Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: Nk/mx8f8+OGY72HwW/cCDi/tQEmH3aD+/vro7MiSWgw=
Subject key identifier: 8C:54:6E:C6:95:01:72:2E:47:6C:CB:93:C3:F3:B6:95:3D:E1:51:7F
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 019872CF9A01B8C3B698D883F8785A1A1E7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: 02BF
Signing time: Mon 04 Aug 2025 02:01:04 +0000
Manifest this update: Mon 04 Aug 2025 02:01:04 +0000
Manifest next update: Tue 05 Aug 2025 02:01:04 +0000
Files and hashes: 1: ZWC54UPrMHyZ6gth2IDDnRYsMDY.roa (hash: 4Yk1QA2QugshfW9geeysUTQ4Sub4Aja/bv1m3JJnrLU=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: CMpKXACt4Xopx1SuuO3VG4Fl1VNpfpciG58iqZMBpA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:9a:01:b8:c3:b6:98:d8:83:f8:78:5a:1a:1e:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: Aug 4 02:01:04 2025 GMT
Not After : Aug 5 02:01:04 2025 GMT
Subject: CN=8c546ec69501722e476ccb93c3f3b6953de1517f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b4:d0:52:36:24:06:85:e2:22:16:70:cf:1a:
47:6d:64:a5:c9:53:c7:7d:b7:e7:73:bf:45:8b:fc:
54:08:91:b8:39:35:7e:ee:63:e7:ca:05:0f:e3:52:
ca:8d:c5:42:e9:b4:2e:90:96:a5:f9:2c:b8:56:d3:
1a:2e:f0:f5:75:f8:55:60:92:53:d8:ec:8d:d7:4e:
b5:78:3c:4f:05:c1:87:21:34:40:d1:05:f6:ab:01:
eb:c9:5d:55:e5:ec:34:ad:19:e2:d7:d3:fc:29:e0:
62:ac:48:53:9b:ad:a7:fa:48:cf:d1:40:86:69:b1:
56:96:0d:4c:59:4b:65:a8:61:30:cc:13:57:cf:49:
e8:16:9b:96:2b:d9:71:ac:dc:fa:87:ee:f3:20:0f:
6e:a3:c2:4d:61:df:14:28:09:5b:87:bc:ea:eb:53:
25:d6:9d:5f:f3:1a:42:ec:2a:7b:55:d1:1b:fa:d7:
4e:76:45:07:bb:93:43:7e:1c:d0:75:2a:d3:31:f4:
bf:0b:f4:17:7e:d7:88:ee:b2:ce:a3:df:94:2b:d1:
cc:94:8c:c1:98:6a:5b:0e:55:7d:08:f1:60:c3:ed:
f3:a8:b2:3a:85:d1:65:c5:bf:66:48:d8:52:98:0c:
97:02:88:07:96:f7:07:df:b7:e6:1f:91:17:91:2b:
ae:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:54:6E:C6:95:01:72:2E:47:6C:CB:93:C3:F3:B6:95:3D:E1:51:7F
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:41:11:f6:b7:bf:17:5f:9f:88:57:30:64:a1:4a:bf:5f:6e:
da:3e:eb:4b:02:51:44:3c:3f:82:f6:70:b9:6d:ab:cc:f9:b9:
d7:b3:eb:a7:d5:52:66:88:c2:3e:86:26:fd:e2:74:6e:fb:ac:
66:ee:15:61:13:79:37:f1:5b:4d:fc:20:a5:cc:48:7e:be:87:
20:73:36:36:08:3b:bc:bb:4f:b1:15:0c:03:cf:b5:3f:2e:40:
4d:b6:bb:bc:96:30:90:eb:4e:ac:25:84:80:fc:34:c1:c3:cc:
54:8d:93:76:b2:a5:a8:10:0d:0e:62:63:02:84:44:22:cc:f9:
24:64:77:dd:2b:15:c4:f2:1a:2a:b6:f1:45:f3:81:9e:24:97:
9f:9d:13:2c:44:6c:b6:86:e6:b6:60:40:3e:20:d0:3e:cc:17:
d6:a1:7e:95:06:ef:fd:95:6b:0a:12:34:4e:c9:a8:4a:cf:76:
c9:c6:8e:96:e2:bf:bb:95:27:17:41:82:8d:34:f4:42:9e:c0:
43:ef:e5:19:ac:5f:6f:a2:67:46:9b:53:d6:e4:fb:da:21:44:
fe:95:d2:8b:53:02:36:c8:6f:f0:f6:76:ca:e1:95:3c:38:eb:
6e:2b:2c:fa:30:7e:2f:61:6e:9d:91:66:a1:00:2a:fa:bc:7d:
d3:fc:83:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:00:41 2025 by rpki-client