Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
File: AsLBh9mLRgOATtEWWttFCbYwqDo.mft (raw, json)
Hash identifier: uCvlP5wiMO16DwvFPIsb14cS9C0QCMh6vmhANfn/XNg=
Subject key identifier: 9A:1F:BB:C1:45:F0:2E:E0:26:EB:CA:D5:21:37:E1:CF:68:67:3A:C9
Authority key identifier: 02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A
Certificate issuer: /CN=02c2c187d98b4603804ed1165adb4509b630a83a
Certificate serial: 019873066A4F1191AFC15E893C134AB7ABE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
Manifest number: 0B0B
Signing time: Mon 04 Aug 2025 03:00:56 +0000
Manifest this update: Mon 04 Aug 2025 03:00:56 +0000
Manifest next update: Tue 05 Aug 2025 03:00:56 +0000
Files and hashes: 1: AsLBh9mLRgOATtEWWttFCbYwqDo.crl (hash: yMACvbsgW0PgOZp/j0nL159zNFRjb6r+kwEq/P19tG4=)
2: vSD8XToST3_PVTIy1XwVerhMPWI.roa (hash: Yvhr0/CtepPwOm3ynZwacKeoADnHcOUi9JQFKNsVsJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:6a:4f:11:91:af:c1:5e:89:3c:13:4a:b7:ab:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c2c187d98b4603804ed1165adb4509b630a83a
Validity
Not Before: Aug 4 03:00:56 2025 GMT
Not After : Aug 5 03:00:56 2025 GMT
Subject: CN=9a1fbbc145f02ee026ebcad52137e1cf68673ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:dc:28:a8:c3:bd:30:a5:8f:a6:e4:5b:96:5d:
87:b3:cf:f4:d8:00:54:ac:d7:a4:fd:71:15:8d:76:
8b:ed:f5:1e:53:c9:24:3f:2d:5e:e6:d9:ae:f6:35:
3c:ac:f3:d6:31:73:e6:4a:a4:d1:2d:97:20:4f:b1:
ac:cf:47:20:a2:ef:ab:40:1e:25:aa:1d:26:1c:48:
53:81:7e:fa:b1:e5:4a:44:46:e3:96:74:70:7b:34:
af:74:81:71:11:4c:1b:6f:09:99:f5:49:81:1a:fb:
c3:66:4e:d7:0e:3a:74:12:d8:c7:82:25:2c:1f:ec:
41:33:87:10:be:34:c1:7d:c2:fb:77:d2:79:b9:e7:
47:67:00:35:ee:b9:fb:7d:f8:98:4e:81:1c:62:46:
20:06:e2:db:4d:48:b7:a8:34:c2:a8:9a:75:35:62:
06:e8:6a:c0:67:cb:15:0f:0c:70:b4:e8:f8:ba:cd:
9c:7b:e4:76:ff:60:a0:9d:fe:3e:b0:92:6a:83:9d:
86:08:c2:4d:4e:2f:1d:a4:ab:24:71:a8:25:8c:7a:
9f:96:fd:c4:59:87:5c:ff:b0:67:de:2c:b7:28:0e:
fd:75:ed:b6:30:f1:96:07:51:73:c9:52:2e:b1:2f:
83:dd:b9:95:61:64:21:8f:ef:49:6e:cd:4d:c2:f1:
cb:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:1F:BB:C1:45:F0:2E:E0:26:EB:CA:D5:21:37:E1:CF:68:67:3A:C9
X509v3 Authority Key Identifier:
keyid:02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:9d:c1:1c:12:07:c5:ba:e4:d9:4b:81:6b:6c:b3:bf:17:1d:
1c:b7:e3:51:4d:f5:b8:be:24:da:03:5b:55:70:e7:bd:d7:43:
35:73:d9:0e:fe:35:9a:e2:a8:bf:88:f4:85:1e:b0:ab:d4:0a:
ec:76:23:3e:02:f1:3b:11:bd:f3:fc:7f:4f:b7:43:e0:64:30:
45:af:4c:a3:55:50:05:da:ca:ec:31:08:bf:a7:03:91:8b:cb:
96:b0:00:1b:9b:33:30:e6:c0:c3:57:39:f3:4e:c6:9f:88:76:
fd:55:63:be:b1:72:bf:fe:90:38:46:cb:6d:d6:1b:5c:b2:e0:
a1:3c:f9:4a:57:59:83:e8:72:4c:ab:20:92:0d:69:73:21:1e:
f7:06:ed:64:f5:f0:36:75:6d:f1:25:f9:3a:fe:f3:00:85:21:
e7:14:a6:ab:a4:9b:77:1c:47:28:40:dc:b6:69:f9:ba:1f:f7:
a4:9c:55:e1:da:6d:47:c3:35:e3:5d:d4:1a:0f:77:3a:d2:e7:
32:aa:da:19:c6:a6:1e:ce:d3:90:f3:64:68:05:c4:6c:f6:df:
f4:51:c6:3e:d3:ed:f6:d3:75:f5:94:e5:56:8a:1c:80:c1:c4:
82:89:37:13:49:8a:10:ce:7b:c4:b4:aa:1e:1a:ab:e1:b5:75:
ab:9b:16:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:22:00 2025 by rpki-client