Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
File: pX1M_mD4owpND_lLlOut_IjJrBE.mft (raw, json)
Hash identifier: BT1daqLxwUuLmfavGjjlmdIHpBWBArFw9ShWQ2Gqcx4=
Subject key identifier: 8A:7C:59:41:DD:A9:A5:05:06:8D:C7:AB:8F:B9:93:00:08:78:58:71
Authority key identifier: A5:7D:4C:FE:60:F8:A3:0A:4D:0F:F9:4B:94:EB:AD:FC:88:C9:AC:11
Certificate issuer: /CN=a57d4cfe60f8a30a4d0ff94b94ebadfc88c9ac11
Certificate serial: 01987373FEB4E46A4DE1B5E06BF2D245334C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
Manifest number: 0CE7
Signing time: Mon 04 Aug 2025 05:00:38 +0000
Manifest this update: Mon 04 Aug 2025 05:00:38 +0000
Manifest next update: Tue 05 Aug 2025 05:00:38 +0000
Files and hashes: 1: c2KmzgC2E8wnyMl3ET7bbXtsl28.roa (hash: iCu/CgeKq6j6xvBOhyPWL0bUM1p4HmortGMzXWFLmpc=)
2: pX1M_mD4owpND_lLlOut_IjJrBE.crl (hash: hcgMsvp+2VVhez/s+5ZHek99ulJTKpKL+O36D5DITdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 05:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:73:fe:b4:e4:6a:4d:e1:b5:e0:6b:f2:d2:45:33:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a57d4cfe60f8a30a4d0ff94b94ebadfc88c9ac11
Validity
Not Before: Aug 4 05:00:38 2025 GMT
Not After : Aug 5 05:00:38 2025 GMT
Subject: CN=8a7c5941dda9a505068dc7ab8fb9930008785871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0c:8c:e6:91:3e:20:e7:e6:06:c4:e5:b3:e0:
b4:c3:f8:88:af:af:a5:30:14:4a:8a:4c:42:37:a2:
0e:23:80:eb:2c:d0:cc:44:4a:ae:b8:d1:62:a2:d7:
7a:e6:05:87:f2:2d:b7:53:1c:4c:cd:ff:b7:d9:40:
82:98:02:de:d1:1b:e5:53:01:58:5d:06:7e:b9:84:
fc:ad:64:a8:90:51:d2:3d:8b:50:63:28:86:62:74:
25:75:ae:e9:7f:98:89:c6:d5:54:91:41:05:94:94:
20:a1:3b:11:53:e7:10:78:cc:7d:d2:af:3f:97:51:
75:2f:6c:b3:6f:ee:b8:91:b9:f9:70:27:dd:08:7a:
e3:a1:b7:35:d8:af:d8:2d:9f:0f:f4:3f:f2:fe:b6:
9c:f4:f1:ce:e5:da:bb:8b:ad:a5:eb:15:57:04:75:
2d:0e:4c:c9:ec:b9:82:37:70:37:89:8d:9c:46:94:
ce:4b:9d:05:40:e7:69:e1:da:33:c2:cf:d5:3c:ae:
d8:f2:9b:00:de:7d:74:f1:03:08:f0:c8:15:66:28:
0d:d7:8a:69:28:32:e6:34:ca:c8:e1:2d:49:38:2f:
3a:d3:7f:c7:87:92:98:33:58:f4:6f:60:5a:1b:1b:
7e:cb:d6:f0:e6:a9:35:08:36:c3:87:bf:ea:fb:dc:
e7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:7C:59:41:DD:A9:A5:05:06:8D:C7:AB:8F:B9:93:00:08:78:58:71
X509v3 Authority Key Identifier:
keyid:A5:7D:4C:FE:60:F8:A3:0A:4D:0F:F9:4B:94:EB:AD:FC:88:C9:AC:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:9e:bf:19:d9:52:61:27:27:ba:48:d4:f9:92:23:e7:92:60:
a7:82:26:d0:79:a6:42:25:02:03:b1:d7:80:fd:74:dc:db:e4:
9e:6f:09:c5:33:64:59:de:91:a7:77:d3:a9:54:c3:30:88:ee:
1c:0c:e5:bc:70:88:b2:a6:75:7f:70:e6:dc:65:a1:71:5a:3b:
08:ff:6a:be:56:0f:22:7e:6b:84:6b:0a:9d:b4:62:0b:44:d3:
27:40:73:54:07:91:10:45:06:5a:1e:60:18:2e:e1:85:c5:93:
a2:37:0f:d6:ad:a4:45:3d:ad:56:43:c6:42:d8:a2:44:4e:ac:
e8:bf:3b:81:1f:f2:d3:50:ba:a4:51:d3:4b:61:5e:53:34:c6:
09:e4:a7:29:fe:00:e9:b1:b0:e4:92:13:48:f7:79:3e:36:e1:
5e:b0:10:ef:b5:cb:86:a9:01:8d:92:c0:89:ce:98:04:a9:79:
c7:f1:df:a9:7f:cb:36:d0:74:1e:37:86:7f:80:10:a0:ec:d1:
73:81:b2:4d:5d:09:1a:5a:da:f4:74:b3:7c:36:fe:ca:24:7e:
85:3b:15:e8:aa:19:d5:fb:e2:2c:5e:f1:e2:f2:d7:12:89:76:
47:f1:ae:aa:ea:2b:d3:60:48:7d:33:90:64:9c:43:e2:e2:a1:
4d:6f:08:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:22:41 2025 by rpki-client