Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: O318ROgf1nBVMuV7V1Wf60psiuWok8L2Wo5HUiWrT3s=
Subject key identifier: B1:AD:A4:68:7B:F9:F4:EF:08:86:18:49:B9:2D:27:5D:FA:C5:65:9E
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 019885E7E83322511B9C5944CB3BE00367EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 0733
Signing time: Thu 07 Aug 2025 19:00:24 +0000
Manifest this update: Thu 07 Aug 2025 19:00:24 +0000
Manifest next update: Fri 08 Aug 2025 19:00:24 +0000
Files and hashes: 1: EKdJIayRjGqpNjC_sXcLD4LpFxg.roa (hash: Q7XyDf/+ZYlwIoQHzzpWgBVzZ1z6oDECbrHcCzM9GG4=)
2: _-z4nvaTTyccKXJFwod66iKewX0.roa (hash: B/6vrb0o2kiLAGPMrkOgglOkupcsHoxdqdIe49F5XFQ=)
3: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: 6sgL8TZvxfoTmTiVTPqjHnbBUeV8RPVr+LK1YtwqONw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:85:e7:e8:33:22:51:1b:9c:59:44:cb:3b:e0:03:67:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: Aug 7 19:00:24 2025 GMT
Not After : Aug 8 19:00:24 2025 GMT
Subject: CN=b1ada4687bf9f4ef08861849b92d275dfac5659e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a2:c7:e5:79:00:49:5e:cf:88:a5:6c:1c:ff:
a3:c5:f8:2d:47:0a:e3:4c:e4:ed:4f:29:2c:ae:17:
40:55:4b:0f:87:ac:f7:c9:91:51:e4:85:77:44:a1:
35:30:71:8f:06:42:41:99:de:70:22:94:b5:b9:e8:
cc:d7:8e:8a:e9:76:d7:39:24:e2:34:f4:a3:30:5e:
46:70:8a:68:f0:67:02:8a:86:ab:30:ba:0c:1c:3f:
d8:97:cf:9c:3a:45:78:1f:21:af:61:a4:e3:c1:43:
7b:f3:cc:1a:5a:ae:e6:fd:04:c6:6a:d7:52:bd:76:
61:c9:59:e2:43:11:6c:1f:3c:83:10:05:da:6b:a0:
d7:99:0e:24:44:7c:d8:12:78:be:1a:89:d7:76:4b:
11:9a:4a:b6:e3:aa:da:44:a0:b4:6e:f4:6f:82:94:
d7:ed:5a:a2:43:74:bc:b1:10:72:e6:e0:4c:35:fc:
98:40:4b:19:be:8c:2d:84:c1:3c:7a:d4:f0:0f:53:
cd:59:11:0e:3d:87:b0:70:fe:da:f5:e7:40:fc:77:
b2:c2:3d:43:98:fb:cb:f1:47:b3:06:9b:a2:d5:f6:
e5:19:cd:d3:f8:08:00:6e:f1:f2:1b:ac:86:d4:ed:
76:47:3d:5e:d2:d5:d7:0a:26:99:f5:26:7f:7c:12:
19:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:AD:A4:68:7B:F9:F4:EF:08:86:18:49:B9:2D:27:5D:FA:C5:65:9E
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:9d:3b:8a:ae:93:fc:e9:db:50:4c:88:89:5e:2f:17:29:c1:
ed:bc:a7:9b:e2:89:75:6f:7c:fd:66:8c:50:e5:1f:c4:1b:8e:
4d:3b:ba:94:f7:53:c0:01:24:62:f9:9b:a4:e4:bf:28:46:4d:
57:7a:99:5e:26:d7:0c:7d:0b:76:01:ff:89:fd:3b:19:86:31:
71:19:84:90:ec:d1:47:df:88:db:41:fe:d8:46:c6:81:78:23:
f2:cd:13:1b:61:0e:8f:67:61:48:73:5c:47:6e:69:0e:06:45:
16:b5:6c:d8:4a:24:c3:5e:0d:ba:57:06:43:a3:21:67:ca:13:
b8:11:45:df:0d:12:61:ac:67:78:21:0a:d7:97:37:dd:5e:69:
a1:31:f6:3f:ce:23:68:ff:e4:43:57:b1:b7:0a:bf:14:de:04:
48:0e:c6:9c:ef:91:73:f0:a1:72:8b:ab:ac:2a:17:a9:75:a1:
81:32:0b:24:36:20:3b:ab:57:a5:f1:9e:f0:ce:bd:a7:4f:02:
19:f7:a8:5e:d7:a7:02:e5:2e:53:9c:93:b8:e6:2d:c6:15:14:
89:15:01:09:a3:fb:60:b4:c9:e3:d6:5c:cf:43:fe:8b:01:83:
6d:35:84:9b:e7:b6:65:ad:60:27:88:a2:0f:a1:02:6b:98:b5:
ee:9d:f9:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:47:56 2025 by rpki-client