Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
File: _ORf1v09kyaEwMW8J_T6YVoQkOA.mft (raw, json)
Hash identifier: wmInJld7ZHnznJgzy3bRRpf10Djk8Mp2eKwpxiVWQCA=
Subject key identifier: 7E:72:E1:1B:15:6D:BE:8A:C5:93:E7:7E:B9:07:00:30:56:E2:0B:1E
Authority key identifier: FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
Certificate issuer: /CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Certificate serial: 01987E658B8B72D17BF407B1A0FAE24C1259
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
Manifest number: 0CA0
Signing time: Wed 06 Aug 2025 08:00:40 +0000
Manifest this update: Wed 06 Aug 2025 08:00:40 +0000
Manifest next update: Thu 07 Aug 2025 08:00:40 +0000
Files and hashes: 1: 0q3J-c3dMCcb0fEi4kT4_OFKaDo.roa (hash: GFF2i9DOD9iNc83o9PQkrJQokdzx6TTVi4lrSIyhIgE=)
2: _ORf1v09kyaEwMW8J_T6YVoQkOA.crl (hash: RPPaTgYENJPZ22xj9/73MgaDenFUh5wExPxG0jPAwnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:65:8b:8b:72:d1:7b:f4:07:b1:a0:fa:e2:4c:12:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Validity
Not Before: Aug 6 08:00:40 2025 GMT
Not After : Aug 7 08:00:40 2025 GMT
Subject: CN=7e72e11b156dbe8ac593e77eb907003056e20b1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:54:04:96:9e:14:92:0e:a4:8e:16:72:6c:f9:
4c:fe:1d:1b:f9:d1:c8:c2:3b:3c:0d:a3:18:e8:f2:
e2:27:01:40:ef:f2:63:59:4d:c5:6e:ad:26:85:3f:
3a:21:25:d9:ad:65:c4:d7:a4:e7:09:a5:10:12:f2:
91:aa:4a:c7:6c:b0:44:4f:14:20:36:d9:40:b9:25:
ff:02:50:51:10:ef:5e:b7:fc:d4:cf:3b:22:58:cb:
2f:ac:ad:0a:d2:93:04:5f:ec:fe:10:59:2f:25:07:
85:ac:12:63:c9:d1:f7:29:e6:a8:5d:3a:6d:71:a6:
04:13:6d:2d:76:ba:cb:ec:f2:fc:3d:30:10:e0:15:
01:87:b1:26:dc:45:0e:af:fb:88:5b:68:56:b0:30:
eb:f1:3a:0f:67:bb:87:87:e6:17:76:95:6f:d1:8a:
da:44:e6:75:a7:1e:db:59:7b:44:ab:2d:3e:be:ca:
32:69:89:6d:31:49:2c:ac:db:ad:21:79:64:d0:0c:
ba:6e:38:d1:ae:62:3d:bb:bd:58:ac:ef:92:a1:be:
1e:32:56:b0:86:bb:c7:38:31:40:f3:7a:60:18:65:
67:7e:cf:dd:46:74:7d:b3:11:8b:1c:ad:98:51:eb:
7e:b8:3d:6e:64:bb:81:0f:78:8e:ad:1d:89:8a:96:
f7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:72:E1:1B:15:6D:BE:8A:C5:93:E7:7E:B9:07:00:30:56:E2:0B:1E
X509v3 Authority Key Identifier:
keyid:FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:62:11:34:63:34:19:62:c3:c1:2b:b9:f7:d2:a9:27:55:8f:
fa:10:ae:90:eb:df:0c:fc:b2:a5:b6:08:d5:31:77:e7:ce:c5:
f3:87:66:dd:0e:a2:93:b6:ba:be:c1:ee:17:98:cb:b4:21:60:
1b:cf:d0:d0:e7:06:93:27:34:1a:42:dd:d6:b0:2a:e1:50:ea:
01:0e:a3:f0:1a:e9:71:54:64:33:d7:26:88:14:e4:f1:4a:b8:
89:e8:f1:1c:f2:e3:db:f0:2f:8b:f9:56:4d:f7:d4:a8:53:8f:
ae:81:99:a7:61:67:d3:10:28:fa:8a:fc:05:1a:91:77:91:24:
81:23:a1:88:96:dd:1d:20:c5:5b:dd:8b:b0:e2:f4:4d:6d:f8:
8d:f3:3b:3d:6c:22:2a:99:cb:f2:03:4b:69:e9:be:76:57:dd:
2e:d1:53:48:2a:28:df:3c:30:6e:5b:34:fc:42:19:f8:69:3a:
8d:a2:0d:08:6f:db:73:f1:33:a2:f3:ff:99:47:c3:85:9c:b7:
de:d8:e4:f1:b1:f6:1f:b8:e9:9f:eb:89:74:9c:7b:55:da:c9:
66:c0:6a:50:1a:e3:58:ab:96:72:ba:c7:90:3f:92:e9:d5:13:
a8:6b:c9:98:79:4e:8d:e4:a6:50:b8:f1:60:c8:6b:2f:01:cf:
eb:30:0d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 11:22:13 2025 by rpki-client