
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: 5OSua6EwAx9sueb6P/ifVC0yQw92FbFXPF3sf3XXKa0=
Subject key identifier: 8A:53:0B:8B:53:55:51:87:70:2A:3F:CD:C1:F6:37:E3:96:47:C2:7E
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 0198D65F4E74817E6F0D7E7BCC4CB0128D73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 1108
Signing time: Sat 23 Aug 2025 10:00:26 +0000
Manifest this update: Sat 23 Aug 2025 10:00:26 +0000
Manifest next update: Sun 24 Aug 2025 10:00:26 +0000
Files and hashes: 1: 0CceuujOUN7fI6SJWiU4I3JvZeo.roa (hash: ReNIag9nA9bjr82rfcj5JjzPGdjpj3RK7GRwiAamY6Q=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: L7RgNCpqDlXNsixmsDeOXFjEVL2+sjD/IWxXW9s4muc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:4e:74:81:7e:6f:0d:7e:7b:cc:4c:b0:12:8d:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: Aug 23 10:00:26 2025 GMT
Not After : Aug 24 10:00:26 2025 GMT
Subject: CN=8a530b8b53555187702a3fcdc1f637e39647c27e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:06:fb:7d:f7:df:9c:d5:ac:c7:1c:df:9a:36:
48:c8:a2:8c:84:15:50:d5:d6:e7:a4:87:78:3a:4a:
82:ef:c9:fc:14:9b:69:ec:8a:ff:47:44:0e:f6:93:
77:11:28:4a:76:ee:76:65:45:bc:e4:48:ce:75:33:
90:c0:99:a5:ab:b3:31:e4:3b:40:bd:5b:2a:94:98:
91:14:af:13:29:51:d0:bb:64:78:0a:86:fe:c0:f2:
0b:fb:ce:43:5b:02:dd:6b:7c:f6:ab:14:9e:e1:c6:
cb:dd:84:3d:cb:ec:82:74:e2:9c:21:b3:64:c1:50:
b6:28:e7:9d:ec:3e:7b:96:8f:6b:21:f3:29:22:38:
5b:9c:71:d8:32:a3:da:1b:9c:a3:ae:1a:91:7e:2b:
f9:e5:cf:f6:50:b9:44:4d:4e:5a:27:c5:60:98:b8:
6e:99:51:12:2f:fc:df:98:45:e8:54:43:c0:08:72:
d0:3d:96:65:50:38:fc:14:f4:09:76:73:a3:af:f0:
23:e0:5a:e0:a9:f7:a3:16:11:0b:27:69:28:82:f5:
fe:e8:f0:31:3d:94:84:29:de:89:fb:29:4e:e3:5a:
d3:cf:7f:dc:84:db:67:8d:e5:76:97:fb:5a:52:09:
fa:cc:1d:73:dc:ae:1d:38:c1:fb:14:9c:ea:f3:a7:
42:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:53:0B:8B:53:55:51:87:70:2A:3F:CD:C1:F6:37:E3:96:47:C2:7E
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:d7:6a:d1:69:f2:34:d1:a6:33:c1:ef:6d:d6:f9:b4:93:a5:
91:e4:af:d7:d6:a6:42:aa:c4:45:de:ed:37:07:65:9c:a5:7f:
1e:19:97:cf:5c:aa:cc:f0:1c:5a:40:ac:88:91:58:b8:c5:c1:
34:8a:bb:6f:ad:59:9a:8c:42:c0:3e:cd:92:ec:f8:ce:d7:f9:
9c:89:7f:2a:4e:45:62:0c:5a:82:0d:8f:7b:ed:94:41:bc:f0:
7b:7f:79:ae:13:5c:c7:52:02:9d:47:63:84:09:c7:76:6c:07:
8a:c1:b4:6e:8f:5d:90:c6:80:8e:d7:45:2c:fd:9b:65:f0:7a:
cf:48:5b:21:a4:a7:0e:c2:ae:8c:30:6c:09:e4:72:9f:63:93:
9e:c8:91:e9:42:1e:c4:af:98:9e:02:70:b2:32:ca:74:2e:ca:
37:ed:7b:97:71:d3:fc:15:1e:86:1a:59:4f:d5:a5:0a:4f:de:
47:42:6e:a8:25:78:df:3a:65:f3:a4:b4:fc:ce:f5:81:2f:be:
2a:60:d1:2c:21:8e:06:2f:ea:a5:83:63:95:e0:ff:04:35:98:
58:ff:d1:d5:f1:ad:ca:99:f7:58:6f:65:47:47:49:9d:13:1e:
6f:22:84:23:bb:49:36:ac:ed:5e:47:57:b5:72:a5:cb:b4:d2:
03:6a:2a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:02:03 2025 by rpki-client