Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft
File: 0nXXqLrAR39VCd_xG5GVymDfh9o.mft (raw, json)
Hash identifier: 3A3ulJlp7rOh5NPUp9nfb2T4t+XcdskiXPwsssudIMM=
Subject key identifier: F7:75:04:A4:4A:CD:4B:81:66:09:D3:C6:24:9D:22:30:69:3D:89:CF
Authority key identifier: D2:75:D7:A8:BA:C0:47:7F:55:09:DF:F1:1B:91:95:CA:60:DF:87:DA
Certificate issuer: /CN=d275d7a8bac0477f5509dff11b9195ca60df87da
Certificate serial: 01988A69C6770306A340E1271F00898989D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft
Manifest number: 1625
Signing time: Fri 08 Aug 2025 16:00:44 +0000
Manifest this update: Fri 08 Aug 2025 16:00:44 +0000
Manifest next update: Sat 09 Aug 2025 16:00:44 +0000
Files and hashes: 1: 0nXXqLrAR39VCd_xG5GVymDfh9o.crl (hash: vJmGvIunJMEqAXX06eI27+7/MXmV7kaDuhuWgA9U3Zs=)
2: HMJLEkPGlr7x44aeMyDl-iD3-H0.roa (hash: L+qMMZpme30javZoQJKYZdKfiPeTzWKpuVRpIrhWgDs=)
3: Ti73dcIrlh5auWtScVzVwqOqQSk.roa (hash: bD54N27Ykt/wu2s+Dy6sKxGGg/cuSXB3DUKzM/XaSZM=)
4: YMTxPOuM97EplT8sh2WGlcFfkOw.roa (hash: D8L0sd2jitS16w93ripM0wnGDM02PZl2ly5UPGD5e0U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 16:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:69:c6:77:03:06:a3:40:e1:27:1f:00:89:89:89:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d275d7a8bac0477f5509dff11b9195ca60df87da
Validity
Not Before: Aug 8 16:00:44 2025 GMT
Not After : Aug 9 16:00:44 2025 GMT
Subject: CN=f77504a44acd4b816609d3c6249d2230693d89cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:04:4a:23:b6:36:51:6e:ae:dd:a9:58:50:2c:
c0:4e:59:07:7f:d9:df:93:b6:2a:74:90:b7:0b:34:
12:65:d7:44:e7:3c:80:e7:22:00:9e:99:56:a0:0a:
92:30:8d:80:5e:25:5b:01:b9:25:ef:ab:c2:1a:f4:
86:73:e6:73:f3:c7:d6:09:ae:ee:23:5a:1c:c3:ab:
46:21:b4:15:8e:4d:b4:c5:29:36:a9:29:ba:ee:5d:
d7:2c:0b:c8:e6:90:aa:72:46:fe:95:98:c2:d1:56:
6b:13:46:29:bd:1f:57:1f:f6:f3:ff:b1:60:cd:b8:
44:35:aa:48:48:47:01:21:b5:bf:84:24:87:b9:df:
29:14:94:39:ea:e0:2e:1f:a2:59:7f:c9:02:9c:ca:
a5:ed:80:4b:33:db:af:f2:97:64:c6:71:43:ff:b8:
12:78:47:0b:77:35:f5:14:fe:81:04:9f:90:0a:7d:
ad:f8:68:5e:7e:5d:d7:e5:e2:fc:0f:14:ca:75:30:
9d:a4:a5:03:56:2f:12:a2:71:9f:42:cb:02:7c:e8:
99:63:50:51:de:f2:24:b1:e2:91:eb:4f:25:ea:e7:
10:73:86:49:b3:93:1c:f8:ce:4f:f3:07:94:cb:2c:
0c:6c:50:a6:7b:3c:e2:6f:91:d8:0b:82:75:d8:50:
39:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:75:04:A4:4A:CD:4B:81:66:09:D3:C6:24:9D:22:30:69:3D:89:CF
X509v3 Authority Key Identifier:
keyid:D2:75:D7:A8:BA:C0:47:7F:55:09:DF:F1:1B:91:95:CA:60:DF:87:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:39:09:1c:ae:7c:da:27:01:45:06:06:ca:d5:13:8d:14:45:
36:ce:25:11:c8:d9:78:b8:34:1d:9c:20:14:b1:81:a5:0f:2e:
4a:c8:21:c7:bb:a7:34:89:de:97:cd:1b:3e:b9:61:47:95:0a:
9a:c1:9c:b6:a1:14:87:3f:ee:e6:b9:9c:ac:cc:07:1f:aa:30:
e5:f5:dc:a8:96:1f:ba:d3:a4:bd:9c:a3:ae:62:4e:d5:a3:16:
ce:e2:a9:3b:c1:f9:66:59:93:73:8f:7d:cf:56:8a:1b:68:7c:
38:1b:e7:ab:00:1f:c8:d2:40:77:28:47:4e:48:19:4b:49:bf:
ab:f6:ba:ef:1f:a3:c6:0a:94:f2:7d:0d:1c:96:9c:98:cc:5f:
08:ed:c3:95:75:aa:72:1d:61:d4:e7:47:42:ea:79:e7:6c:da:
ee:54:36:f9:ad:3d:cf:e0:08:31:aa:df:5c:e5:dc:8b:e6:e7:
56:88:5a:35:69:f7:80:e3:96:55:a9:b8:05:27:61:9e:54:7f:
cc:9b:c5:b3:fb:75:8d:23:58:59:f2:26:b7:61:5c:e4:56:ea:
76:e9:9e:9c:32:5e:31:62:ed:06:34:b8:14:13:fd:c9:e6:68:
5b:b8:80:bf:9f:e0:84:bb:4a:eb:eb:10:d8:1c:d2:35:0f:b4:
7d:4e:a4:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:17:11 2025 by rpki-client