Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
File: 0KHbRmz4CCBik9B-ZfISH-tJoz4.mft (raw, json)
Hash identifier: 6mZO2VAwPNSYjVGSUxfIN0aEnGLB1XujlUBR20KwbQU=
Subject key identifier: 4D:50:24:C1:AB:6B:01:9F:AE:49:81:A9:13:CE:13:CB:AB:37:2B:68
Authority key identifier: D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E
Certificate issuer: /CN=d0a1db466cf808206293d07e65f2121feb49a33e
Certificate serial: 0198D5BB7A3F519312B298C1ED1BB2430AD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
Manifest number: 1438
Signing time: Sat 23 Aug 2025 07:01:30 +0000
Manifest this update: Sat 23 Aug 2025 07:01:30 +0000
Manifest next update: Sun 24 Aug 2025 07:01:30 +0000
Files and hashes: 1: 0KHbRmz4CCBik9B-ZfISH-tJoz4.crl (hash: Enz2xTJCF0hxQQPyPkyp3YbA3uVIMY/AX6wusqXA1u4=)
2: wC7Ohmh2aveKOZ7_Cl4a1vLomLo.roa (hash: hPiN8yhRbkkwhBqX7IPJBoamojlDhfcUtcDIIbpri30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:7a:3f:51:93:12:b2:98:c1:ed:1b:b2:43:0a:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a1db466cf808206293d07e65f2121feb49a33e
Validity
Not Before: Aug 23 07:01:30 2025 GMT
Not After : Aug 24 07:01:30 2025 GMT
Subject: CN=4d5024c1ab6b019fae4981a913ce13cbab372b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bf:34:be:91:98:ad:06:a6:a6:54:65:5c:35:
a5:b4:44:03:66:52:c6:d4:be:70:b7:6a:fb:98:a2:
99:fd:86:82:a9:a0:d3:4e:ba:b2:e1:72:f6:0d:a4:
ff:76:72:44:09:0d:d3:2b:2f:67:94:c9:eb:34:cc:
47:e7:9f:25:72:93:eb:f3:42:e3:22:21:cf:32:f8:
87:e5:c0:15:51:ed:9d:2c:57:f0:36:90:c9:74:df:
4f:e8:87:bd:8a:73:4c:13:ed:ef:e2:0c:06:56:80:
98:01:e8:c2:75:d9:2c:bb:e6:02:c1:b7:c0:1d:e5:
c5:65:bb:e9:e9:7b:ef:0a:72:e9:6e:01:d2:b0:f1:
a9:b3:18:bf:b9:07:64:9c:e0:a0:18:b3:bb:61:ec:
eb:51:be:db:b0:f7:fb:91:b1:0d:f9:fd:b9:23:11:
8a:80:c7:b2:80:ee:88:b8:d2:c0:eb:59:60:a9:85:
0d:cf:0c:bc:1d:d2:61:e7:82:21:ed:d2:6c:04:9f:
e6:57:d9:85:40:e4:7a:24:bf:84:29:0c:1b:16:40:
b3:ba:9e:5b:7b:53:a7:a7:3c:a9:9b:4e:c8:58:67:
96:4c:7c:71:4e:19:26:ea:04:5e:aa:17:92:1b:3c:
a1:d8:37:88:c3:ab:ba:e9:8c:56:7d:07:32:85:b3:
7a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:50:24:C1:AB:6B:01:9F:AE:49:81:A9:13:CE:13:CB:AB:37:2B:68
X509v3 Authority Key Identifier:
keyid:D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:28:e0:e5:3d:b9:2f:a7:ed:91:f4:75:d4:b1:93:bc:d9:41:
86:20:87:05:ed:90:9c:a8:1b:e8:23:d5:92:a9:7f:92:93:d6:
cd:a4:2d:45:9e:f0:76:c8:e5:64:2c:23:00:22:7f:68:f5:6e:
1d:b3:5a:a8:34:09:b7:0a:62:b3:40:b5:ee:dc:03:20:61:cd:
10:3c:35:34:b5:70:19:ea:3f:c6:d1:7c:48:80:9d:cc:83:e1:
1c:55:49:c0:a1:96:eb:74:9f:1a:f4:12:9b:6c:28:fa:da:57:
01:b5:c7:17:49:9e:48:11:3b:2f:cd:5f:be:35:0f:a8:a1:3d:
cd:51:5e:d8:77:b3:d6:d9:bd:11:2f:52:94:cd:d7:b7:15:12:
33:49:2f:a2:b8:a4:49:98:15:0d:82:17:68:9f:71:80:f3:94:
9a:69:85:4e:17:1a:15:07:a2:a1:ab:43:08:cd:14:f2:67:22:
08:5e:51:38:24:3e:ac:dd:31:64:80:9a:9a:20:4c:57:9e:44:
df:86:30:38:62:36:49:c3:9b:9c:38:56:86:65:d3:74:6c:66:
5d:59:f8:77:a7:3a:4d:64:8e:78:e3:03:17:31:2a:6f:a2:3e:
b2:4a:04:9d:79:ef:87:2b:5e:c3:ba:3b:c3:58:8f:90:8f:f3:
55:99:01:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:46:19 2025 by rpki-client