Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: gFjxQqilJy1CYdr7A/32xrQr4wa7YV3Se5VUdOK57rc=
Subject key identifier: 08:0C:3D:D9:C9:2A:23:D2:4E:4F:1E:2D:D0:79:C1:90:CF:94:F5:42
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 01989F3A25E7D7F18BB58F61BBA6579D9720
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 0AFE
Signing time: Tue 12 Aug 2025 17:00:44 +0000
Manifest this update: Tue 12 Aug 2025 17:00:44 +0000
Manifest next update: Wed 13 Aug 2025 17:00:44 +0000
Files and hashes: 1: WJX8pUUgztAx5ziEUO7pdOPaYpY.roa (hash: Zv2hcAwndmbcI8AgNFSDMAAPE42QlNQ0rd+YTdhMpog=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: rY+wO/ZaMpdqt9R0Nd8jnTlUUgUAhV8+0jn5MAdxfvA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:3a:25:e7:d7:f1:8b:b5:8f:61:bb:a6:57:9d:97:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: Aug 12 17:00:44 2025 GMT
Not After : Aug 13 17:00:44 2025 GMT
Subject: CN=080c3dd9c92a23d24e4f1e2dd079c190cf94f542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8e:c6:d5:38:53:22:f3:07:98:67:fa:54:c4:
5a:b4:c0:64:6e:a9:50:5e:fb:88:31:25:d8:4f:a5:
ad:f0:b4:a1:c2:39:26:ff:91:98:47:86:fd:87:6d:
a8:7f:90:04:57:04:37:44:ca:91:97:04:c8:6e:d7:
50:a2:60:60:85:36:0a:95:09:8a:2f:36:b0:d1:54:
e3:34:57:4c:21:13:65:c2:88:e7:f2:84:98:6f:74:
ad:7b:d3:50:3d:8a:b6:f2:45:3c:2e:bb:02:0e:70:
02:5c:d4:55:25:7e:e8:c5:9b:b6:d2:84:b6:3e:5f:
d5:11:eb:1f:4a:69:be:0d:c4:c3:85:8c:9a:86:fe:
32:7b:e1:a1:0c:94:78:a3:54:26:0c:13:fa:7c:7c:
35:e9:47:a0:b2:0f:c7:7c:dd:8b:1c:c6:01:5f:6f:
e1:f2:6a:f5:9b:87:5b:4a:3f:02:38:13:5e:36:f7:
78:8d:c0:bb:37:6c:a6:84:54:11:67:1a:58:d0:5b:
b3:e9:da:7e:f5:05:21:7c:b9:de:74:3b:0a:c8:3d:
20:39:04:cb:8c:7f:5f:a6:73:a8:f4:96:9b:93:6d:
c8:ff:96:39:a3:62:e8:47:1c:d7:7f:48:23:2d:eb:
30:bb:ca:e1:df:07:19:5a:f2:7f:d6:e4:e1:33:84:
b7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:0C:3D:D9:C9:2A:23:D2:4E:4F:1E:2D:D0:79:C1:90:CF:94:F5:42
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:9b:75:c0:ff:e6:49:f1:14:ed:fb:0b:63:ca:2c:b0:86:27:
33:3e:98:be:90:65:91:1b:8c:27:a4:79:88:d1:7c:87:3f:3a:
40:61:a8:64:87:2a:8e:b3:41:a4:ab:1d:89:2b:56:c4:d7:94:
05:11:63:7a:85:67:d9:0e:d6:31:08:12:b4:70:4a:f7:a2:bf:
1b:84:e3:ac:8b:e1:26:be:c6:76:e5:d6:2c:59:95:ed:50:04:
ff:54:c3:0d:ba:47:44:20:94:30:25:25:09:1c:d3:d3:26:cd:
31:91:5f:f9:40:e5:ad:1b:c3:72:40:36:1e:43:bd:e0:b4:8e:
85:82:e3:62:41:70:bf:dd:63:12:4f:4b:8e:fd:7d:70:98:90:
ec:54:01:08:a0:be:05:41:7f:cf:c0:1e:12:54:62:01:bf:8f:
f9:73:0b:e3:97:59:c8:b1:93:9f:92:f7:1f:6b:12:ee:08:1c:
d5:4e:9e:65:c1:e4:e8:35:ac:d7:26:df:b5:5b:e0:be:a7:33:
c6:c5:5e:24:b8:4d:98:c9:c4:5d:59:b2:ab:b1:4d:9b:dc:75:
3c:6e:25:e3:da:81:84:87:80:65:e4:be:61:4d:5d:b2:b8:e6:
c6:99:b7:fa:34:80:d8:30:d2:d3:46:7e:c9:ee:cc:d3:39:05:
aa:ed:98:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 22:42:07 2025 by rpki-client