Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: z2PZojhPN/7wnvn8+j6WqkkLoD15O2RwF6scgvAGZLk=
Subject key identifier: EC:09:EC:90:FD:B8:FF:F3:43:18:3D:EC:81:18:7A:4B:4F:7B:27:47
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 01988B45E7B56997545AE11A622D670945FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 0276
Signing time: Fri 08 Aug 2025 20:01:11 +0000
Manifest this update: Fri 08 Aug 2025 20:01:11 +0000
Manifest next update: Sat 09 Aug 2025 20:01:11 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: sIN0AeMTYwl3Tt02YB0+/fO3Dpo2ttOPafwVaVI0heM=)
2: LL8JcAdqtBuww975zCJ3NT8wbIo.roa (hash: OazqFiciLO+01js5WnVLTxcyLBf+8JShIpJGoJGbyKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:45:e7:b5:69:97:54:5a:e1:1a:62:2d:67:09:45:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: Aug 8 20:01:11 2025 GMT
Not After : Aug 9 20:01:11 2025 GMT
Subject: CN=ec09ec90fdb8fff343183dec81187a4b4f7b2747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:37:83:67:f6:48:5e:c4:3e:b1:4b:0e:c7:e5:
91:ad:ed:0a:65:7e:ce:c9:ae:1a:a1:47:a0:5e:88:
b4:0a:40:05:cd:06:1b:21:d2:fc:65:f7:cd:2c:fa:
d3:3b:af:0d:b3:30:5d:ca:a8:50:48:e3:2b:5d:7d:
b8:d5:ab:5c:19:74:1d:31:c6:7e:1d:84:e9:8b:2e:
de:85:a9:af:af:02:d7:0a:65:91:e4:42:f8:56:54:
e6:b0:a2:68:69:bb:e0:9d:a9:3f:d6:00:2c:a9:50:
40:cf:94:25:0b:b5:ec:4b:5c:c2:af:54:ca:d0:b7:
1a:2f:5e:a9:51:f2:7b:e1:46:a5:5a:98:9e:11:27:
26:9a:85:67:46:4c:fa:5e:62:58:83:7a:72:c6:a6:
d2:c0:00:62:7a:35:34:da:59:8a:e2:b3:4b:4c:e5:
c4:a6:23:0e:61:74:9a:e3:b1:3f:64:0e:e7:a3:84:
8c:4e:e3:d8:a1:c9:a5:67:f7:69:06:ce:6d:6e:9c:
1a:dd:30:e3:49:74:9a:e2:16:8f:c5:e2:03:2d:0d:
6b:a3:9b:6d:8a:dd:bd:7c:11:9a:41:ba:25:d9:7d:
cd:67:41:7a:68:ae:de:ce:fb:fb:bb:d1:f5:1e:2d:
95:74:1b:23:9e:c1:0c:fe:96:d9:da:1c:de:9b:f9:
10:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:09:EC:90:FD:B8:FF:F3:43:18:3D:EC:81:18:7A:4B:4F:7B:27:47
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:ba:5a:c7:8e:f0:21:80:47:31:eb:e9:00:dc:6d:8d:0c:2d:
9a:02:e9:57:b2:2c:d9:ba:c4:9b:4c:64:bf:4d:fd:3b:1c:5a:
a9:1d:29:c7:47:bc:81:db:f9:1d:b4:70:46:33:be:aa:87:8c:
14:d5:9e:f5:cb:8b:9a:49:0d:ce:5e:48:29:e0:4a:28:11:86:
e9:8d:23:e4:1d:73:e2:02:d9:76:4e:49:bc:15:fc:16:12:30:
eb:e5:aa:6a:fb:52:48:cc:50:4d:d7:25:83:05:36:f3:0d:11:
50:03:13:79:b9:48:76:ab:4e:66:3f:23:b4:d7:06:dc:a9:7b:
7f:9d:15:ce:31:87:80:51:fe:af:08:14:f3:b7:30:86:a3:85:
30:69:93:e5:59:38:e8:5e:25:c8:1d:01:42:de:fe:b3:c6:98:
11:e9:87:c8:ed:81:5a:ae:51:d9:94:c7:9c:22:73:22:44:78:
ac:c6:37:91:b0:83:cd:c7:0c:a0:f9:e8:aa:c5:8a:97:f2:02:
6e:77:8f:5e:64:c6:e9:29:2d:e7:e1:ce:65:2e:bc:b9:c6:ce:
61:13:89:d0:7e:fa:53:8b:f5:02:49:c5:51:3d:c7:bd:b0:c7:
28:5a:fe:b5:6e:db:f8:d7:04:83:df:86:bf:fb:0f:69:c6:77:
7e:98:9c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:35:13 2025 by rpki-client