Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json)
Hash identifier: ugQsJQB+FnaLx3mKAWfeiqJqcIQ0TB9ae0h2gg+zRJ4=
Subject key identifier: 75:2E:F4:00:B2:EB:05:1B:3E:FE:41:A9:04:24:04:66:CE:B4:99:DE
Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Certificate serial: 0198D404BD30AA0F9390A503C57AB5EDA836
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
Manifest number: 1647
Signing time: Fri 22 Aug 2025 23:02:17 +0000
Manifest this update: Fri 22 Aug 2025 23:02:17 +0000
Manifest next update: Sat 23 Aug 2025 23:02:17 +0000
Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: xBceYObiY0yRHdx2JwaEPQmXlpuP6/GIkIWogjXiItU=)
2: uFIkyOKWSzQfZzP96vWM093yaBY.roa (hash: TWsqJU2I8/yV3h8FtJmMbNc3AlR1EJP1BU5hPExE0mk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:bd:30:aa:0f:93:90:a5:03:c5:7a:b5:ed:a8:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Validity
Not Before: Aug 22 23:02:17 2025 GMT
Not After : Aug 23 23:02:17 2025 GMT
Subject: CN=752ef400b2eb051b3efe41a904240466ceb499de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:90:ef:89:90:ef:6f:8e:85:b8:f2:df:75:7e:
21:7a:40:a3:62:d4:bf:83:e7:72:ae:ba:38:17:95:
bb:17:4a:54:d7:91:74:78:6c:78:a4:5d:b2:ec:b4:
40:e5:0d:0b:97:85:f1:5d:ee:53:b0:a6:16:ec:59:
3e:0c:5a:ab:ee:e5:13:1e:4d:7c:bd:35:a1:98:47:
cf:6a:39:bf:1f:24:8d:50:1c:2f:8c:4a:50:de:49:
65:88:06:97:ce:09:fd:74:bf:f3:3e:4f:a3:45:fc:
d7:57:ca:ab:b3:69:8d:6e:5d:d7:fe:8d:0b:f0:13:
90:f5:81:86:cc:d0:8f:1f:91:91:d5:31:f6:b8:73:
00:f2:a8:05:9d:76:08:09:03:60:86:ce:e5:88:7b:
c3:da:22:16:45:16:15:13:36:4b:6a:94:65:cf:67:
a8:41:6a:db:c1:99:e4:c4:b5:16:85:21:2a:49:c5:
2f:a8:8b:a2:77:9f:f3:92:5a:71:44:b4:74:5c:e6:
b3:b0:36:80:dd:ef:bc:11:49:24:d6:7c:26:0c:70:
31:35:5f:83:d7:58:2a:53:f7:14:92:7f:f3:5d:b1:
93:13:02:59:7b:ac:d9:39:06:c0:f6:d6:ba:28:82:
ef:2a:96:32:a0:97:d3:98:d1:dc:80:61:97:f1:e0:
73:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2E:F4:00:B2:EB:05:1B:3E:FE:41:A9:04:24:04:66:CE:B4:99:DE
X509v3 Authority Key Identifier:
keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:d5:bd:13:e8:09:57:3f:d5:dd:a3:1e:58:e7:a6:b9:87:be:
c4:73:1b:7f:38:c5:91:08:8c:93:ba:f4:5a:c1:6d:99:a0:40:
0f:4e:e2:2b:60:ee:75:84:b8:64:27:6f:6b:b1:ae:6b:25:8a:
75:30:dd:a9:25:c5:47:a2:30:92:f6:93:f8:60:ee:1d:60:d2:
e5:c7:25:3d:2d:7a:ff:27:93:78:61:33:06:52:fa:0b:9e:3a:
0c:37:0b:d3:a5:6f:35:2a:27:51:b1:30:db:7f:e4:21:e6:b6:
4d:25:34:e2:d4:68:d2:48:ab:39:4c:5f:67:f5:cf:66:4a:32:
b9:bc:34:b7:d3:f3:33:c6:b9:f8:e0:fe:d5:d4:53:b7:75:87:
58:1a:fc:75:f4:ab:d4:d2:bd:7f:b7:cf:7a:5c:94:74:30:04:
96:0d:5c:31:fe:74:99:df:dd:e0:aa:0e:8d:b2:92:8f:6c:a3:
7d:0b:22:83:3b:13:b5:04:d0:1c:6d:93:13:c7:fb:1e:ea:d2:
e0:7c:ab:1e:43:14:d2:bf:d7:74:d0:0c:11:d5:77:f4:d3:ac:
fe:a6:8a:41:be:0d:63:ad:d4:0e:a9:a4:6e:78:48:a9:41:d5:
7c:28:4e:7c:d3:38:4b:88:f1:d7:1a:51:2d:74:35:2e:8c:15:
cf:22:7b:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:17 2025 by rpki-client