
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier: EVZVhLXNKxcxwUBZK5iZz1La1KFZ8sp9fhkTHo+XVNg=
Subject key identifier: 72:66:E1:03:EB:50:87:1A:BE:15:3A:BC:F2:95:DC:4B:15:DB:0C:73
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial: 01987418AC0BAF46F7B1969362F887019B51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number: 0286
Signing time: Mon 04 Aug 2025 08:00:30 +0000
Manifest this update: Mon 04 Aug 2025 08:00:30 +0000
Manifest next update: Tue 05 Aug 2025 08:00:30 +0000
Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: UaxWFzdYK9EMJZE4klQcXmTZelV5j3RNQoQKy3mDSBI=)
2: _O0LKSVD2FWQH20B8h-W2BSyf7E.roa (hash: /osVaD1xwsZSvzrjM1Npx7gTyOHOWobbSsuEq9U9lZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 08:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:18:ac:0b:af:46:f7:b1:96:93:62:f8:87:01:9b:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d248185956e443b55b062200f964537bc10bc130
Validity
Not Before: Aug 4 08:00:30 2025 GMT
Not After : Aug 5 08:00:30 2025 GMT
Subject: CN=7266e103eb50871abe153abcf295dc4b15db0c73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:04:c8:48:78:a6:84:69:d8:db:2b:9a:5f:4a:
db:a8:50:c9:17:fd:2d:5e:e8:64:29:97:25:aa:bb:
5b:f9:54:86:11:87:4d:fa:4d:27:63:bd:49:3a:f6:
22:7e:6e:22:13:fc:ad:e6:07:a0:d2:e3:39:67:f4:
44:de:14:39:da:26:a1:5c:25:2e:da:99:a2:ba:88:
69:54:99:ba:64:e6:0a:bd:0c:8e:b3:9a:f0:ea:1c:
68:6f:36:9b:eb:04:5c:0e:23:45:1d:96:86:a8:39:
e3:65:e9:68:56:d1:65:12:53:48:fa:2b:9a:de:fc:
07:76:c7:8e:92:f1:79:f5:bc:da:a3:aa:b2:30:35:
f2:fa:3f:f9:f0:fa:17:21:15:7d:be:89:51:ec:d0:
35:ea:b3:d1:e2:81:ef:a6:80:55:50:1e:53:cc:45:
3a:4b:4a:91:31:b0:9e:8d:0b:b2:83:ac:93:25:ed:
d7:a3:ec:45:09:a6:08:01:57:0e:8b:6c:1e:87:96:
f1:ed:86:3d:7b:6a:eb:39:4e:10:d1:21:7d:22:27:
db:58:92:fd:d0:99:8f:dd:68:ff:f8:1d:2b:1c:a5:
72:9a:41:e4:bd:54:fc:ca:2e:6b:81:63:f3:d7:6e:
43:93:3e:ed:35:49:fc:d0:89:71:5b:76:6f:99:57:
54:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:66:E1:03:EB:50:87:1A:BE:15:3A:BC:F2:95:DC:4B:15:DB:0C:73
X509v3 Authority Key Identifier:
keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:ba:1d:7d:c7:1b:94:dc:b8:da:8e:05:d4:df:c5:7b:db:69:
47:37:25:0d:88:5d:96:4e:e8:88:4b:32:2f:39:23:72:d3:d5:
44:dd:05:39:f8:76:bc:c5:af:f4:db:df:0c:8b:20:40:6f:37:
19:09:e3:60:d7:d3:52:99:9d:1e:b3:2b:d0:37:92:b6:9b:6b:
c6:b0:a6:e1:2e:33:72:76:2e:a1:39:95:63:45:5e:ae:01:3b:
30:c5:ee:cc:a7:24:44:80:a3:b7:5f:54:72:79:f6:46:37:ef:
92:69:56:70:95:60:8a:17:ba:10:af:97:4f:f1:ba:74:6a:4e:
68:2e:74:79:b9:6b:ef:a6:32:5b:23:9a:c8:65:a5:00:5f:00:
bf:20:2f:0e:c7:de:99:47:fd:fe:95:cc:2d:b5:9e:68:4d:7e:
86:ae:78:a0:13:1c:a7:58:de:1b:03:02:70:00:64:91:35:5d:
27:67:d0:bc:8c:ad:e3:76:4d:c3:4c:f8:0d:2c:73:35:1c:87:
ed:54:46:d5:0c:68:78:60:fc:0d:31:41:44:23:b7:33:3b:5c:
0a:38:d5:66:8c:b8:c3:d3:96:5b:1c:f6:3a:0d:65:d7:8c:69:
81:0d:23:81:26:18:ec:2a:65:a3:3f:82:7c:7f:28:98:1d:b7:
f7:a4:91:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:08:26 2025 by rpki-client