Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
File: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft (raw, json)
Hash identifier: 8ee9pitMKtEvi2yh9nlin4MiTsJKUwLh1+Y4+VBwzg4=
Subject key identifier: B5:4A:DE:B9:0F:FC:A6:66:2C:E1:4E:56:8F:3E:5F:D2:1F:62:A2:DB
Authority key identifier: D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
Certificate issuer: /CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Certificate serial: 0198D4E09B3BB3B0A821003F221459B9B4D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
Manifest number: 049F
Signing time: Sat 23 Aug 2025 03:02:25 +0000
Manifest this update: Sat 23 Aug 2025 03:02:25 +0000
Manifest next update: Sun 24 Aug 2025 03:02:25 +0000
Files and hashes: 1: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl (hash: hV39wKPHRAPjDnF1lGXhdQMiUuHkWT1auA43aQxAllY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:9b:3b:b3:b0:a8:21:00:3f:22:14:59:b9:b4:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Validity
Not Before: Aug 23 03:02:25 2025 GMT
Not After : Aug 24 03:02:25 2025 GMT
Subject: CN=b54adeb90ffca6662ce14e568f3e5fd21f62a2db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:aa:ea:24:06:c1:93:c3:6d:a4:8b:ae:b4:07:
e2:e0:48:21:3e:ce:a3:68:4a:70:33:17:1a:2f:53:
0f:30:bb:d7:6f:48:7e:30:1b:4e:a0:57:5e:77:06:
a0:02:ed:30:d1:af:bf:b3:19:59:9c:54:0d:20:a0:
dc:56:a5:93:40:7f:a4:d5:24:8b:e0:ba:92:42:c5:
4d:fb:f7:2b:b2:44:43:8e:2a:70:09:ac:f3:21:ce:
9f:f4:2b:dc:22:f3:ce:bd:07:c2:aa:6f:13:82:6f:
f4:0f:d1:72:b8:48:6a:07:71:92:db:e2:e4:7e:78:
1e:34:ea:d9:ce:e9:07:5d:e0:52:ff:a3:25:e3:aa:
c9:d8:0e:45:7f:b0:14:d9:3a:37:78:b6:22:f9:a6:
11:0e:ec:e1:95:3d:7c:4f:34:c3:19:88:a5:10:f7:
2f:a2:66:f8:f4:5d:c2:a9:a5:80:9b:c6:64:94:fa:
ec:1e:c3:0b:74:c1:e5:4e:91:e0:be:3e:d6:78:e4:
8a:fe:10:4a:cc:7d:66:ae:29:f6:9a:1a:66:47:a1:
58:29:fd:7d:a6:d2:bd:8a:64:37:53:3b:46:8e:8c:
42:de:9d:f1:8d:02:0b:93:cc:ac:ff:9f:68:c5:4c:
bb:36:69:e7:00:4f:b3:fe:ec:b7:4e:73:bf:e8:e2:
1b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4A:DE:B9:0F:FC:A6:66:2C:E1:4E:56:8F:3E:5F:D2:1F:62:A2:DB
X509v3 Authority Key Identifier:
keyid:D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:3c:e7:de:b6:a2:1a:c9:69:a2:da:1b:c7:f3:f2:75:8a:c5:
7a:be:ae:cf:35:b4:13:f3:63:b9:3f:51:bd:44:2b:8f:5a:21:
fb:00:ca:86:f6:38:c1:63:bc:5e:56:7f:36:39:7c:a2:fd:97:
2d:16:f2:d6:0e:e7:bb:03:65:c4:18:f0:04:8e:72:ce:8c:bb:
95:cf:7d:cc:64:f7:0d:9d:cc:ce:aa:9c:14:b3:88:1a:f1:ba:
f6:51:95:63:12:82:a0:3e:a0:5f:0e:b3:87:e2:b5:59:24:f9:
97:dd:7c:2b:f2:28:2a:ff:39:be:77:1c:10:ab:c0:5c:08:4d:
46:b7:26:9f:ca:80:5e:53:34:3b:5b:d0:c1:7d:8d:0f:36:e0:
97:0a:de:11:ca:a0:4d:f6:ec:98:06:3f:43:a5:6f:59:05:c8:
80:4f:e5:1c:aa:de:bd:c5:7d:39:83:2c:2f:87:59:a6:1c:ff:
c8:55:4b:68:6a:61:1b:ea:f9:81:ad:2c:96:d0:eb:ab:c5:72:
26:12:46:64:7c:28:1e:5c:46:ef:00:01:a7:46:32:71:82:41:
3f:20:fc:10:e2:6d:0f:1f:6f:2c:71:e5:dd:7f:4f:aa:db:e9:
9c:56:f3:24:2b:46:ba:9f:36:a5:5e:b3:02:a4:37:ff:cf:83:
d8:0e:f5:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:36:40 2025 by rpki-client