Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: KKiwsRx4B0LYav+x9H8GNgPnvoNC6LxGqisAlj4ZN7U=
Subject key identifier: A8:22:C4:5D:0F:A4:6B:49:B7:D9:15:3E:DF:18:6D:83:31:2D:F8:52
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 0198D92B4FCD7FD1E3FCE7AAC1856DF29B60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 0B1C
Signing time: Sat 23 Aug 2025 23:02:30 +0000
Manifest this update: Sat 23 Aug 2025 23:02:30 +0000
Manifest next update: Sun 24 Aug 2025 23:02:30 +0000
Files and hashes: 1: WJX8pUUgztAx5ziEUO7pdOPaYpY.roa (hash: Zv2hcAwndmbcI8AgNFSDMAAPE42QlNQ0rd+YTdhMpog=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: 7+P+3jMzITX09jQarBfY5IQ/Sf8L0I0PGYWzRuBjc6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 23:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:2b:4f:cd:7f:d1:e3:fc:e7:aa:c1:85:6d:f2:9b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: Aug 23 23:02:30 2025 GMT
Not After : Aug 24 23:02:30 2025 GMT
Subject: CN=a822c45d0fa46b49b7d9153edf186d83312df852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:41:aa:cb:43:52:8d:0a:d4:92:68:01:a6:4c:
59:57:31:cb:a8:7c:80:ae:4d:9c:0a:ca:27:3a:a1:
ba:bc:79:5d:86:09:70:bf:f3:72:33:a3:0b:c2:06:
ff:9b:48:36:21:7b:bc:3d:9f:7a:4c:81:8c:f2:e4:
c5:d1:53:ba:ac:0d:cf:f2:b3:40:57:96:04:5e:db:
f4:3e:6c:96:64:a5:94:3f:9f:4a:f6:8a:d8:84:e7:
67:5b:80:52:e7:0f:7b:ef:2d:9d:4c:17:e3:7c:d9:
15:f2:9c:07:2c:a9:92:54:1d:18:71:f8:53:11:85:
97:14:79:30:28:6e:63:ec:94:e4:d0:70:3e:dc:d3:
f5:55:05:ca:74:02:e2:73:b3:0d:5c:6c:d4:db:1e:
e5:44:90:e5:0e:72:7b:de:19:90:55:6b:b2:c7:42:
9f:50:e9:0b:56:2c:e6:92:8e:07:9e:19:c4:f1:ab:
75:6c:f0:8d:ea:bd:88:95:40:22:97:9f:9b:9c:d8:
61:78:16:40:77:d9:0a:78:70:a3:43:98:14:03:3d:
9a:27:de:f3:c0:62:d1:2a:8a:cc:00:22:14:e1:7e:
51:1a:ab:17:5a:28:73:59:ac:51:22:61:af:2c:62:
1f:69:06:59:7b:3a:75:33:e8:cf:04:de:7e:36:af:
95:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:22:C4:5D:0F:A4:6B:49:B7:D9:15:3E:DF:18:6D:83:31:2D:F8:52
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:7b:15:62:5d:38:5c:bf:b4:f1:83:56:92:fd:4d:5f:46:49:
2d:9d:90:e2:99:58:fd:bf:0a:ce:78:1e:97:69:dd:33:88:5f:
f7:0e:8a:9b:0c:b3:22:fa:d9:6d:97:b2:18:d5:32:61:d3:73:
cf:70:c9:81:07:62:47:cc:b5:f8:94:fd:0e:82:65:4a:f8:b5:
fb:b4:af:23:25:a8:f1:4b:44:fa:6d:55:fa:13:de:26:dd:a1:
82:ab:68:24:4d:e9:e8:3e:ae:98:e1:b2:f1:44:13:a9:43:28:
11:84:b8:63:85:62:72:c2:d2:6f:91:5e:99:e9:18:d8:d9:62:
cc:e1:27:41:db:e0:23:fb:ad:9f:13:36:31:3e:35:0f:aa:1d:
a6:cc:cc:5d:b4:aa:ce:ae:c1:f2:c7:fe:fb:d1:4d:3d:3c:ec:
d3:b4:20:fb:ae:88:4b:15:c4:ee:27:a7:53:73:48:19:dd:5e:
e6:7a:2a:ec:11:da:99:2e:03:29:25:fa:45:5f:40:d5:8a:fb:
59:be:d1:ef:df:f1:cc:84:e3:39:fc:60:d1:72:6c:79:7a:a5:
96:3d:24:b6:a9:1b:d4:64:0a:43:85:27:af:cf:75:2c:c9:bf:
09:a4:5d:a1:31:4c:62:bb:2d:37:e2:70:0d:0b:ac:ad:76:5c:
9a:1a:07:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:28:51 2025 by rpki-client