Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
File: 670ir7gN-togA9QOVG2v03_4af0.mft (raw, json)
Hash identifier: 5VnKoFp7kxhz+SyiaJmENZSuDZY/ll8uyaFpalFyHvg=
Subject key identifier: 89:9B:13:7B:3B:9F:C1:97:73:5F:C4:9F:84:DC:CA:7F:1A:37:F7:6D
Authority key identifier: EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
Certificate issuer: /CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Certificate serial: 01988656406BFAE0FD93AA7FD967AF4C3CFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
Manifest number: 0515
Signing time: Thu 07 Aug 2025 21:00:56 +0000
Manifest this update: Thu 07 Aug 2025 21:00:56 +0000
Manifest next update: Fri 08 Aug 2025 21:00:56 +0000
Files and hashes: 1: 670ir7gN-togA9QOVG2v03_4af0.crl (hash: L9RykDZIiFQIYm0aL5EQbWSllt91y7fsZRHi77+XMRU=)
2: Lg69_8_Hwhk8sLJu5EjPC6QyXmo.roa (hash: KXCYGeobuTRdhwIdNvFIRapr7Co2MUanxSVUEVx8L70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:86:56:40:6b:fa:e0:fd:93:aa:7f:d9:67:af:4c:3c:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Validity
Not Before: Aug 7 21:00:56 2025 GMT
Not After : Aug 8 21:00:56 2025 GMT
Subject: CN=899b137b3b9fc197735fc49f84dcca7f1a37f76d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:0d:61:7b:ec:8c:e3:b2:e8:b9:f0:a1:c9:4d:
24:6a:e6:7f:ad:2d:e6:28:5a:e1:61:19:07:8c:ae:
ea:2b:16:62:f8:0e:72:4a:5d:23:42:96:10:56:71:
84:66:a0:ea:9a:4f:d4:64:8b:b2:1a:9a:de:49:fa:
31:91:72:3a:58:ba:c8:16:5b:1e:91:93:6e:bb:8f:
3d:95:9f:57:93:8c:b7:a6:b6:f8:da:b5:b6:6d:4a:
c6:74:75:20:2e:dc:6e:5e:3e:50:16:9a:61:1d:8a:
75:f8:35:7c:29:ce:64:0c:7a:99:ab:b8:38:c3:09:
ee:be:c0:fd:52:f5:a6:cb:0d:7b:48:7d:43:ef:df:
49:b3:56:e2:6f:ba:8a:dd:8c:b0:9c:bf:b8:7a:04:
a6:e2:15:21:a1:69:cf:55:c3:29:f0:4f:39:8d:20:
80:cf:6b:be:2e:b6:66:cf:23:f9:e2:4a:7a:6d:5b:
95:61:9a:40:6f:ce:fd:5e:39:fb:4b:3f:95:b1:3b:
60:29:e5:0e:52:47:9a:ff:c4:2c:77:cd:98:44:f7:
3a:b7:9b:11:80:bc:e4:97:3e:ba:ba:07:b0:16:f5:
f4:7d:02:e5:f4:72:b7:54:1e:24:0d:94:1c:da:2d:
b2:ad:45:aa:fd:19:cd:f3:d7:18:de:11:c5:8f:00:
b1:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:9B:13:7B:3B:9F:C1:97:73:5F:C4:9F:84:DC:CA:7F:1A:37:F7:6D
X509v3 Authority Key Identifier:
keyid:EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:3a:d3:93:4b:74:ab:29:7c:42:3b:95:31:02:ba:93:62:fb:
d1:62:b8:a1:94:bb:56:5b:16:6b:e9:d8:6d:5a:ef:05:60:f5:
b2:89:94:43:f9:3c:0a:01:56:c9:55:cd:37:63:a3:f6:6d:1b:
b3:f4:a8:2d:84:88:03:2a:69:4b:be:a3:80:9a:3f:fd:20:1f:
91:6a:b9:9c:2e:91:8b:3f:fc:f9:05:bc:54:a0:eb:dd:ad:e2:
9e:7b:16:f2:dd:7e:e7:f2:c3:51:b4:ed:39:bc:e4:af:c9:bf:
89:b1:f7:ab:8a:eb:5b:97:7a:85:38:ac:70:56:e6:b2:82:06:
23:ba:f7:ff:ba:17:ec:a2:32:8d:dc:04:0d:dc:b0:1a:02:cd:
9f:94:ff:91:3e:11:2f:2a:bf:db:dd:ca:90:08:22:b4:6d:35:
4d:50:42:59:20:d9:a3:f4:bf:c7:3d:f0:9a:ca:df:c0:a1:d0:
35:6d:26:60:68:1b:a6:48:98:40:b5:eb:f4:6f:01:22:52:7a:
9a:f9:7f:9f:b4:3e:c9:4f:38:d5:77:66:03:84:30:1f:32:1e:
78:68:4f:12:4c:b5:98:ea:ef:9b:be:c6:e5:b5:e0:c1:0e:86:
b3:5e:f9:89:5c:08:42:bb:21:20:c1:70:4a:52:24:30:de:bd:
1f:b2:5e:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:39:02 2025 by rpki-client