Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
File: TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft (raw, json)
Hash identifier: QAk604IZYrQDRl7kq8ubu97SVKSEnzzfUYk1F12SBV4=
Subject key identifier: 3F:08:DA:9C:B6:D1:80:0C:CD:CF:34:C2:05:4D:9D:40:D8:2D:67:41
Authority key identifier: 4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
Certificate issuer: /CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Certificate serial: 019888B2C4DCDA015ED2124CAEC9C7C9BABF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
Manifest number: 02CA
Signing time: Fri 08 Aug 2025 08:01:13 +0000
Manifest this update: Fri 08 Aug 2025 08:01:13 +0000
Manifest next update: Sat 09 Aug 2025 08:01:13 +0000
Files and hashes: 1: 1-QbsigNOAsIOrzATvCDKf5YVw3s.roa (hash: gWNRwRZG0Ifn0uSFb+Au9uZSZqHds/SqKOwbteITnow=)
2: TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl (hash: O+x4jhcqEu/+H+Ht/oDz5aU3sb86mpPTQrWdvhj++qI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 08:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:88:b2:c4:dc:da:01:5e:d2:12:4c:ae:c9:c7:c9:ba:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Validity
Not Before: Aug 8 08:01:13 2025 GMT
Not After : Aug 9 08:01:13 2025 GMT
Subject: CN=3f08da9cb6d1800ccdcf34c2054d9d40d82d6741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2c:20:a7:49:ba:3a:91:89:e1:07:5c:99:6c:
38:91:d7:1a:70:97:ca:b2:98:22:a1:69:e1:b1:8d:
60:94:7a:a7:88:9b:e9:f2:96:ed:20:d3:78:47:a1:
0a:ef:93:c2:71:e7:ba:e5:d1:6c:93:cb:23:70:73:
45:3f:10:eb:54:de:a2:54:25:15:cb:3d:55:2a:92:
f8:f5:f5:bb:83:4c:06:d0:e7:b0:42:da:28:29:6b:
08:24:dc:ba:95:3b:5b:8e:97:43:27:27:11:2e:c6:
ba:ec:3e:a2:25:50:3c:7d:3e:3f:6f:09:38:2a:d9:
90:61:8f:84:2b:87:d3:3f:75:93:b3:e9:e6:27:44:
36:c9:36:83:87:79:a1:56:f8:50:ff:37:b1:bb:a5:
e0:71:80:96:d6:5e:a1:97:4d:bc:19:7b:47:9f:99:
e8:db:c2:55:65:ef:21:c4:f4:b1:06:8a:15:31:82:
16:69:1e:d4:21:e7:a4:6a:d2:9b:bc:f6:14:7e:83:
4c:75:2f:9d:c1:90:6a:7e:3a:5d:e0:14:83:3e:bf:
9b:7f:29:b1:19:2a:f7:1a:91:15:d0:28:3b:6b:19:
2a:b2:98:16:fb:4b:52:7b:5d:f5:23:74:05:92:45:
89:16:9f:69:a6:94:90:b0:d6:ec:5d:c5:b8:18:2d:
1f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:08:DA:9C:B6:D1:80:0C:CD:CF:34:C2:05:4D:9D:40:D8:2D:67:41
X509v3 Authority Key Identifier:
keyid:4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:e0:a1:88:69:f6:e3:37:de:80:a0:04:2b:c0:c9:3b:eb:0a:
51:84:f4:eb:f2:ad:42:11:05:c0:40:a9:8b:60:17:8f:31:c9:
7f:61:a0:72:ee:1e:05:15:0a:0c:90:7f:25:fb:46:f3:79:6e:
1e:6c:47:ba:16:78:53:bd:9c:71:21:8e:0c:3e:35:f0:7c:7a:
1f:b6:2e:15:4d:07:32:f9:70:2a:ad:72:c5:c9:3c:d4:43:e6:
79:80:2a:d9:f2:92:62:5c:70:a5:d8:5c:a0:2c:68:f8:c7:93:
05:5a:3f:08:cf:c6:a2:c8:d1:2f:ad:9d:64:0e:bb:dc:3c:d3:
ba:34:9d:fb:8e:e5:38:ad:7b:23:a3:94:03:c0:61:08:c1:d9:
4f:d5:b8:a1:7d:cf:b9:66:11:72:c9:99:e2:92:6e:e1:77:8a:
a1:72:eb:30:0c:cd:bf:aa:c4:b0:8f:27:3e:fe:56:4f:4d:e2:
41:2c:10:77:19:70:a5:9a:ba:e6:18:7e:3b:7d:ce:a9:1e:ca:
8f:7c:41:46:4f:28:5a:1f:97:bf:42:74:32:74:77:a8:3c:fb:
45:8e:77:13:b4:e1:66:c0:e9:18:20:30:fc:2a:84:31:0c:c7:
86:f9:45:e0:37:2f:37:2c:63:2b:76:54:4d:4e:0e:bc:2f:19:
84:f8:ee:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 13:10:19 2025 by rpki-client