Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
File: diI4ozxVDMXfAkTz_G49vZHkw54.mft (raw, json)
Hash identifier: cLmfyH9eVDLLsumTAKx1lEeLx5KI3UCZf584rfeHTHg=
Subject key identifier: 0B:81:14:7B:2B:25:52:6C:AE:69:EF:45:71:5D:E8:81:C2:A0:87:0F
Authority key identifier: 76:22:38:A3:3C:55:0C:C5:DF:02:44:F3:FC:6E:3D:BD:91:E4:C3:9E
Certificate issuer: /CN=762238a33c550cc5df0244f3fc6e3dbd91e4c39e
Certificate serial: 01989592A2856EC9C2F004C4C59959DC5915
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
Manifest number: 0A93
Signing time: Sun 10 Aug 2025 20:01:11 +0000
Manifest this update: Sun 10 Aug 2025 20:01:11 +0000
Manifest next update: Mon 11 Aug 2025 20:01:11 +0000
Files and hashes: 1: diI4ozxVDMXfAkTz_G49vZHkw54.crl (hash: lsIQpt970+9G9PHZLHkSG0atOyeluyuoWvYWusvUSvo=)
2: wJoEv1cTcMs89DVqbv88rXmkjBs.roa (hash: dwNiZrwk++xFBCbnEtCywNysmHqCMLzFmgUxU3OD8L4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 20:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:92:a2:85:6e:c9:c2:f0:04:c4:c5:99:59:dc:59:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=762238a33c550cc5df0244f3fc6e3dbd91e4c39e
Validity
Not Before: Aug 10 20:01:11 2025 GMT
Not After : Aug 11 20:01:11 2025 GMT
Subject: CN=0b81147b2b25526cae69ef45715de881c2a0870f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b4:cb:b5:eb:8f:5f:d7:60:52:07:4f:e7:a7:
96:74:b0:a6:7f:e8:41:26:5b:2d:7a:d7:ec:c0:52:
16:11:4f:73:db:3b:d3:c7:6a:ae:a5:83:6c:93:8b:
59:08:70:f2:8f:55:e9:11:ec:d0:67:4b:5c:45:a7:
aa:47:a7:38:d5:50:58:2f:94:ff:26:43:4f:c5:0a:
98:ad:e9:6d:4b:2f:f9:da:9a:8c:c4:af:05:63:47:
b8:bc:30:16:b1:38:bb:90:6d:a6:23:d2:b7:15:54:
10:a9:36:c8:c5:f9:b5:da:5f:63:e9:7c:45:d5:fd:
15:83:f8:5f:cf:14:ff:18:2c:22:31:00:95:51:29:
5c:0c:c6:54:a9:b0:7d:0f:bc:31:c7:1c:37:80:96:
02:40:c5:98:31:6d:dd:45:78:f0:aa:bd:48:e1:19:
d7:7c:4d:5f:20:7c:74:d5:66:38:bb:6f:e1:ea:98:
22:48:75:e0:3b:52:cd:6b:05:d3:51:10:95:85:de:
b8:a7:3a:92:6f:25:99:d0:bb:3e:0c:ed:3e:4d:49:
d5:ba:a6:06:7b:d1:36:0c:f1:02:20:6f:14:7f:93:
31:4a:11:b3:f4:07:8f:aa:7c:0e:78:bc:3a:26:9e:
8b:ac:d1:0c:fa:72:9c:99:2b:65:8c:a5:eb:c0:9a:
e7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:81:14:7B:2B:25:52:6C:AE:69:EF:45:71:5D:E8:81:C2:A0:87:0F
X509v3 Authority Key Identifier:
keyid:76:22:38:A3:3C:55:0C:C5:DF:02:44:F3:FC:6E:3D:BD:91:E4:C3:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:5b:72:de:38:2b:d2:f6:b6:d6:0a:17:d3:a8:70:b2:00:af:
d4:9c:a8:ad:9a:f8:95:9f:a3:04:15:b5:27:15:92:40:0a:94:
48:0f:ff:90:2c:d6:a5:fd:ed:9f:fc:24:36:ed:27:fe:72:f3:
1c:b3:67:2e:98:0a:44:fc:a1:2c:5b:4d:40:df:85:65:f4:9c:
ed:ae:5c:fa:92:f1:2f:ee:a0:00:ae:1c:ec:01:01:88:ed:4a:
67:dc:47:43:cd:a8:ce:1b:01:cb:ed:0a:ed:b4:b7:03:de:d6:
fc:e2:90:1f:ef:e8:01:d3:e0:dd:1f:1a:de:73:28:05:9f:4c:
b3:5f:0e:8b:57:42:c3:d4:1e:a4:d2:58:66:21:60:43:bc:09:
73:6a:8e:ba:74:23:05:0a:a9:d7:61:55:20:64:68:21:bb:3e:
6a:43:22:1e:4e:db:30:4f:24:9c:5e:fe:85:aa:8e:62:92:39:
c2:42:94:b8:c8:d8:bb:bf:13:38:3e:30:c7:3b:42:ff:40:86:
cf:16:eb:0b:c6:fc:7c:77:c4:bb:9d:d8:df:26:0c:60:9f:ca:
42:19:d0:c1:a8:0c:ae:c8:02:db:0d:62:72:df:4f:ee:4d:d0:
0f:1a:a1:ce:45:d6:40:d6:fb:81:10:7b:f0:0f:cf:42:b5:74:
45:36:9a:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:08:46 2025 by rpki-client