Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
File: 0jhr7YO2RaK64TifU9llfZGedtE.mft (raw, json)
Hash identifier: wowLRB42wX4Ic75t+0V139r0Dw7sPKP7ce+jc3qeSzw=
Subject key identifier: A9:37:A2:AE:54:27:18:42:A2:57:ED:CF:D6:3D:31:7B:38:10:AC:67
Authority key identifier: D2:38:6B:ED:83:B6:45:A2:BA:E1:38:9F:53:D9:65:7D:91:9E:76:D1
Certificate issuer: /CN=d2386bed83b645a2bae1389f53d9657d919e76d1
Certificate serial: 019896A54BF1190A49E0ABBC5C1D21A540F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
Manifest number: 09EE
Signing time: Mon 11 Aug 2025 01:01:11 +0000
Manifest this update: Mon 11 Aug 2025 01:01:11 +0000
Manifest next update: Tue 12 Aug 2025 01:01:11 +0000
Files and hashes: 1: 0jhr7YO2RaK64TifU9llfZGedtE.crl (hash: Cq9GoJWyatAWWQE+cNHp3j0pp9m8YDIYo9IqbOtuqbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:4b:f1:19:0a:49:e0:ab:bc:5c:1d:21:a5:40:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2386bed83b645a2bae1389f53d9657d919e76d1
Validity
Not Before: Aug 11 01:01:11 2025 GMT
Not After : Aug 12 01:01:11 2025 GMT
Subject: CN=a937a2ae54271842a257edcfd63d317b3810ac67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fc:8a:6b:b9:37:10:dc:68:c7:f6:af:d6:bf:
00:e2:e1:74:43:56:6b:0b:92:ef:fc:80:8c:91:1d:
b2:c4:0c:e3:fa:76:74:51:51:48:d5:7e:81:4b:f0:
3b:62:4d:e3:0a:af:1a:82:0b:4f:3f:a1:54:cc:b7:
66:f6:89:d0:49:f2:62:93:e4:6d:46:23:48:4d:75:
6c:8a:4e:35:04:f8:f4:68:a5:f9:0f:fc:88:31:87:
19:f1:9b:6d:42:7b:31:81:8e:94:33:5a:c5:db:52:
86:23:86:8c:56:6e:e7:11:28:fc:f5:8d:fd:f4:83:
5f:66:75:ec:4f:36:71:5c:e2:b2:40:27:e7:2d:f5:
6f:52:bf:9f:6d:1b:53:e9:1e:08:b0:a4:eb:bf:f1:
35:38:68:d1:01:56:dc:d1:c6:cc:ee:ad:9f:3f:50:
b8:25:fb:d4:2f:26:d6:49:ef:57:df:dc:f2:a0:0f:
f9:56:9f:11:8e:81:ca:de:b7:31:2a:d3:c5:78:ee:
2f:87:90:d4:62:a7:f6:e5:e8:e8:89:c0:bf:f9:26:
c7:b6:af:f4:96:28:a2:71:2a:0b:ca:73:9e:11:70:
46:db:83:bf:45:a4:28:82:ec:9d:88:fc:bb:2b:60:
9d:f8:76:17:76:5c:e7:be:c1:11:06:c8:69:96:4f:
69:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:37:A2:AE:54:27:18:42:A2:57:ED:CF:D6:3D:31:7B:38:10:AC:67
X509v3 Authority Key Identifier:
keyid:D2:38:6B:ED:83:B6:45:A2:BA:E1:38:9F:53:D9:65:7D:91:9E:76:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jhr7YO2RaK64TifU9llfZGedtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/563297-6056-4675-8399-03438351a369/1/0jhr7YO2RaK64TifU9llfZGedtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:7e:41:73:e8:1f:6e:f2:b4:a6:95:00:9f:94:3f:24:02:a1:
d1:09:7b:36:23:ea:c7:e6:ab:e1:a3:64:44:64:26:fc:71:85:
0e:be:bd:40:ac:54:5c:ac:d9:9b:e7:50:f5:45:a1:0c:8b:3e:
d8:a8:ee:b4:7d:99:24:6a:80:45:3c:c6:9b:87:5c:68:d2:f8:
94:01:eb:c4:5d:6b:fb:64:14:c6:16:c7:85:94:db:db:41:4d:
30:79:67:e8:8c:47:7d:c7:66:58:12:10:d9:33:97:16:48:88:
cf:9f:a1:11:14:5c:8b:07:3d:cb:0d:08:6f:a4:cb:92:9e:9b:
b5:f7:4c:8a:32:58:e1:04:cd:09:73:62:fd:88:70:75:d3:07:
5d:b0:4e:ee:49:11:3a:d7:73:48:09:98:bd:03:2d:e9:b1:e8:
61:fd:d0:51:a4:32:6e:1f:45:70:70:83:f7:e0:7c:a5:57:83:
27:d8:cc:73:9b:cf:cf:03:0d:08:ff:36:33:cb:6b:a3:c7:b4:
2b:6d:d3:44:3b:5e:63:e8:da:4b:12:ed:d5:24:f5:2e:9d:f0:
51:71:b5:74:a4:d6:6c:29:c0:0f:0b:ac:47:3c:c2:ed:c9:8b:
a6:ec:86:f6:6c:06:8a:4d:08:35:86:aa:b6:3c:34:f9:dd:22:
08:e3:3d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:30:29 2025 by rpki-client