Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
File: 0bS-sKan4ShKv0OFNIz0hhALn4A.mft (raw, json)
Hash identifier: M4+0UGDUWz4GJWdm4LHeBp6bYuqeFf5u9KHIAgLDAKo=
Subject key identifier: 4F:4A:BF:06:39:15:42:77:3D:67:99:C8:75:94:9D:C9:81:12:12:9E
Authority key identifier: D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
Certificate issuer: /CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Certificate serial: 019873E27D00F2EBA9366E0850E859D7BBD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
Manifest number: 0E17
Signing time: Mon 04 Aug 2025 07:01:19 +0000
Manifest this update: Mon 04 Aug 2025 07:01:19 +0000
Manifest next update: Tue 05 Aug 2025 07:01:19 +0000
Files and hashes: 1: 0bS-sKan4ShKv0OFNIz0hhALn4A.crl (hash: Uvbogg3Gow71GJmYz/92iTdqWG/Zk3hih1PHlHmwvpU=)
2: c4vhQn8zi1dmhfuFlEzS457ekqY.roa (hash: K0d7LR2NOcizL+J6fo8ZUFPUHzj1ReR3yGovArPpqzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:7d:00:f2:eb:a9:36:6e:08:50:e8:59:d7:bb:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Validity
Not Before: Aug 4 07:01:19 2025 GMT
Not After : Aug 5 07:01:19 2025 GMT
Subject: CN=4f4abf06391542773d6799c875949dc98112129e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:83:94:5d:1c:1f:b9:82:dc:b2:fa:a8:02:a3:
a9:b6:0e:48:d6:34:ae:f3:29:31:e6:57:2d:be:83:
d8:f2:b5:90:a0:7a:cf:ba:97:c5:6a:ef:75:2a:fa:
7c:08:b8:2e:91:60:b4:8b:2e:76:a1:9e:bb:94:58:
51:d1:c8:26:7c:eb:6a:bc:34:52:21:29:96:06:bb:
e9:c1:3f:e9:82:75:8e:76:90:7f:ea:fa:54:ee:71:
07:0f:c7:9c:8e:78:08:8e:69:09:6d:c7:74:7f:a0:
d4:15:cc:9f:89:39:8a:36:7d:25:0b:87:53:94:ab:
d5:1a:80:54:33:51:65:47:75:05:ab:b5:16:e2:3e:
ec:7d:19:42:28:1e:00:07:ca:e4:7a:dc:ce:d8:95:
e9:7d:a2:ca:6e:1c:e5:f8:45:da:2f:e3:35:c7:6c:
35:76:f5:16:cb:4f:3f:4a:22:bd:9b:12:a7:0d:71:
56:f5:63:09:5e:d0:52:f8:f1:37:cf:8f:4e:34:84:
92:6e:11:15:35:3c:f6:3a:54:d1:f3:a8:6d:4d:70:
67:7e:d7:15:f4:a6:90:d9:5b:a0:36:a2:dc:42:41:
54:e0:83:6c:b0:7f:5c:4e:cf:de:24:c9:4d:fa:e3:
46:ae:41:9e:33:b1:ec:46:5e:88:0d:06:47:e7:1a:
32:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:4A:BF:06:39:15:42:77:3D:67:99:C8:75:94:9D:C9:81:12:12:9E
X509v3 Authority Key Identifier:
keyid:D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:74:1d:3f:b3:e5:bd:f5:e3:40:96:ee:36:fe:43:4c:e7:cb:
f8:58:18:c5:be:f2:38:cd:1f:86:25:9f:4b:da:49:c8:24:49:
41:ce:0e:dd:13:a4:eb:6c:68:ed:0a:b0:a6:b4:2e:8e:e7:26:
77:8c:ce:04:f3:a0:7c:5a:ae:6a:d1:2a:50:2a:4e:27:73:21:
82:aa:47:30:e8:0c:ef:39:59:7e:03:71:62:c9:ef:75:52:7c:
fc:5d:be:b9:5e:71:a1:4d:f9:59:36:9c:e7:d7:73:d3:a6:fe:
55:f8:32:9a:2b:aa:19:ea:e3:ae:d1:86:61:31:27:bf:56:ce:
90:e5:0e:fa:e9:f1:1c:7b:68:3b:da:e4:98:a6:f8:8b:31:59:
c9:9a:53:e3:88:1c:8c:98:69:8b:35:20:d3:f6:ca:8d:a7:ea:
34:35:cc:08:6c:87:08:cd:3a:71:69:d2:bf:fd:68:a4:b2:2d:
34:45:1c:d9:73:4d:a2:17:96:ba:85:51:43:63:f3:78:c3:2b:
e8:6d:56:d3:c8:62:6a:a9:bf:05:99:50:c0:a4:87:7b:16:95:
b1:b5:49:1d:ab:63:62:a0:b3:3e:2f:9c:7b:bc:c4:ab:bb:25:
e1:87:d0:7c:65:97:cb:77:19:4c:fb:dc:5c:0d:88:92:f4:b6:
99:9e:48:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:34 2025 by rpki-client