Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: JKMjEeJmHsUQBkI5z8MXKuQBIhNOHAtix31NbCyhuds=
Subject key identifier: 5E:A5:A6:E8:5F:94:EC:9F:BD:7D:00:E3:98:82:31:B3:8D:8F:AE:DC
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 0198D4A7D73C11FFD45995636B084F3BBC29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 029C
Signing time: Sat 23 Aug 2025 02:00:25 +0000
Manifest this update: Sat 23 Aug 2025 02:00:25 +0000
Manifest next update: Sun 24 Aug 2025 02:00:25 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: lkb17h2YxJxklT8+igg3VU6nkq/vKhOL2vPd88Xn9Fc=)
2: LL8JcAdqtBuww975zCJ3NT8wbIo.roa (hash: OazqFiciLO+01js5WnVLTxcyLBf+8JShIpJGoJGbyKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:d7:3c:11:ff:d4:59:95:63:6b:08:4f:3b:bc:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: Aug 23 02:00:25 2025 GMT
Not After : Aug 24 02:00:25 2025 GMT
Subject: CN=5ea5a6e85f94ec9fbd7d00e3988231b38d8faedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4f:c1:98:4b:60:e4:7a:97:18:17:ef:72:23:
e3:03:90:58:dc:c0:28:04:63:24:94:b5:9e:7d:2c:
dd:50:d6:15:7b:14:8c:5b:d5:35:bf:95:c9:21:28:
8e:7e:67:b4:c5:88:04:21:b4:2b:c9:d9:45:48:b9:
5c:f7:c2:5f:3e:39:94:d3:52:9a:b8:b8:c7:99:c3:
25:93:6e:ad:97:f9:cd:b1:58:8c:38:17:19:61:cf:
ed:a1:46:33:ba:80:a2:fd:c4:a6:89:f1:77:c9:63:
74:4f:14:e5:03:a9:e7:1e:2f:81:6c:c3:68:af:01:
01:1d:ae:4f:30:c6:75:82:93:69:9f:65:f2:7a:31:
2a:e2:3a:6c:0e:51:7a:80:fd:d7:a0:a1:c8:b3:33:
51:03:fb:b8:c1:a5:89:bf:ba:ac:42:be:2a:66:04:
10:a5:48:b5:0e:c0:18:d3:6f:e5:08:c8:e0:21:37:
30:28:0e:ae:cd:45:e4:a4:68:d1:17:b0:1b:b7:9c:
5f:c7:b7:93:21:be:c9:87:ae:b9:2a:3e:cb:d7:3b:
89:87:0d:d4:26:02:e0:6b:88:16:01:5e:6e:4b:20:
8f:83:ca:bf:71:ae:f8:cb:64:19:e9:72:1c:76:39:
93:61:6b:bd:54:06:62:2e:fd:3f:0d:ed:1f:d2:19:
ee:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A5:A6:E8:5F:94:EC:9F:BD:7D:00:E3:98:82:31:B3:8D:8F:AE:DC
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:2e:c6:4a:d9:16:a0:a4:89:7b:bf:02:a1:9e:08:56:82:6b:
f5:98:c1:59:b3:e1:af:26:a2:82:0e:95:ff:41:78:d1:23:aa:
48:61:7c:a5:b2:96:1f:17:6c:e0:cc:dd:b4:30:ee:37:cc:3f:
bb:81:96:b9:40:d9:31:19:11:95:ac:f1:c3:69:0c:1f:b0:25:
90:5f:21:40:38:f9:87:8a:d6:df:99:9c:48:12:3f:3e:88:b2:
54:de:df:a7:8f:85:cd:df:54:4e:c4:9e:e8:5f:fd:3e:88:1e:
56:df:e7:0c:98:e3:78:c7:0f:5c:bc:46:d9:51:14:1d:95:eb:
21:5f:1e:a8:76:9c:b0:16:4a:73:bb:c5:05:77:54:5d:ca:35:
5f:26:00:88:34:07:90:45:a0:9f:f9:c0:62:e6:7d:9c:68:20:
f9:f5:47:15:dd:91:df:64:8b:96:c5:e2:78:2a:d9:0c:e3:51:
54:4a:a4:fb:20:f4:17:a1:62:41:e9:c5:18:ff:be:40:fd:a9:
89:d6:cf:5e:50:ec:18:e2:19:91:3a:d2:af:57:70:19:1f:d4:
25:c6:ac:73:e1:cd:c2:d1:10:6c:d8:53:08:72:21:79:7c:0f:
57:ff:73:0c:79:5e:21:da:c3:31:78:ea:3c:4b:4c:04:90:8a:
a7:9d:c9:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:09 2025 by rpki-client