Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: Uj+Ws9Gz9BXPLVR5B+LZH4brzruG5pgnA0A6GNLlHQ0=
Subject key identifier: 89:29:FF:A8:FC:20:3A:F6:7D:A9:3C:6C:EF:55:27:D5:9F:8D:21:35
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 0198A0841B7E2E823D82A5D353A26D3EDF75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 162F
Signing time: Tue 12 Aug 2025 23:01:08 +0000
Manifest this update: Tue 12 Aug 2025 23:01:08 +0000
Manifest next update: Wed 13 Aug 2025 23:01:08 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: T+QEjSRaQwc/oz70iNdW/A4DowzEJV5TbRvt36Qug0Y=)
2: b7sNWlzHmaj36hpl7542OiFeLhk.roa (hash: r2LdfaqH2ThvketoRQBfUQ9ZRTad2+2P2sxQXJTCIiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:84:1b:7e:2e:82:3d:82:a5:d3:53:a2:6d:3e:df:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Aug 12 23:01:08 2025 GMT
Not After : Aug 13 23:01:08 2025 GMT
Subject: CN=8929ffa8fc203af67da93c6cef5527d59f8d2135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e7:1a:ec:3c:34:7d:21:8c:9a:07:86:8d:c9:
21:07:eb:58:8b:4d:24:8c:a9:85:b1:a1:b7:1f:cf:
90:61:ce:61:1b:04:50:90:0d:4f:24:e7:e1:c9:50:
ad:42:48:97:69:46:6e:12:51:f7:78:3c:7a:0d:cf:
c9:d1:d7:ca:33:97:e4:5f:d8:5c:1d:b4:6b:80:c5:
64:a0:77:a1:00:10:40:37:43:0c:e9:8f:ff:00:b4:
2e:b3:4a:15:a8:df:93:cb:a6:71:ff:de:46:07:6f:
4c:97:a1:ac:a9:d0:dc:f1:25:b5:76:3b:99:e1:90:
de:53:57:dd:39:a5:8c:ca:50:33:0c:2e:2e:99:26:
cf:fe:46:3c:01:94:9c:f7:07:93:dd:01:c5:1b:32:
8c:2a:97:31:29:27:67:db:47:12:f4:39:81:3d:38:
9e:8f:7b:cf:97:c4:ad:6f:f4:3a:3a:14:5a:fd:1a:
e8:0c:37:eb:f0:43:7c:26:55:69:33:76:66:88:10:
ec:c6:2a:66:25:56:1e:fe:d2:48:31:84:fb:2d:8f:
14:5f:d3:ba:77:d1:6c:d3:af:6f:58:76:9d:25:1e:
96:1b:49:cf:b6:38:49:c1:fc:90:6d:c2:10:0a:82:
93:84:40:5d:40:66:b9:a7:06:87:f7:73:cd:99:ea:
ec:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:29:FF:A8:FC:20:3A:F6:7D:A9:3C:6C:EF:55:27:D5:9F:8D:21:35
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:6f:09:49:d7:40:99:77:fb:04:5f:6b:c7:9b:f9:0f:5e:64:
b4:64:1b:5f:3b:87:a5:3c:a2:44:76:37:ec:e8:bc:a2:34:f9:
e0:7a:be:b2:be:51:8f:64:fd:02:dd:83:fd:93:af:9e:cd:a7:
bb:f7:85:a2:6d:cd:a2:4d:39:b8:8d:ad:42:2f:16:92:77:aa:
45:c0:27:62:ba:e3:79:d5:1a:91:2a:a8:49:e1:b4:32:6e:55:
35:70:18:23:4a:7b:3c:3c:bc:fe:33:4d:e5:6e:2f:02:a6:49:
ed:c1:16:63:80:ce:5d:d3:a6:94:73:d1:90:81:2b:d9:3b:f1:
93:d4:0d:c0:bb:c0:47:86:ec:ba:2a:5a:91:49:93:7c:f7:6d:
55:b5:41:6c:cc:27:25:af:bd:7b:ac:e3:f9:3c:66:78:69:e6:
b0:31:4e:2a:e4:66:93:a1:f9:5b:88:ee:04:8a:93:c3:a0:32:
90:a3:ab:4a:55:3b:41:93:ae:15:1c:3d:05:db:02:54:22:9b:
5c:d6:2a:eb:cd:b2:57:7d:51:69:f9:b0:92:3f:be:31:5d:b2:
07:cf:32:81:6a:7e:75:1e:f3:a7:4c:29:34:d2:b5:c1:6c:09:
c2:0f:95:e8:a0:9e:7c:bb:18:39:ea:de:4a:68:82:be:28:7c:
61:80:f9:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:43:06 2025 by rpki-client