Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
File: koDT5GcpaPhuiVXbYgy3ZdudcUI.mft (raw, json)
Hash identifier: ZmjJ5pFgc82fZZrhthmpZ36VmIyNaxlwnqGzNORfdKM=
Subject key identifier: AD:A9:76:08:82:A8:CE:F9:D2:AA:19:87:D9:C6:7D:C5:E9:AD:70:70
Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142
Certificate serial: 019889574D58523FC4014081786D873DF1EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
Manifest number: 0A51
Signing time: Fri 08 Aug 2025 11:00:56 +0000
Manifest this update: Fri 08 Aug 2025 11:00:56 +0000
Manifest next update: Sat 09 Aug 2025 11:00:56 +0000
Files and hashes: 1: HJG2LfZbcdQILd5mjrG6JouJjB8.roa (hash: AJsKTbmetLnV+AkJjtEMj7IQPl7myVO7TWx6kpWmD6s=)
2: koDT5GcpaPhuiVXbYgy3ZdudcUI.crl (hash: hK2xX6HK73iRATGzWMRl6c8adDXrrxVqY2cG2a1dUyA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:57:4d:58:52:3f:c4:01:40:81:78:6d:87:3d:f1:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142
Validity
Not Before: Aug 8 11:00:56 2025 GMT
Not After : Aug 9 11:00:56 2025 GMT
Subject: CN=ada9760882a8cef9d2aa1987d9c67dc5e9ad7070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:37:01:07:c3:c7:9e:93:30:09:14:f1:7e:dd:
a6:49:36:a5:37:ea:5b:e1:d0:a9:df:c5:12:ff:2e:
cd:f8:88:3a:36:ae:7b:31:aa:d0:51:9e:9c:22:f3:
67:69:2c:18:7a:8c:09:3a:db:5f:b1:03:51:18:eb:
f9:c4:59:68:21:b1:04:db:9f:09:ae:50:cc:d7:d9:
99:eb:c5:91:94:c0:27:a3:0d:10:73:5b:96:49:27:
72:af:aa:15:a2:81:f9:d6:d6:a1:20:3d:78:34:8b:
8a:6c:c9:a6:c5:af:f1:a2:0a:5e:bc:20:17:0c:55:
e0:97:27:38:a6:2d:15:e2:af:9e:e4:92:3f:19:52:
7d:da:24:7b:57:de:e0:41:8b:f0:2f:07:eb:b5:a5:
c6:c9:ae:a4:6c:e8:7e:a6:a5:7c:f7:a6:13:c9:af:
8f:19:76:8c:85:e3:d6:32:9b:c7:b0:ae:c7:88:d3:
88:e4:cb:70:e4:4a:a1:e7:ad:f7:e5:d2:86:ba:43:
f8:9e:4a:65:dd:14:33:d7:74:85:9e:e5:01:24:77:
4d:21:24:9c:1e:6e:1d:d9:9c:ad:ad:38:ea:19:f2:
9a:97:06:85:81:25:b8:1c:fe:24:16:96:9a:85:f0:
06:0a:97:86:a2:4e:7f:ca:88:7f:ad:54:9b:71:b1:
d2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A9:76:08:82:A8:CE:F9:D2:AA:19:87:D9:C6:7D:C5:E9:AD:70:70
X509v3 Authority Key Identifier:
keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:a5:69:47:26:4c:3c:8f:42:f7:cb:fc:52:ce:05:5d:1e:78:
2e:e5:1c:de:c2:aa:d2:b6:17:74:7d:98:52:e8:98:ad:ea:3c:
ca:ef:fe:7e:46:ba:39:8c:fd:5e:0c:23:a4:56:84:18:e2:5d:
ba:80:56:a0:ec:f2:db:0c:d5:c2:81:7c:6c:3c:13:7d:6d:5d:
2e:1e:56:26:40:6b:10:c8:ad:c0:f6:3e:8f:26:0b:65:2e:ce:
f9:a9:0f:de:93:b1:51:0c:6d:09:af:f4:d2:0f:29:db:49:49:
64:04:73:e2:1e:5b:3e:6a:3b:d1:24:90:47:29:a3:7b:ea:05:
82:10:b1:73:fc:88:2d:aa:8d:56:e2:01:29:c9:94:81:ff:35:
dc:e9:46:c0:7a:7b:b0:78:2c:a1:e5:0f:81:f2:09:f7:f9:76:
f8:07:f2:71:26:75:cc:c2:ed:56:c6:ad:91:6c:f9:bc:e6:f5:
84:41:65:80:b9:15:62:d3:0f:b5:a4:bd:37:29:bd:be:1e:6f:
f5:ff:1e:26:9c:bf:10:92:31:95:c7:1b:9d:7f:d9:00:de:16:
fe:16:b0:cb:ef:6d:bb:d0:dc:d5:9e:18:23:3d:34:16:6f:78:
be:24:2b:e0:23:f9:00:fe:d2:e4:37:46:05:65:f4:e1:30:f7:
73:cc:f8:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 21:00:01 2025 by rpki-client