Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
File: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft (raw, json)
Hash identifier: NIXbKy1hHNjsGpCtUSJlTeGLFHMN0hQinK+Hhy5oMao=
Subject key identifier: 9C:69:67:0C:2B:34:D3:8F:A6:2B:4B:DB:2C:56:BE:B8:3A:CE:4C:6B
Authority key identifier: D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
Certificate issuer: /CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Certificate serial: 0198880D7B010BF7FE1745F03CE440D1A525
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
Manifest number: 0ED3
Signing time: Fri 08 Aug 2025 05:00:41 +0000
Manifest this update: Fri 08 Aug 2025 05:00:41 +0000
Manifest next update: Sat 09 Aug 2025 05:00:41 +0000
Files and hashes: 1: 0E7XqwXvQw8zGg6cfEDvAxEUfw4.roa (hash: GEurlnwNp4FPEWbJDU+gHsQep+536ZgKzEj3iyCeYrM=)
2: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl (hash: Q7ngtBvYc8aFgbp+8EhkfqhOZtgHnYTsVSKLZucWezI=)
3: 5YRtqk6Jp7Zam_D7fc_X7XfH8s4.roa (hash: X5F/YiS9H2WE1ZFG9REO1WI3BKWNsouj5lZWL1J+hoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:88:0d:7b:01:0b:f7:fe:17:45:f0:3c:e4:40:d1:a5:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Validity
Not Before: Aug 8 05:00:41 2025 GMT
Not After : Aug 9 05:00:41 2025 GMT
Subject: CN=9c69670c2b34d38fa62b4bdb2c56beb83ace4c6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:10:2e:be:c1:03:c8:cb:75:5a:b5:55:14:7c:
87:94:8e:18:fa:66:3e:96:f3:4c:c8:7b:a2:c7:a8:
bd:44:bb:0a:c5:3c:58:b9:d8:82:79:20:54:1a:1b:
fa:06:32:65:d2:67:e9:6c:d9:33:2d:31:0b:df:9a:
54:05:18:aa:8e:c2:a7:7c:38:fe:df:9e:4a:58:85:
b3:1e:4d:55:6d:6c:89:b0:f6:0c:c0:68:59:0f:88:
a5:7e:42:9f:eb:38:10:44:45:37:bb:33:e2:86:9c:
ef:4d:08:c7:2f:43:b4:df:ca:c3:9d:31:ab:21:3a:
6c:cf:9f:4b:7e:87:97:e0:22:4d:46:53:b5:cc:b4:
0c:17:3c:d5:bc:73:b1:3e:fc:a6:6a:3a:08:c6:73:
ff:e9:d6:54:5f:3a:bd:5a:a2:b8:f8:5f:43:5a:6d:
34:a5:ed:d4:20:86:e7:80:bc:b3:2a:ed:57:6f:3b:
0b:a0:38:28:e6:6b:b1:6a:57:70:94:1b:ac:0d:4f:
d4:73:ba:ae:e0:67:0a:a3:30:44:d2:89:46:0a:13:
94:93:2a:0d:14:bd:40:ba:2e:fb:f0:f5:95:35:bc:
0b:dd:c7:a5:28:ae:50:e9:75:68:7c:1e:1a:c8:3a:
a2:33:45:76:c6:48:db:c5:f4:5d:52:03:fd:4a:96:
d4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:69:67:0C:2B:34:D3:8F:A6:2B:4B:DB:2C:56:BE:B8:3A:CE:4C:6B
X509v3 Authority Key Identifier:
keyid:D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:b8:a1:37:58:23:af:55:27:2c:ac:87:88:f8:04:d6:c6:f9:
f9:85:8b:6a:2d:6c:35:93:39:8f:72:97:86:2d:b7:de:ec:60:
81:8e:23:c2:7e:0b:72:34:f6:54:f4:17:03:d9:65:2e:a5:32:
7e:50:83:7f:7d:79:f5:10:f7:d1:21:e6:96:5d:6a:35:5c:4f:
58:97:43:cf:02:79:13:69:89:9a:1f:87:0e:02:50:8b:1a:a9:
4f:38:7a:3f:a0:52:fd:fa:1e:47:d6:40:5d:25:37:c3:54:55:
08:a7:2c:63:17:fc:75:60:be:86:e0:4e:dd:25:ab:02:47:2a:
98:d1:db:c4:a9:e1:61:bd:1e:01:70:9c:77:3d:97:a9:28:42:
0c:0a:3e:1a:92:a8:7e:f3:d2:36:16:2e:47:75:14:20:1b:0b:
1b:10:36:18:0a:0b:d3:6b:aa:59:4a:0f:52:b4:90:f4:82:29:
c5:5d:61:b9:64:d8:0e:90:d8:52:5f:20:86:8f:41:03:52:8f:
91:3f:19:88:73:2d:39:86:7b:fb:97:86:b5:02:94:c6:1c:d7:
66:2b:e8:52:b3:ed:b9:e6:c5:25:e4:80:6c:d8:f2:6a:7e:16:
54:ea:8a:9b:f0:77:41:44:23:6f:01:cb:b1:ec:37:9d:65:d6:
da:d8:b5:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 12:59:02 2025 by rpki-client