Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
File: o4v4pSbaAFbVPHKfvP7bivH0hJs.mft (raw, json)
Hash identifier: RtQEC5Q9lkb1jJa6ETnN2G5KC17ytf9cv27hxYg+owE=
Subject key identifier: B9:BE:C4:37:40:67:72:A8:6D:90:05:70:B9:D1:DE:53:36:4C:72:21
Authority key identifier: A3:8B:F8:A5:26:DA:00:56:D5:3C:72:9F:BC:FE:DB:8A:F1:F4:84:9B
Certificate issuer: /CN=a38bf8a526da0056d53c729fbcfedb8af1f4849b
Certificate serial: 0198D47310A5387046F947092D18631C908B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
Manifest number: 0411
Signing time: Sat 23 Aug 2025 01:02:47 +0000
Manifest this update: Sat 23 Aug 2025 01:02:47 +0000
Manifest next update: Sun 24 Aug 2025 01:02:47 +0000
Files and hashes: 1: o4v4pSbaAFbVPHKfvP7bivH0hJs.crl (hash: 5x7cncgDtjGge6M74A2uQAbt9VREObV+EeuNJdJOIzs=)
2: p2sBhjkKrSOlFMpQrw-wv6_TqKg.roa (hash: ldQS4P3nrNFNOkVsta5Vmi47wIthwLabohDFSWJ5xpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:10:a5:38:70:46:f9:47:09:2d:18:63:1c:90:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a38bf8a526da0056d53c729fbcfedb8af1f4849b
Validity
Not Before: Aug 23 01:02:47 2025 GMT
Not After : Aug 24 01:02:47 2025 GMT
Subject: CN=b9bec437406772a86d900570b9d1de53364c7221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a7:b7:d1:28:45:6d:0d:8b:9b:9e:a8:83:88:
4b:72:73:24:75:67:74:49:c5:29:44:b4:36:50:1d:
b3:fd:7f:a7:51:ef:67:d2:95:35:32:6d:71:83:76:
03:8e:9e:ed:ea:39:1f:c2:77:bb:aa:7f:b9:7d:3f:
88:3f:ab:f6:f7:5b:4a:a6:a3:2a:18:c1:2f:9c:0e:
a2:35:34:c4:f8:2a:8e:f8:dc:b0:a6:91:eb:ec:0a:
2a:9c:b3:3e:94:f1:ee:85:a6:99:56:3e:98:89:4f:
be:00:10:ed:f7:5d:02:ac:de:4a:da:1e:70:48:e1:
c9:15:8b:e9:88:47:c8:19:ec:77:c6:3d:96:4f:60:
4a:df:b3:2e:cd:41:16:ea:4e:be:63:36:69:e8:88:
0a:bf:cb:c4:63:ce:96:c3:30:4d:ee:0f:61:4a:27:
45:96:dc:22:46:c4:4f:2a:e7:a1:2c:58:cf:22:c4:
58:f8:23:49:f0:87:4e:4e:a9:50:e7:b6:07:2c:b9:
27:82:d8:db:9f:a0:82:76:85:08:c9:55:eb:c0:29:
5f:8c:fb:fa:64:62:3c:d6:ad:2a:26:d8:cb:fa:ae:
d2:0e:ff:70:fb:28:dd:7e:0c:2c:10:59:c1:1f:53:
c5:82:78:ed:29:20:37:91:17:74:cb:3d:a7:9d:b6:
e4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:BE:C4:37:40:67:72:A8:6D:90:05:70:B9:D1:DE:53:36:4C:72:21
X509v3 Authority Key Identifier:
keyid:A3:8B:F8:A5:26:DA:00:56:D5:3C:72:9F:BC:FE:DB:8A:F1:F4:84:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:04:a2:46:72:43:58:da:69:a5:cc:99:2b:c6:65:0a:dc:37:
41:61:33:e5:5c:06:62:97:13:b9:1a:ae:33:ba:aa:6b:bc:90:
bc:6e:2e:24:67:6a:98:d7:79:10:b0:d2:a6:a0:2e:6f:20:a0:
d3:ef:d6:7c:4f:76:f1:9e:9f:12:fc:1a:18:cb:73:5a:f1:51:
fa:72:d3:e2:7b:52:2c:11:36:d1:58:0c:6a:39:3e:cc:eb:71:
48:c8:75:0e:14:f7:f6:d6:26:f4:76:ee:ce:de:78:02:09:ac:
e6:78:a2:79:05:eb:c8:63:97:1e:6b:f4:4f:e3:2d:8c:cf:a9:
4f:66:2c:db:d3:07:a2:f3:b3:2e:26:d4:51:35:b9:3a:8e:f0:
62:65:47:53:bd:f1:ea:78:9d:24:20:ea:35:f1:88:f6:58:5f:
16:bb:fb:05:a0:59:82:9e:e5:18:60:d1:3b:32:45:60:cc:3e:
4c:6d:13:2c:88:43:34:b0:26:16:31:2f:6c:70:85:50:89:b1:
d2:37:52:a0:c5:07:c3:0f:2d:e0:3c:6e:d7:83:b6:4d:54:b6:
01:5b:27:ba:0a:85:b2:e4:b5:10:05:c4:6b:ee:c8:cf:03:ca:
1f:f6:97:4a:0d:8d:a5:0e:3f:a9:b1:01:d9:17:cd:25:09:13:
f2:5e:10:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:27 2025 by rpki-client