Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
File: cBKlLoiwGDLPDuN8zath3s59EsY.mft (raw, json)
Hash identifier: 4WwbA4aD+G21nzXkhf5H+yeLI7K5bG41L9G6iyfry9E=
Subject key identifier: 8C:51:C8:FD:81:60:4A:CA:66:3A:42:29:85:AC:80:C9:B2:6C:AA:17
Authority key identifier: 70:12:A5:2E:88:B0:18:32:CF:0E:E3:7C:CD:AB:61:DE:CE:7D:12:C6
Certificate issuer: /CN=7012a52e88b01832cf0ee37ccdab61dece7d12c6
Certificate serial: 0198955BAB8ECF4A1AEA6181F4C2C45B1C9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
Manifest number: 0AA9
Signing time: Sun 10 Aug 2025 19:01:09 +0000
Manifest this update: Sun 10 Aug 2025 19:01:09 +0000
Manifest next update: Mon 11 Aug 2025 19:01:09 +0000
Files and hashes: 1: cBKlLoiwGDLPDuN8zath3s59EsY.crl (hash: dS6P4tTB7eV0Y3KwZhGy4r4LoUzYRrAg/whSWWC0tXc=)
2: muE7z7bw5WUF44PtXee-WtjAnUQ.roa (hash: eOTAuS8cb5e4NeqERvCCoU2l75Ey2kGH2CxTpug1Tes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:5b:ab:8e:cf:4a:1a:ea:61:81:f4:c2:c4:5b:1c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7012a52e88b01832cf0ee37ccdab61dece7d12c6
Validity
Not Before: Aug 10 19:01:09 2025 GMT
Not After : Aug 11 19:01:09 2025 GMT
Subject: CN=8c51c8fd81604aca663a422985ac80c9b26caa17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b2:c8:12:94:52:e5:23:03:e1:21:37:43:f7:
7c:0f:f4:8f:ec:c4:05:31:3a:a9:83:58:0e:dc:47:
98:d7:35:8e:f8:95:db:7a:73:cd:dd:61:6d:c8:e0:
38:67:d8:68:4b:86:4a:87:ec:d5:23:e0:44:0d:5f:
65:d2:16:82:02:51:d4:ca:a5:e1:71:4a:5b:c2:a0:
74:57:b0:a8:9a:13:b8:ac:e4:c1:6b:f8:21:45:52:
f7:23:e9:60:8f:15:27:2b:e5:bd:19:f5:84:44:ff:
44:e1:71:d0:05:07:07:88:84:f1:32:78:4b:6c:7b:
31:c0:09:b3:bb:c1:5b:63:df:1e:02:7b:4b:a7:b8:
54:28:66:57:bd:25:e2:c5:1e:71:72:80:bc:35:be:
7b:f3:31:c9:79:8e:9a:4d:d1:f2:e2:95:e7:5c:04:
e9:04:23:a7:87:b5:7f:c3:aa:39:44:84:6d:c4:8a:
5d:ee:b7:7a:94:c2:9b:23:91:74:af:b1:f7:09:47:
0c:e9:a9:8c:7e:61:28:54:a0:d3:92:34:64:e8:be:
08:c9:1f:05:21:86:cf:19:71:84:33:1b:d6:05:51:
3b:80:98:19:bb:d4:e4:ba:4b:9c:0a:e2:e6:80:0a:
d8:9e:5c:61:63:cc:5e:59:34:97:01:d6:94:84:9b:
43:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:51:C8:FD:81:60:4A:CA:66:3A:42:29:85:AC:80:C9:B2:6C:AA:17
X509v3 Authority Key Identifier:
keyid:70:12:A5:2E:88:B0:18:32:CF:0E:E3:7C:CD:AB:61:DE:CE:7D:12:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:d1:4c:e3:e4:0a:55:e9:0d:c7:3f:64:02:f5:8d:d1:f1:2b:
53:7b:a1:93:f3:4f:34:22:44:6a:a5:fe:6f:c3:54:27:fb:6b:
df:49:ed:cf:0f:74:cd:c6:3a:3e:a9:9e:96:d5:55:04:fa:de:
52:a4:c4:e0:dc:0a:47:4d:d8:39:17:2c:14:27:af:37:5c:c5:
74:f6:a7:af:3f:86:81:e9:e1:2c:11:e0:22:d7:ee:dd:24:0d:
c9:10:66:fe:a9:fe:32:d4:11:b7:e6:ee:02:1f:1f:b3:d4:43:
b0:c7:1c:0f:f7:71:c6:2a:b8:f0:54:81:fc:47:71:62:b6:e5:
db:02:c2:60:9b:30:fd:98:1c:52:8c:7d:0b:60:2f:3b:55:64:
af:b5:68:f2:ea:f0:aa:f8:d8:63:4e:2e:45:06:3b:85:f4:7c:
17:c1:5a:ff:e3:e2:08:9b:7d:26:1a:89:13:3b:59:5b:65:b9:
f2:61:93:1a:ca:5a:02:2e:f9:37:7b:0c:9c:8d:7a:54:b8:1f:
8d:c0:a9:bb:3b:82:4c:d1:2f:f8:19:d3:8c:e9:96:27:7a:3a:
8b:74:99:ad:49:bf:89:50:bc:eb:21:79:df:6a:96:d1:25:e2:
1b:3a:f1:8c:cc:b5:b5:f7:2e:63:74:aa:1b:d0:88:b4:f6:5d:
65:cc:90:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 01:46:18 2025 by rpki-client