Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json)
Hash identifier: B8xDnLhb2H1GZF4K4flTjcEbvpPcz0vDIRbcziVxWBc=
Subject key identifier: A4:A8:75:E1:F8:24:EF:CF:37:25:80:92:38:CD:62:82:07:6A:E3:D3
Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Certificate serial: 0197B8210E1B38D296F1734F093D4A85310A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 20:01:03 +0000
Manifest this update: Sat 28 Jun 2025 20:01:03 +0000
Manifest next update: Sun 29 Jun 2025 20:01:03 +0000
Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: j7Lat643k1Fe45fBCcdzrJ1oF5xxZbU+uMEdMyQF1Jg=)
2: uFIkyOKWSzQfZzP96vWM093yaBY.roa (hash: TWsqJU2I8/yV3h8FtJmMbNc3AlR1EJP1BU5hPExE0mk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:0e:1b:38:d2:96:f1:73:4f:09:3d:4a:85:31:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Validity
Not Before: Jun 28 20:01:03 2025 GMT
Not After : Jun 29 20:01:03 2025 GMT
Subject: CN=a4a875e1f824efcf3725809238cd6282076ae3d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:39:89:4f:ff:bb:68:da:18:c3:fd:75:91:69:
0c:ea:61:de:7c:c7:d0:47:8b:65:b6:fa:16:e8:1a:
66:9d:0c:ca:ac:30:86:9f:47:95:91:52:fa:7f:70:
d3:3e:b2:05:0a:0e:3e:80:9b:18:a8:09:17:df:cc:
1e:b0:03:f8:90:32:f6:89:8b:00:b9:8f:90:a0:c0:
62:f8:aa:8b:85:38:67:eb:02:a8:00:ae:73:b9:b9:
75:c1:0e:e1:eb:d1:14:e5:99:dd:f3:0c:f7:94:f0:
f2:5a:40:07:d7:b5:12:2f:0f:92:ce:59:dd:45:2e:
31:0b:c7:41:ab:d1:18:85:c8:22:a7:9a:bb:90:3b:
0a:bb:f4:77:8f:85:52:a8:d5:a6:af:df:93:19:27:
b4:ad:fd:cc:67:17:76:9e:31:e3:79:82:76:c6:ee:
a1:85:a3:eb:a6:fb:26:d5:49:30:7f:a3:25:62:3e:
c0:61:17:b7:eb:cb:6e:c3:cd:7d:f4:65:32:d8:4b:
aa:73:e1:79:2f:03:f7:c9:e7:c2:0d:99:9e:53:cb:
95:db:66:e0:f8:69:68:a9:4e:3e:e4:f2:02:99:31:
cc:b6:7e:a1:de:22:98:d2:37:f2:06:0e:5e:1b:c7:
fc:25:19:0a:d2:86:b2:f7:d2:a5:69:f2:e6:0e:e8:
a5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A8:75:E1:F8:24:EF:CF:37:25:80:92:38:CD:62:82:07:6A:E3:D3
X509v3 Authority Key Identifier:
keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:46:9a:e1:72:57:d6:6c:0d:58:7e:fc:27:7e:17:97:13:cc:
22:dc:d2:26:81:f4:d5:2f:93:39:20:f5:2c:b5:6f:aa:cf:3b:
dd:9e:fa:cc:88:7e:ca:a6:ee:f4:c0:a0:7b:cc:20:16:b0:22:
52:72:ca:06:9a:9b:ca:3f:3b:02:4a:7a:68:1b:66:11:f0:7c:
81:5b:c5:65:2e:5a:d9:00:45:87:54:39:db:39:d2:ba:ad:6c:
a6:2c:36:4b:a8:93:72:89:8b:7a:b1:6a:4a:bd:d5:8b:90:8a:
32:6e:a5:2f:bd:95:09:2b:ea:4e:3f:05:dc:1b:90:64:49:a9:
13:60:8e:8b:91:03:2b:51:d9:6f:2c:c9:e5:a5:18:5a:b0:a4:
cb:1c:bc:4a:7a:ae:06:a2:0d:76:6b:5e:4a:a5:30:a3:c2:bf:
63:68:b1:67:5b:39:a6:9e:a4:0c:1d:be:4c:0f:88:6b:40:cc:
4f:55:2c:ef:e1:04:47:12:f6:13:a1:93:43:f9:a5:a3:b1:20:
b3:62:b0:53:4d:66:65:b5:f1:e7:f5:42:6c:a3:e6:34:38:b9:
e2:84:f9:b9:69:a7:ad:49:94:8b:20:61:b0:d3:38:61:04:c4:
70:34:db:1b:1c:92:89:27:1d:ec:ed:c6:2e:f4:7a:6d:c2:4d:
0a:7f:b4:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:20:18 2025 by rpki-client