Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
File: d9LZKEIxBOXDSA4htKPtFJiyon4.mft (raw, json)
Hash identifier: iT2ow/AoIwslb1mEpa0YShrDK7zUgnuSfJw1Gv3xLcQ=
Subject key identifier: E5:19:3E:09:84:80:43:E5:6B:AF:75:18:D8:66:E0:1D:79:6C:32:7E
Authority key identifier: 77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
Certificate issuer: /CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Certificate serial: 01988CFDCFC956DA155EFAAB0AAF7E990B81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
Manifest number: 0B9C
Signing time: Sat 09 Aug 2025 04:01:40 +0000
Manifest this update: Sat 09 Aug 2025 04:01:40 +0000
Manifest next update: Sun 10 Aug 2025 04:01:40 +0000
Files and hashes: 1: HX3f5FZnDXBVPEnE5bxp-46XcDI.roa (hash: Cn4L/fOgVlSahDb0v8tdmodjivbISS4FJEJArlg0b+Y=)
2: d9LZKEIxBOXDSA4htKPtFJiyon4.crl (hash: +2+H+ws2gCw5mMeRt40PlP4sYshf3JFlpSw0Z7RZVZk=)
3: jKFJgU1IkNXTMlJ4fb3SLPhpIEs.roa (hash: gVNSWZlrE4CqYnhrjWkiPYyY6GBkTGDHd/hL4ezDiUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 04:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:fd:cf:c9:56:da:15:5e:fa:ab:0a:af:7e:99:0b:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Validity
Not Before: Aug 9 04:01:40 2025 GMT
Not After : Aug 10 04:01:40 2025 GMT
Subject: CN=e5193e09848043e56baf7518d866e01d796c327e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3e:5f:8e:c1:58:91:b1:dd:b6:21:21:e2:7d:
97:f8:a3:f1:f7:60:f2:78:96:df:5f:48:ca:c5:23:
78:54:63:e0:17:9c:89:68:f7:4e:3c:29:48:9d:d6:
61:72:ba:2c:c6:cb:46:2a:8e:4f:28:a9:db:7e:17:
4d:67:9e:8e:06:ec:65:57:f1:eb:de:93:cb:2e:80:
35:71:93:a5:f1:90:4a:28:30:4a:64:aa:f2:83:80:
ee:4b:05:ac:1f:77:49:fe:cf:93:1a:45:a2:ac:33:
0f:6e:47:73:8d:4f:16:48:6c:1f:4a:99:10:93:5a:
41:ec:0b:69:19:7c:21:33:6d:13:da:52:4f:2b:e0:
75:c9:23:79:a3:86:a6:a7:1a:b0:ea:a1:b7:cf:66:
e3:43:d5:cc:d3:8f:c9:ff:1f:5b:27:b3:00:f3:f1:
3c:07:01:72:a7:1d:b7:f8:a2:00:1e:0b:1e:92:1b:
bd:e2:a1:60:23:a4:e5:92:68:bc:65:8a:78:94:6a:
cf:b2:eb:ae:24:6e:9b:49:98:70:af:64:80:2e:59:
3f:2e:d5:42:5a:eb:1f:fc:ce:58:75:4a:25:14:3e:
aa:b8:3b:6c:e9:d0:82:e3:6a:38:a3:39:ce:a3:22:
f6:2e:da:f1:b5:ac:ec:c3:e6:6b:81:e1:c7:b3:cf:
0a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:19:3E:09:84:80:43:E5:6B:AF:75:18:D8:66:E0:1D:79:6C:32:7E
X509v3 Authority Key Identifier:
keyid:77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:7b:03:8d:7a:9b:19:7f:b0:cb:cd:84:b1:1c:c9:ad:40:cb:
54:02:14:af:f0:12:4f:28:f9:13:6c:9e:8f:67:2f:88:2c:65:
2b:54:9a:ce:fb:4e:40:5c:87:21:01:00:80:37:2a:f5:d3:4d:
53:bb:d6:0a:8f:84:6e:09:6b:57:c1:0f:3f:4f:43:0e:34:5f:
cd:e6:98:62:3e:60:22:97:fd:81:50:77:22:e1:9d:74:06:a2:
8a:bc:4b:da:1c:42:04:a9:4b:ff:e9:e2:c9:8b:d3:7c:f9:67:
c0:4c:79:93:86:5d:bc:1d:22:a9:37:0e:d0:1a:10:49:d0:d9:
b5:af:1b:a3:bf:41:06:9a:29:b3:04:05:6d:24:49:16:b3:a2:
8d:26:b0:e5:09:70:35:21:ad:e2:31:55:0c:6d:8b:29:12:1e:
f7:d2:c4:7a:fb:d1:0e:94:d8:4d:02:31:9d:18:3d:7f:4a:4d:
4e:d5:44:7c:be:96:40:66:d7:3d:7a:36:35:f2:11:c1:b6:8a:
4c:bc:cf:91:e3:1d:05:2f:ab:bb:73:e2:01:2c:ca:8a:13:e0:
fe:14:db:4d:86:10:1b:d0:e3:7d:2f:c9:96:37:2c:cb:29:e7:
ce:13:99:be:d5:7b:4f:a2:25:1d:f2:d3:58:3b:15:d0:90:f6:
37:0f:50:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:54:04 2025 by rpki-client