Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json)
Hash identifier: UIVolSmxnlTefWk/HbuNm1zW90f7Eq0i6refWBvdclU=
Subject key identifier: CB:4E:81:1D:3F:EC:0A:07:C1:A7:BC:42:C5:B0:2C:D4:5E:7F:14:B6
Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Certificate serial: 01987C77AAAA2F07C5176D9865333F97F9D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
Manifest number: 0324
Signing time: Tue 05 Aug 2025 23:01:13 +0000
Manifest this update: Tue 05 Aug 2025 23:01:13 +0000
Manifest next update: Wed 06 Aug 2025 23:01:13 +0000
Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: nnFJjVHewPIKXlwLuLeILsRWFbJ5QAJglOP2cs0plT0=)
2: mFUkKUV2j8Fct1DGbVQJTzcA0ig.roa (hash: bNr/zF64vk+SVTrKPbIdCfqu6Sowa5lS9V4LG/Ns2g0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:aa:aa:2f:07:c5:17:6d:98:65:33:3f:97:f9:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Validity
Not Before: Aug 5 23:01:13 2025 GMT
Not After : Aug 6 23:01:13 2025 GMT
Subject: CN=cb4e811d3fec0a07c1a7bc42c5b02cd45e7f14b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:cc:aa:88:d7:7a:28:54:1e:0b:78:1e:93:5a:
81:57:3b:54:b6:6f:c7:12:8f:46:01:21:15:21:ea:
64:45:cb:7b:f0:a3:45:fe:f5:b1:d7:ee:8d:24:58:
f1:c2:2b:c8:31:90:0d:07:bd:26:9f:99:e5:f7:24:
8a:20:36:c3:70:5f:5a:7e:99:0b:1a:66:6b:0d:8b:
41:72:9e:09:ee:6b:9f:4c:50:41:80:04:8e:aa:ef:
3e:cf:0a:cc:5a:e1:61:c8:16:54:ed:0b:58:10:39:
6b:2c:3c:3b:24:9e:cb:20:ad:37:ed:ff:28:11:10:
9c:52:4a:69:26:c5:83:f5:4a:bc:be:44:3e:aa:f3:
c9:ab:d5:60:14:3e:99:8e:00:b6:d8:af:02:e1:78:
5e:62:26:86:bd:5c:1b:3a:9f:ac:3d:f0:20:a9:f7:
85:41:12:37:47:3e:9b:5f:3b:fe:e9:31:b6:1e:fb:
bb:1a:90:64:c9:18:54:14:fb:9b:ed:de:7b:47:48:
24:7f:1e:ab:70:18:c8:f3:f5:61:b1:fd:c3:e5:d3:
05:a4:7e:6f:a5:27:9f:df:a8:56:d2:d9:95:7f:6a:
e2:74:d8:7b:6b:3c:62:82:f3:38:b3:0a:4a:21:ec:
83:c3:cb:93:d8:3f:ca:f3:d3:8b:0e:b2:43:88:85:
69:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:4E:81:1D:3F:EC:0A:07:C1:A7:BC:42:C5:B0:2C:D4:5E:7F:14:B6
X509v3 Authority Key Identifier:
keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:b4:cb:56:6f:79:c3:c2:7c:b6:72:80:a2:27:91:cf:9a:67:
67:8b:59:66:85:b7:e4:dd:ed:7b:71:e4:7e:2f:17:7b:61:67:
59:f3:23:90:f7:36:e7:2b:44:81:30:c6:ac:f4:ef:f3:fd:84:
5e:3c:ee:cf:ad:17:0e:d8:07:a0:dc:45:85:97:61:3f:ee:41:
87:e8:76:d9:e1:b4:d0:89:b1:30:9b:a3:73:e3:f6:7a:4c:31:
5d:87:0d:3d:fc:53:1d:85:66:c0:e0:55:23:ec:79:7e:3f:40:
0b:9f:4c:c6:10:2e:09:b8:49:ae:3a:f4:aa:a0:52:1a:8e:b9:
a8:80:43:8b:4a:57:28:37:76:71:c4:81:31:20:a4:0c:cb:bc:
ca:1a:9e:5e:39:6e:1d:fe:9a:14:92:26:a2:1b:56:28:ae:d7:
78:95:8c:d2:69:64:08:54:46:dc:45:6e:c7:43:04:3f:be:49:
ed:bd:b3:b3:71:37:41:83:a1:21:54:d1:b4:09:7c:b8:3a:ce:
f3:bf:27:cd:24:f9:ae:72:d9:12:85:cc:a7:f3:ac:f4:8a:2d:
7c:59:7e:ad:43:d3:cd:78:05:df:01:51:d4:0b:fd:fb:03:47:
b4:2e:55:2f:51:ec:53:46:f1:b2:0d:54:cf:72:0b:89:4b:d7:
20:42:3b:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:05:16 2025 by rpki-client