cf:a0:1b:d2:30:6a:93:b9:9f:4e:
c3:95:9c:70:18:36:fd:f9:56:0b:91:92:1c:60:a0:
6b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:20:99:7F:B4:3B:EA:EC:B2:3D:99:10:51:4F:7B:46:78:14:66:66
X509v3 Authority Key Identifier:
keyid:75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:1b:64:ed:40:5b:f1:e7:4f:57:87:3f:fc:99:ee:1b:38:e0:
05:c1:8b:36:0e:66:f2:33:1b:38:9c:c8:d3:0d:8d:a4:0d:57:
8b:2f:55:3d:19:8a:3a:c0:51:03:84:bd:39:f0:8f:d3:2c:23:
fc:7a:f9:64:96:4e:e8:e4:e2:99:0e:25:8c:1e:d0:39:e7:b9:
58:6a:f3:da:df:28:66:cc:ad:73:44:4d:68:59:35:31:d7:e1:
b5:5a:db:40:44:74:bf:d4:7b:de:11:ce:16:a6:9d:19:64:4d:
71:2f:24:b0:9c:60:07:0f:66:c4:3a:f8:ac:c0:0c:3c:e2:a1:
1b:79:d0:b3:8f:e3:e3:2b:42:fc:ca:6f:dc:c0:70:54:31:a2:
a6:b2:66:ff:48:d4:27:bf:4c:ab:47:5b:a0:bc:e7:ce:3e:c8:
2f:9e:27:dc:76:1f:59:2b:f3:35:b8:f4:15:fc:db:84:90:15:
1c:23:06:f5:17:1e:d6:da:fe:8d:b3:f3:b0:40:af:24:32:27:
21:d3:23:29:d7:2a:f6:e6:b1:29:d9:06:8b:57:f0:a4:e3:52:
30:60:c3:dd:6c:8e:8a:a5:14:59:5a:3a:6d:7e:82:74:d2:16:
b6:f0:ee:9d:61:76:7a:02:fc:22:90:fa:46:77:61:54:77:30:
47:6d:db:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 11:34:40 2025 by rpki-client