Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
File: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft (raw, json)
Hash identifier: UrjTSGe3Q+cZ2oDfXE6E2fkYVQmc/HOuTWyLj2Spme8=
Subject key identifier: ED:2A:3A:60:A8:D3:F6:BC:51:29:E1:4D:02:A2:EB:A1:8C:F5:11:98
Authority key identifier: AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82
Certificate issuer: /CN=af9b2cefe389a1ae49756edc2b3293e58830cb82
Certificate serial: 0198955B1A66A01D88EA7AC778718550A96E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
Manifest number: 0305
Signing time: Sun 10 Aug 2025 19:00:32 +0000
Manifest this update: Sun 10 Aug 2025 19:00:32 +0000
Manifest next update: Mon 11 Aug 2025 19:00:32 +0000
Files and hashes: 1: HlRrYVzs80ZJA5_JZ3csPGXIkEY.roa (hash: 2WA22A/U8/r4tDX+UDoYIX+va554GCdeOFSCw5V25j8=)
2: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl (hash: MnDpCI9hZfs78dFe+HU/g5jPJYC+C0KbrNPF3YRjC4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 19:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:5b:1a:66:a0:1d:88:ea:7a:c7:78:71:85:50:a9:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af9b2cefe389a1ae49756edc2b3293e58830cb82
Validity
Not Before: Aug 10 19:00:32 2025 GMT
Not After : Aug 11 19:00:32 2025 GMT
Subject: CN=ed2a3a60a8d3f6bc5129e14d02a2eba18cf51198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:06:6b:f1:e8:36:16:8f:94:5c:f0:f2:c2:de:
2a:51:2b:20:8b:6b:86:86:df:98:4b:7f:65:e0:4a:
6e:a9:4e:dc:dc:97:d4:f5:10:e6:18:85:d5:82:b6:
61:06:5d:c3:fb:ec:6f:41:b5:b5:e1:f5:83:b8:02:
3b:9a:a8:39:89:10:d0:4b:07:f6:ed:d4:7e:d1:0e:
3f:a5:d7:14:6a:ef:b5:b4:1f:06:8c:f3:e5:df:04:
5f:35:23:b9:9b:16:4d:67:d3:d9:89:08:9b:71:80:
b6:55:44:eb:90:4e:16:d6:52:d2:62:6b:7d:88:3d:
d7:54:ac:60:80:b8:b6:a6:17:e7:00:68:cb:d2:47:
58:df:e0:7a:5b:c3:c8:81:c3:ff:c8:16:75:69:c2:
31:6e:40:1d:65:d8:f6:81:96:bc:07:96:af:69:70:
f1:79:d4:19:fa:c7:8c:ad:01:3a:d2:24:d9:3e:22:
07:a1:ed:f3:ff:2b:0a:91:f2:42:fc:26:c1:0f:7a:
3a:c1:9e:6b:d7:89:be:96:97:7d:76:b5:c1:b7:2a:
09:04:07:00:65:5a:7c:8a:f8:98:fd:89:f7:07:06:
bb:28:52:df:7f:1f:95:5e:6e:cc:15:6a:a1:14:f2:
67:df:fb:42:61:6c:c0:c0:4d:97:f8:04:e4:fc:ac:
48:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2A:3A:60:A8:D3:F6:BC:51:29:E1:4D:02:A2:EB:A1:8C:F5:11:98
X509v3 Authority Key Identifier:
keyid:AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:86:6d:ff:d4:07:de:ac:9b:50:a3:ad:52:9e:33:f0:cd:b9:
e5:a6:14:ee:2b:9d:9c:c6:7c:b2:0c:c1:77:75:53:0e:d1:58:
da:c9:df:1c:d7:14:6e:5c:d8:42:d9:d2:99:2b:a0:8e:5b:c1:
f2:19:04:41:ab:7a:be:00:5b:03:ff:af:51:31:61:38:03:a4:
35:7a:99:6f:b8:b8:99:3d:68:9d:4a:91:84:db:e3:f1:43:3e:
92:e7:82:6a:6e:1e:42:87:55:42:5d:1b:a2:05:52:42:81:71:
f3:c8:16:4c:b8:4f:2f:f7:c3:ca:98:03:b9:14:c0:b9:5c:0b:
c0:3a:50:87:e1:36:15:b4:b7:e4:29:8b:16:2e:0c:30:3f:2b:
24:f6:18:2b:6a:06:f6:96:ba:15:6b:a9:10:c5:66:a8:40:d9:
5e:1e:96:ce:10:9b:66:be:df:fe:dd:1b:59:59:23:04:a2:5c:
ea:7f:ea:3a:e7:19:98:5e:c8:7d:31:32:b7:f4:6d:9b:6a:bd:
a5:5b:c4:4c:39:d4:8f:65:ea:c2:35:a1:2e:3c:ad:3f:a4:a5:
dd:d8:c3:dc:a6:d7:9d:ef:eb:d7:d8:cd:dd:1e:37:22:2e:04:
85:5c:34:bc:8d:44:f8:b5:ae:18:23:99:3f:7e:34:85:0d:2c:
d3:8f:88:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:09:45 2025 by rpki-client