Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
File: 0nuHf4mTQSab7GfG46CoiLp66Y0.mft (raw, json)
Hash identifier: miqOoL6tzL7iRJZt5kLqvKC1H/pqAjw2eW6Fu+xoh48=
Subject key identifier: 06:6D:76:4D:22:49:5B:24:2F:C9:D6:A5:95:01:C0:DD:B2:2E:F2:BC
Authority key identifier: D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
Certificate issuer: /CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Certificate serial: 019A0A4A9237A9CA32DCBE06C29F1339E1EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
Manifest number: 0AEE
Signing time: Wed 22 Oct 2025 05:00:50 +0000
Manifest this update: Wed 22 Oct 2025 05:00:50 +0000
Manifest next update: Thu 23 Oct 2025 05:00:50 +0000
Files and hashes: 1: 0nuHf4mTQSab7GfG46CoiLp66Y0.crl (hash: 9UrhUfsfd5DY8L1iLIM31Jc8iJR0+KIp1Y6l221NQ7A=)
2: PdXLVimBA8zILWLashg1LUqBqm8.roa (hash: IrtzMysR6KSQR0SZiM1b2jUK5M57dKBFlK4qFH4B+Mo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 05:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0a:4a:92:37:a9:ca:32:dc:be:06:c2:9f:13:39:e1:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Validity
Not Before: Oct 22 05:00:50 2025 GMT
Not After : Oct 23 05:00:50 2025 GMT
Subject: CN=066d764d22495b242fc9d6a59501c0ddb22ef2bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fe:5d:9d:ca:59:74:54:6e:f9:d7:bb:2b:12:
67:e7:11:46:31:a4:d0:b9:93:69:17:34:7f:b7:57:
cb:9b:9a:22:14:e7:f4:db:d8:e0:62:d1:ab:87:27:
bd:f7:10:57:f5:b1:2e:06:46:4a:3d:f3:cb:c9:66:
52:7b:54:00:08:8f:ec:19:c3:f2:05:4a:b2:77:25:
52:e4:5c:ca:40:0a:34:51:a4:ca:86:6c:87:ab:75:
1a:2f:0a:9b:be:57:94:94:8a:dc:1a:17:1d:5e:5b:
09:be:dd:86:77:c3:3d:12:b1:9d:bf:74:86:3d:3a:
cd:6c:01:29:26:91:b7:b4:a5:1c:78:0e:21:41:e4:
8d:8d:eb:d0:61:97:d9:9e:ea:36:3a:82:09:09:76:
41:09:07:f4:bc:68:25:9d:0f:c7:f1:da:ae:02:17:
09:8d:1b:a2:a9:0b:dc:4f:f9:0b:38:4d:32:aa:6f:
95:f9:32:09:0a:52:20:e6:ee:5f:ab:8f:ad:cb:0f:
ee:c2:53:e0:b3:e6:12:91:ad:1c:16:08:f6:59:99:
65:8e:e5:bd:07:94:bd:b9:4e:df:fd:bb:91:76:84:
3b:36:c1:c7:29:84:f6:21:e2:87:71:72:18:5f:a2:
40:8b:92:d8:ad:b8:08:36:49:5d:c0:9d:aa:ab:3c:
34:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:6D:76:4D:22:49:5B:24:2F:C9:D6:A5:95:01:C0:DD:B2:2E:F2:BC
X509v3 Authority Key Identifier:
keyid:D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:ea:ac:3a:2b:0f:a8:2c:e4:8d:ab:28:ef:9a:54:1e:35:25:
80:0e:a5:ad:22:e4:d8:72:20:48:e8:cd:67:3e:bd:43:5a:e2:
fe:ac:6f:c2:a5:30:4f:37:d2:96:0c:69:bc:72:86:0b:ef:41:
e5:76:52:76:29:89:e2:7d:67:4f:50:b0:14:61:e4:ba:ac:9b:
45:8b:48:cf:b1:79:75:d2:fc:2c:46:44:4b:51:6e:42:c2:c4:
55:e2:9d:e5:62:ef:37:b6:d9:12:06:8f:72:7f:47:6f:89:9e:
fc:89:a9:45:1b:c8:ca:11:05:ac:b8:ce:dd:b0:01:b2:8a:6d:
7a:94:9c:16:dc:f5:eb:1d:83:f2:f3:53:9d:b4:c9:10:77:03:
f6:26:55:70:39:0c:fc:b8:12:d5:45:c7:1a:e3:0b:17:7d:8f:
47:92:d0:f6:57:25:29:a0:db:f7:46:c1:29:9d:16:fc:d1:cb:
30:31:b8:f9:bb:68:9b:97:90:01:01:42:5f:8e:62:97:87:82:
01:16:03:19:b1:07:bf:39:6b:1a:0a:87:2e:f5:de:0c:1b:91:
dc:1c:4e:f5:fa:2a:1d:e7:d9:e8:6c:65:49:6b:b5:88:8a:89:
73:21:36:b6:5c:b3:fa:c0:2c:94:6f:8f:22:f7:48:71:3e:e8:
76:1a:84:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 15:11:26 2025 by rpki-client