Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
File: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft (raw, json)
Hash identifier: XIegGjxMSFBsZ1TE897s4tnwBCnl6dsluxIVLWkUD/M=
Subject key identifier: 29:DC:D8:AB:9E:49:9A:D2:79:B5:97:2F:76:3D:FB:C3:C0:C4:04:07
Authority key identifier: D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
Certificate issuer: /CN=d217978586bff3a6777d55a9a9635841516d43b4
Certificate serial: 01988A32C59F3E3821B21CDD2403DF7B4D5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
Manifest number: 0BB6
Signing time: Fri 08 Aug 2025 15:00:39 +0000
Manifest this update: Fri 08 Aug 2025 15:00:39 +0000
Manifest next update: Sat 09 Aug 2025 15:00:39 +0000
Files and hashes: 1: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl (hash: puyD7htK90PfrziywkVprarMp7DxvsMFdO44UcadtqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 15:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:32:c5:9f:3e:38:21:b2:1c:dd:24:03:df:7b:4d:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217978586bff3a6777d55a9a9635841516d43b4
Validity
Not Before: Aug 8 15:00:39 2025 GMT
Not After : Aug 9 15:00:39 2025 GMT
Subject: CN=29dcd8ab9e499ad279b5972f763dfbc3c0c40407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:67:3b:51:eb:ce:cf:e9:18:0e:99:c9:73:b7:
c8:25:9e:a9:1c:e9:05:98:6e:62:8c:b3:d1:95:60:
a8:9e:19:ac:dd:58:e6:92:76:e9:0d:fc:33:b1:9b:
6b:d2:14:11:f7:bd:df:79:38:85:c7:23:8f:b1:4b:
ef:b8:6a:98:82:48:78:70:62:c8:51:57:5f:51:80:
c7:8b:06:2a:d3:0e:93:8e:94:e3:4f:f0:fe:43:39:
c1:7d:19:e4:d7:46:ce:de:31:d5:38:df:4b:23:08:
d0:96:39:59:1c:7e:69:1e:52:03:ed:92:d4:24:6a:
8c:b8:30:0c:99:11:9a:fd:95:33:7f:b5:19:a1:5a:
b3:80:ab:9c:59:80:7e:e6:8f:00:db:9f:38:78:81:
0b:33:41:b6:82:ef:7f:85:b6:cb:32:32:5e:47:8b:
83:44:5a:4a:e6:d6:61:34:af:c0:a6:c5:95:4f:be:
f1:91:50:ec:c9:0c:d1:5f:73:da:ef:da:01:fb:e6:
ea:59:31:af:c1:cc:07:e9:2d:c8:5b:9e:a4:da:df:
36:02:5b:46:bb:4a:ae:25:0b:64:03:88:1a:5d:20:
66:07:64:b5:f6:3d:21:a7:df:18:3b:8f:33:5e:99:
b3:8b:ce:81:f6:ed:4c:1a:2e:da:75:68:7b:10:22:
fe:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DC:D8:AB:9E:49:9A:D2:79:B5:97:2F:76:3D:FB:C3:C0:C4:04:07
X509v3 Authority Key Identifier:
keyid:D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:ce:9d:02:a3:1d:b1:35:e7:14:59:5f:3d:6d:74:0d:51:22:
44:c8:b5:4f:d3:92:dc:3b:50:aa:2f:d4:5a:50:d8:56:28:a5:
a1:3b:05:28:10:e6:03:5a:0c:35:b2:62:e5:c2:16:37:f7:38:
f9:c0:ef:de:1d:f6:c6:78:e8:e5:7b:48:f0:fc:a7:e6:38:4e:
e5:b8:bc:df:b8:22:23:6c:45:f3:16:53:92:4e:b7:1b:48:3a:
a5:f2:18:b4:8a:a1:61:3c:61:51:91:c4:c7:90:b8:b0:e9:55:
63:02:05:6c:89:29:84:c5:3a:ee:e4:ef:28:f8:ae:fa:9b:00:
17:e4:be:a4:24:28:cc:a3:c5:c5:4c:63:3e:26:78:c4:62:6d:
49:69:13:54:ad:84:66:78:16:22:d9:3e:ec:4c:66:a3:4b:52:
b0:62:f8:d6:d3:16:b2:75:ad:b0:18:fe:6c:ef:0f:0b:11:dc:
89:89:ed:1d:96:79:74:76:f1:06:b6:89:d4:d8:58:8b:0f:14:
d3:ba:75:43:ed:ae:02:81:0c:5e:70:94:6a:13:4c:1e:29:ec:
4b:3d:03:71:7d:23:8f:8c:c2:2e:38:59:b1:04:cf:69:d8:35:
91:6d:24:80:6c:8f:b8:8b:03:60:68:47:ea:57:d0:9e:9b:3a:
a5:ca:b6:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:18:29 2025 by rpki-client