Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
File: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft (raw, json)
Hash identifier: Cl4Bs83ldj1nYBo5f+C3dRR6DzRewp18z7ydUusbf1A=
Subject key identifier: 6A:59:6D:41:B7:91:72:E3:F5:54:8C:91:95:6F:B5:4D:63:96:88:42
Authority key identifier: 0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
Certificate issuer: /CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Certificate serial: 0198D54DC04A4CFC7977BC4A4F9F33CCD945
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
Manifest number: 05BC
Signing time: Sat 23 Aug 2025 05:01:39 +0000
Manifest this update: Sat 23 Aug 2025 05:01:39 +0000
Manifest next update: Sun 24 Aug 2025 05:01:39 +0000
Files and hashes: 1: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl (hash: EIpL0Owl+IWfxfZK1a8Xfdv63/lmro4ltPtcMBde0Uo=)
2: qj9pJEL6aLQRmJQwwNdSHRT6Q7o.roa (hash: YXXU3MHXgJerIl9CeLyHeV8Hu3RdrFxQkf90wVwUCHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:c0:4a:4c:fc:79:77:bc:4a:4f:9f:33:cc:d9:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Validity
Not Before: Aug 23 05:01:39 2025 GMT
Not After : Aug 24 05:01:39 2025 GMT
Subject: CN=6a596d41b79172e3f5548c91956fb54d63968842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a3:63:9f:03:51:72:57:e4:d6:bc:f5:48:81:
9d:2a:19:75:0e:2f:08:74:7e:2f:33:f8:43:40:09:
9e:41:ab:00:5b:f2:c5:c3:ad:3b:63:4a:7e:13:d0:
8f:ef:a4:41:ad:dc:88:d5:b6:c5:88:25:90:18:92:
91:d7:21:d5:c9:a0:7d:d9:84:b9:25:25:8c:b8:3c:
8f:04:21:c6:3a:ee:4b:b7:6e:07:da:e1:72:fd:15:
09:ae:fd:ed:4e:34:14:4a:86:06:53:be:d9:dc:24:
65:44:c4:ba:b7:59:a6:ea:96:b3:78:fa:e4:fb:33:
b5:c1:25:c4:40:7c:77:fc:b6:f9:e0:cb:97:27:b4:
c7:ff:8b:30:79:56:64:37:14:a4:4b:13:89:65:78:
4a:a5:8e:a0:11:9b:45:62:2c:ce:aa:2e:f4:fb:b0:
a8:01:e9:aa:ac:d9:d2:4f:fb:50:1a:bf:47:f0:1c:
ea:a0:1b:d1:ab:4e:4a:24:4a:5d:da:32:5c:26:22:
1c:34:7f:ba:e8:14:b7:5f:ae:1c:33:dc:ec:d7:1b:
73:e8:bc:f5:3f:93:ce:b6:18:e9:49:2a:02:ee:21:
33:67:2e:1e:2b:be:82:4f:39:0d:4d:a8:63:ab:5e:
04:b6:f1:88:07:a2:89:f9:a1:c2:e1:0e:3d:8e:6e:
21:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:59:6D:41:B7:91:72:E3:F5:54:8C:91:95:6F:B5:4D:63:96:88:42
X509v3 Authority Key Identifier:
keyid:0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:01:6d:ad:8d:c3:f9:f4:20:e0:9c:a1:73:3e:ba:d3:10:9c:
dd:b9:24:e0:05:e4:a6:37:b1:e8:74:2e:3a:71:97:f3:5c:ed:
99:19:0d:34:43:42:41:1e:ac:a5:69:83:42:e3:d1:90:7c:cf:
c5:69:1e:e0:00:9e:3f:37:52:34:50:1c:d3:c5:3b:23:35:fc:
af:0a:43:4b:0a:c6:f9:dc:aa:90:47:c7:92:01:64:fa:da:92:
c7:15:95:2b:a7:bc:87:1e:00:04:5e:c9:63:57:17:a0:08:50:
bd:e4:0f:bd:d0:6e:1c:8c:b5:dd:01:e7:94:68:b0:41:af:db:
12:87:a4:5c:48:88:fa:6d:6f:a0:64:36:d0:11:9f:82:33:24:
45:a1:35:d4:b4:9b:f2:52:7d:38:14:1d:c6:ba:82:5f:54:ca:
2a:77:8a:1a:f0:9f:ca:a3:34:03:a3:3a:00:df:1f:54:3d:dc:
aa:ca:61:0d:fa:14:12:80:84:32:e2:79:e7:c4:d4:bb:7c:5c:
33:00:cb:33:66:50:a3:d8:11:e3:d0:2d:ee:9d:b3:18:68:b2:
f1:91:af:cf:de:d7:93:00:ed:78:93:ec:4e:70:15:b7:76:15:
16:5c:e3:6b:30:94:6e:06:a5:3a:1b:6e:1c:1c:2c:a5:35:37:
62:5a:0c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:49 2025 by rpki-client