Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
File: 0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft (raw, json)
Hash identifier: D+6oOlHi5wtB5ZgOZmj+H3ootcCNmmR/YllPtKXjRzA=
Subject key identifier: 0E:B2:43:49:F4:3D:D5:07:DE:6C:69:06:2E:A8:E1:B8:C0:CD:AA:C5
Authority key identifier: D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8
Certificate issuer: /CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8
Certificate serial: 019A725C876A8706E9D2DDA7922B2D46983F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
Manifest number: 03A4
Signing time: Tue 11 Nov 2025 10:00:57 +0000
Manifest this update: Tue 11 Nov 2025 10:00:57 +0000
Manifest next update: Wed 12 Nov 2025 10:00:57 +0000
Files and hashes: 1: 0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl (hash: yV/HOxCSAtKelhiO6/aLXYKhoDapGdFcoo858CoTKUo=)
2: vwZ3qyY8j7AihfGsWYtA6mwINxQ.roa (hash: VBbCuPYUO8ASQ+6MrnY57WOdr+3+R3PhClJszE/T/CI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:87:6a:87:06:e9:d2:dd:a7:92:2b:2d:46:98:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8
Validity
Not Before: Nov 11 10:00:57 2025 GMT
Not After : Nov 12 10:00:57 2025 GMT
Subject: CN=0eb24349f43dd507de6c69062ea8e1b8c0cdaac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cb:51:6b:02:22:49:47:6c:6f:30:05:ac:50:
41:ce:c2:23:7e:22:43:8b:3a:67:f6:43:80:a9:5a:
0a:60:d6:7a:95:e0:08:10:44:4a:e8:05:99:fa:af:
e7:09:c9:a5:fe:fc:7f:df:bd:4d:ac:66:f0:21:b7:
e1:f3:97:f7:47:34:13:6f:41:36:5b:bc:ec:97:79:
68:e6:44:1d:7a:ab:d5:b5:06:c2:34:b8:64:8f:53:
37:90:f1:7b:11:b0:f1:2f:61:d9:04:72:71:16:4e:
1b:68:5d:07:18:1c:2e:4d:9c:3c:6f:b2:3e:15:50:
19:c3:68:70:75:29:ef:26:63:4c:c1:53:98:58:90:
ca:95:83:7d:e9:98:ba:50:cc:d2:ae:f6:76:1c:c4:
c1:7c:dd:c9:e0:fe:88:70:0f:3f:8a:53:32:f8:e6:
fe:17:35:1b:a1:1a:86:3d:93:a5:76:9c:e9:10:71:
d5:d2:7d:08:cf:bd:19:ef:a5:85:07:ef:a1:30:bf:
e0:48:38:18:7a:56:35:07:b4:d0:7d:b4:f6:05:eb:
86:6d:12:51:4a:6a:21:6d:d1:83:fc:70:96:7d:13:
4b:90:a8:9b:f1:69:1f:6c:18:7b:14:33:bc:e5:f7:
da:04:02:89:13:2a:a9:6e:ae:69:18:33:91:d5:8f:
93:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B2:43:49:F4:3D:D5:07:DE:6C:69:06:2E:A8:E1:B8:C0:CD:AA:C5
X509v3 Authority Key Identifier:
keyid:D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:3a:46:d2:e0:fe:bf:b5:07:1a:c7:37:4c:cf:4c:a8:ea:82:
f3:37:b0:fa:ff:1d:c7:87:70:ca:05:0d:e3:f0:45:cc:f0:f0:
bd:de:42:bb:d1:4c:12:7e:35:34:eb:73:ba:0b:5d:c5:03:c6:
be:90:2c:e5:4f:2e:16:40:33:9f:46:30:b1:74:59:4d:e0:12:
eb:a5:86:61:76:db:c6:84:a6:bf:12:f0:0b:e3:bd:e7:fc:66:
1d:60:93:45:f7:ed:12:54:4a:66:c0:d1:02:5e:2b:de:f9:8f:
2e:f3:41:fb:35:ab:6d:b7:57:5b:c1:b2:bd:a2:ec:c7:82:87:
d3:2e:77:dc:ac:63:27:40:d5:45:d7:0a:cc:b6:f1:ca:80:3c:
75:7e:44:af:51:16:cf:8c:04:a5:99:53:9d:14:43:bd:3c:0a:
08:a0:5f:2b:53:32:57:03:57:d8:6f:10:7d:58:41:01:ff:67:
e2:c5:af:5f:ac:67:01:3c:68:12:5c:ca:b8:75:2c:7a:a8:94:
54:e5:77:fe:45:70:9e:81:19:f8:ef:5e:10:41:7e:04:e8:35:
6f:2c:11:30:df:ea:b7:7a:b0:13:9b:61:dc:13:fb:b2:a3:1d:
d8:87:23:86:2e:e8:6f:95:d4:85:51:e8:3a:99:2e:5b:19:84:
a5:9a:a1:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:55 2025 by rpki-client