Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json)
Hash identifier: KGbzQpdA4/5Q+SCY8A85boXXvztbpNOcmLFH9iPOARE=
Subject key identifier: BF:6A:4E:39:50:01:C8:C5:50:94:17:E1:26:7C:B5:C7:87:42:E4:58
Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Certificate serial: 019896372445EC880E7056D57C7E2E1751D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
Manifest number: 1627
Signing time: Sun 10 Aug 2025 23:00:52 +0000
Manifest this update: Sun 10 Aug 2025 23:00:52 +0000
Manifest next update: Mon 11 Aug 2025 23:00:52 +0000
Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: 52VmbB6isPp+MR87GvCK1uQpxy4xyFgqSHZz77QNs6E=)
2: uFIkyOKWSzQfZzP96vWM093yaBY.roa (hash: TWsqJU2I8/yV3h8FtJmMbNc3AlR1EJP1BU5hPExE0mk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 23:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:37:24:45:ec:88:0e:70:56:d5:7c:7e:2e:17:51:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Validity
Not Before: Aug 10 23:00:52 2025 GMT
Not After : Aug 11 23:00:52 2025 GMT
Subject: CN=bf6a4e395001c8c5509417e1267cb5c78742e458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:98:1f:ca:ca:f1:d5:3a:64:8a:57:04:38:07:
47:58:93:8d:35:f9:d9:a3:59:9c:52:bb:cb:1c:87:
64:f8:6f:64:dc:9a:1c:d3:35:f2:dd:f5:12:d6:5f:
a2:fc:df:9e:b0:cc:8b:7b:4a:6c:01:09:5c:4c:2d:
52:21:6f:67:79:3e:78:2c:7f:f1:12:cd:b5:aa:5f:
6c:a6:ed:25:e8:65:4d:f8:d0:bb:48:41:46:83:26:
34:5c:b7:3e:bb:56:55:f9:be:13:da:c1:f4:b4:43:
a9:4b:be:39:59:a2:cb:3d:7a:f2:47:ae:bc:2c:d5:
e0:c2:af:cc:de:14:d3:93:b1:d5:45:fd:b7:5c:ec:
b8:00:64:c7:04:bd:cc:47:e9:d9:5b:85:68:71:2b:
47:be:a2:09:76:7b:4d:87:cb:48:2e:d7:8c:93:51:
3f:a0:ee:65:9f:6d:c5:7c:ea:f1:1c:ac:86:e5:95:
f5:cb:e2:5f:ff:0b:f4:2e:cd:01:5c:42:be:7a:4c:
f0:d3:80:83:a7:04:c8:95:67:73:4e:18:7c:84:36:
ce:5f:dc:8d:c4:ce:e2:f9:7f:41:59:a4:1f:3c:64:
8e:80:8f:aa:bf:da:ca:1b:a7:fd:59:8b:d9:1e:95:
d7:f5:8c:a5:7e:5d:1e:3e:57:5c:8b:34:bd:4c:e9:
fa:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:6A:4E:39:50:01:C8:C5:50:94:17:E1:26:7C:B5:C7:87:42:E4:58
X509v3 Authority Key Identifier:
keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:bc:9f:22:0b:2f:35:87:ae:ba:0c:65:bd:ac:07:ce:3b:54:
dd:3b:dc:14:49:c5:cd:56:52:e4:9e:14:1d:46:8b:0d:bb:30:
db:25:27:75:86:dc:d5:88:4e:43:58:13:9b:7c:9f:02:80:be:
97:73:01:b9:bc:64:0c:58:75:bd:cf:05:35:df:65:bd:6e:e4:
7e:b9:6a:a5:ae:50:d5:5e:ee:17:81:e4:1b:4e:2e:ef:10:87:
4c:61:ec:59:30:8e:94:2c:28:4b:9d:a9:3f:35:47:f5:f2:69:
1f:5e:5e:9f:ee:ad:a2:b1:00:3c:47:f3:38:a2:61:37:ab:fa:
5b:ca:b3:0e:94:49:bb:cf:30:9e:ba:da:7d:23:60:4b:9d:9d:
a5:a5:b9:3c:b5:2e:67:45:13:30:d3:05:9c:2b:c9:e5:9e:6b:
fc:f4:ae:59:6e:8c:41:cf:49:6b:ec:d7:78:b8:a1:09:77:9a:
23:08:e1:a8:d6:c1:29:fb:37:d7:0a:7a:44:ad:a0:7d:e4:ed:
b4:c5:6c:a5:24:c0:ea:12:d0:05:16:f2:f7:d0:64:95:7e:c3:
b8:cc:49:7e:7f:82:ea:d7:86:3c:13:e5:31:66:83:fb:7a:b3:
fe:de:9b:44:99:da:25:76:6d:4c:16:f1:c4:0b:5b:7d:0c:61:
b9:de:97:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 05:52:17 2025 by rpki-client