
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.mft
File: C0ojfRF9934LiqUS9vJfsgf5orE.mft (raw, json)
Hash identifier: 7f/teFflruMHKHd2cuqqUJNgtXOA99FvsUF5H162iuQ=
Subject key identifier: 99:BE:1A:7A:98:8D:54:4B:72:99:EC:AE:2A:6E:9B:28:44:9E:B8:6D
Authority key identifier: 0B:4A:23:7D:11:7D:F7:7E:0B:8A:A5:12:F6:F2:5F:B2:07:F9:A2:B1
Certificate issuer: /CN=0b4a237d117df77e0b8aa512f6f25fb207f9a2b1
Certificate serial: 01987FE713785699F30E1DE8FD40E861B87B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C0ojfRF9934LiqUS9vJfsgf5orE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.mft
Manifest number: 11B8
Signing time: Wed 06 Aug 2025 15:01:46 +0000
Manifest this update: Wed 06 Aug 2025 15:01:46 +0000
Manifest next update: Thu 07 Aug 2025 15:01:46 +0000
Files and hashes: 1: C0ojfRF9934LiqUS9vJfsgf5orE.crl (hash: x/YitDdPiySX8ZjwcOKIBkR8P+ppf4H2XzUZVTYnvN8=)
2: ubaYGhsK3un9FzpeOuJImEsVY0k.roa (hash: GKSurghCGTsvWWfo6kF8DtoCXANGJM6Q52lyK44WE3w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.mft
rsync://rpki.ripe.net/repository/DEFAULT/C0ojfRF9934LiqUS9vJfsgf5orE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 14:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:e7:13:78:56:99:f3:0e:1d:e8:fd:40:e8:61:b8:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b4a237d117df77e0b8aa512f6f25fb207f9a2b1
Validity
Not Before: Aug 6 15:01:46 2025 GMT
Not After : Aug 7 15:01:46 2025 GMT
Subject: CN=99be1a7a988d544b7299ecae2a6e9b28449eb86d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:15:39:53:f6:7c:5c:6c:c7:6f:96:5d:20:67:
e1:13:44:42:f2:48:c1:cc:35:d0:22:1e:5c:39:6c:
19:04:a7:99:46:b3:a6:fd:4b:0f:f1:0d:07:59:58:
f8:6f:f2:8f:c7:a3:65:ff:f8:e8:38:d2:7e:e7:68:
05:e7:50:f8:57:31:5b:46:36:f0:b2:03:54:fa:2e:
56:16:05:be:76:37:b0:77:90:6f:f4:cf:bf:a5:fe:
a1:9b:00:7c:62:42:33:51:49:a7:79:09:c9:ab:60:
68:d1:81:ad:3b:34:93:bb:c2:00:3b:50:1b:a0:a7:
78:0a:21:89:76:3d:a8:41:19:1c:20:6e:81:fb:8a:
58:6d:0e:63:1f:01:81:90:f8:d7:b5:c5:c7:cc:cb:
82:d2:15:5b:22:40:cd:de:95:a9:a4:03:89:ae:91:
ea:be:79:1b:0e:83:75:4d:a3:f4:7f:15:bb:97:95:
fe:50:0f:bf:3c:dd:3a:71:d2:bc:32:1a:ff:79:4e:
1a:9b:f3:99:79:6a:89:8f:e8:a6:8b:1a:c3:e1:9c:
47:39:f8:f2:8e:1a:ff:5c:41:27:03:66:a5:fb:00:
e4:67:41:f5:e3:d5:89:36:6e:46:6d:90:ad:7d:d1:
3c:1d:7b:5e:8f:82:0f:05:e9:05:ab:ea:9e:39:74:
94:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:BE:1A:7A:98:8D:54:4B:72:99:EC:AE:2A:6E:9B:28:44:9E:B8:6D
X509v3 Authority Key Identifier:
keyid:0B:4A:23:7D:11:7D:F7:7E:0B:8A:A5:12:F6:F2:5F:B2:07:F9:A2:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C0ojfRF9934LiqUS9vJfsgf5orE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:87:76:7d:6a:06:c2:b5:39:ee:dd:6e:1c:76:36:82:c5:4a:
19:05:f0:52:cc:47:96:44:37:3e:e7:a7:4d:8f:d3:96:a8:c6:
ae:13:e7:bf:2a:fa:e9:aa:80:e6:3d:49:88:ef:82:4e:23:73:
67:53:3b:2a:7f:2c:bb:7a:0b:36:38:3c:30:ea:1a:34:d2:2d:
b9:92:42:52:79:8e:96:62:c8:3f:42:94:31:24:5a:a8:2a:6a:
a4:64:76:0c:b8:25:cd:6e:15:06:14:ab:2f:34:7e:1a:60:64:
6b:d4:45:2b:75:0d:c0:54:7e:a3:6d:f0:86:82:70:64:5a:d0:
09:4c:de:a8:1c:2d:93:76:ef:cc:f7:88:fd:a6:4b:dc:29:c8:
f3:b5:e2:67:9a:cf:86:d7:ff:91:39:b9:04:97:db:c1:71:0b:
2f:38:ff:66:c6:1b:c3:33:76:c5:c4:30:15:76:35:3e:8e:62:
df:02:6a:c9:60:98:e0:38:a2:40:65:7a:02:20:17:28:34:67:
57:fb:0c:c8:d1:06:05:a5:b1:7f:a4:64:4c:61:58:b0:78:30:
a9:04:2a:74:ba:b7:ca:f4:1f:d1:ca:b8:bf:82:17:97:70:46:
21:92:9f:2e:88:c9:d2:bf:2a:ee:bc:b9:13:52:76:b1:52:29:
88:74:bb:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:32:10 2025 by rpki-client