Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
File: 1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json)
Hash identifier: V+SkyxvJbnPtuVOXwjR2p0YhU5znRRsfIlUJ/xFeV4E=
Subject key identifier: 56:98:94:80:E5:EF:92:27:E6:18:C3:FD:FD:53:26:55:E5:81:23:8D
Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
Certificate issuer: /CN=d5354321c1254360145eaf25f69938b8df347b31
Certificate serial: 0198936CACADB8BDFCD0630131378C3B8C8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
Manifest number: 0B27
Signing time: Sun 10 Aug 2025 10:00:29 +0000
Manifest this update: Sun 10 Aug 2025 10:00:29 +0000
Manifest next update: Mon 11 Aug 2025 10:00:29 +0000
Files and hashes: 1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: EPvg8+OOpOix+3wqad9+2dOPypeBldxWafHo7WcPA7o=)
2: YLggX1zVSuzWscKfrJDHnrsh8ls.roa (hash: 7Jlfup6Pw3zmGnZu3LgfRRcWJ28VWesMcyWjGhyh+m8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:6c:ac:ad:b8:bd:fc:d0:63:01:31:37:8c:3b:8c:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31
Validity
Not Before: Aug 10 10:00:29 2025 GMT
Not After : Aug 11 10:00:29 2025 GMT
Subject: CN=56989480e5ef9227e618c3fdfd532655e581238d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:03:6a:3a:52:9a:73:e2:77:cb:ff:0c:2c:57:
87:ce:0d:0b:82:d4:40:a7:cc:c1:fb:9e:d0:5f:18:
93:f6:35:23:b4:41:10:91:38:d1:29:96:4f:17:4a:
79:90:d8:de:12:82:4c:1a:83:08:96:db:75:16:25:
f9:57:3a:0a:dc:50:23:9f:4b:b9:ab:fe:b1:68:e9:
af:29:15:74:da:be:8b:84:da:87:1f:58:26:2e:c9:
dc:99:d8:b4:4e:60:df:ea:2f:27:c0:e0:7f:ed:84:
06:f3:0f:63:38:48:fa:bc:02:c8:6c:c0:5e:8b:2a:
5d:69:6b:1b:de:01:80:67:e8:d4:87:2f:b7:b0:65:
d5:d5:2e:b7:ad:ac:21:4c:b8:b0:85:99:bc:c3:d0:
35:f3:13:c3:89:5d:a5:c4:97:00:82:60:7b:55:c5:
f4:cc:32:10:38:c4:b1:8d:98:20:d9:e0:4c:db:fe:
36:9b:b5:02:8f:9e:7e:3f:88:7f:97:df:b9:c5:16:
dc:74:5d:e0:ce:64:06:68:68:ff:32:10:7f:d9:aa:
ec:b7:79:7a:a6:98:3d:46:b7:44:e9:bb:36:05:8c:
4b:84:a7:e7:bc:21:78:bf:ea:b6:51:a6:bf:55:51:
55:9d:ed:08:3e:d3:77:d4:d1:bf:4d:c8:f0:d4:19:
af:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:98:94:80:E5:EF:92:27:E6:18:C3:FD:FD:53:26:55:E5:81:23:8D
X509v3 Authority Key Identifier:
keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:e7:f1:da:7d:fb:fd:d5:59:97:6a:cb:37:37:d8:ad:01:fe:
5d:99:a5:f5:f3:ad:82:39:f7:a9:6e:98:23:20:95:68:be:f8:
8b:51:a8:d9:7c:ac:71:db:42:8e:22:67:eb:12:90:0a:db:46:
49:b9:92:96:0a:45:fb:d9:e3:b8:86:29:ee:62:40:48:7c:86:
da:ba:e7:fc:e5:52:55:f6:f9:34:f7:61:14:f4:de:86:a7:b0:
06:71:ca:64:96:f8:5c:5a:dc:46:b6:bd:b4:18:09:33:37:2b:
5d:da:9a:24:4f:81:d5:69:08:47:95:5d:d4:db:70:37:d0:74:
aa:c4:c1:b6:d0:1f:d0:05:a7:fd:c0:81:84:1d:65:a1:e3:c7:
7b:35:be:06:46:ea:5c:b2:5b:4f:bc:9c:0d:76:fe:7d:03:54:
99:e7:19:a9:dd:e4:d7:48:d0:37:c6:c2:a7:a6:13:c7:f6:25:
7f:cd:fd:ff:ef:06:5c:3c:91:f4:d0:b9:9f:ba:2c:24:ec:6f:
c8:2b:20:6d:25:67:7b:c2:a5:45:13:1a:b6:2f:fa:7c:74:10:
95:a5:ff:f6:11:1e:56:29:47:a0:6b:70:15:1a:3f:24:af:f3:
6c:43:67:7d:f7:28:4f:78:c9:b2:72:34:ab:c4:20:0a:70:1d:
b9:0f:bc:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 16:10:45 2025 by rpki-client