Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
File: 0PFLigjLX4BX1IsD5T9Fi44f7tY.mft (raw, json)
Hash identifier: 8ftBWsmSIcBirf7Q3nMNuFo0TDG+jKLdo1jX2jlIpLM=
Subject key identifier: 54:EB:F8:15:0B:53:71:0A:9D:DB:78:1A:80:B6:09:F9:9E:0E:F0:4B
Authority key identifier: D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
Certificate issuer: /CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Certificate serial: 0198D6CDF958E1D184657048924C627DACB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
Manifest number: 0298
Signing time: Sat 23 Aug 2025 12:01:19 +0000
Manifest this update: Sat 23 Aug 2025 12:01:19 +0000
Manifest next update: Sun 24 Aug 2025 12:01:19 +0000
Files and hashes: 1: 0PFLigjLX4BX1IsD5T9Fi44f7tY.crl (hash: l1gt4GcdNUPpB15GRzIR6LTMa9U4RCUFpqtNN2wk1gw=)
2: 5XHmlHMatoj7HuqzW-xKZFCBoCk.roa (hash: 2LwcEFXQBzd4wv+NbYjPLMlRT/J2wftX73OmJ3FhceM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:f9:58:e1:d1:84:65:70:48:92:4c:62:7d:ac:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Validity
Not Before: Aug 23 12:01:19 2025 GMT
Not After : Aug 24 12:01:19 2025 GMT
Subject: CN=54ebf8150b53710a9ddb781a80b609f99e0ef04b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7f:02:82:98:fe:3c:7b:53:7a:f5:43:95:57:
96:b7:17:41:fe:0e:e3:0b:cf:a9:60:cc:5d:d5:f5:
ce:b3:07:64:f3:64:d2:97:c5:d8:54:ba:22:1e:05:
51:38:2d:78:f6:76:f4:9f:d4:91:33:8c:f8:6b:36:
c3:af:98:5d:08:99:ac:32:b3:03:5d:c5:f2:ad:38:
b0:16:d8:22:c5:95:87:a4:f7:8f:ff:d8:53:d6:24:
46:00:94:b3:4f:98:3b:f2:c9:28:aa:6c:34:58:06:
cc:c1:87:09:4c:1a:fd:a3:24:77:66:24:c4:b5:ab:
c4:9b:53:6e:04:d7:f0:ce:73:45:79:08:7d:14:e7:
91:84:7a:db:80:d9:29:c3:28:05:a1:0f:79:d0:65:
49:80:dd:15:15:d4:d9:05:67:a0:1c:d4:f0:70:8d:
ca:b6:e6:71:33:1b:ac:34:5c:13:c2:45:27:1f:ff:
fc:5c:6a:24:de:a8:07:9b:53:4b:ce:19:38:ba:22:
67:7f:2e:4b:11:ad:53:ae:28:21:3c:d3:0c:64:5a:
c6:03:3b:60:50:e6:c8:68:97:22:5b:18:48:26:8f:
fa:58:22:1b:89:c0:fa:10:91:80:6b:a6:07:68:69:
a4:ce:ea:54:d2:6c:23:f7:66:75:14:f3:52:3e:67:
bf:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:EB:F8:15:0B:53:71:0A:9D:DB:78:1A:80:B6:09:F9:9E:0E:F0:4B
X509v3 Authority Key Identifier:
keyid:D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:15:eb:6d:03:04:5b:5e:ab:38:7a:6a:b5:33:b1:92:fe:b7:
e3:53:c9:0d:f8:6f:4a:a7:3c:56:8e:4f:1f:14:0b:23:dc:26:
e2:63:fc:d9:2f:36:57:2d:11:a0:da:22:bd:55:aa:e6:9b:9b:
e5:04:54:36:5b:77:40:5b:48:a9:08:c8:25:76:d7:cf:dd:17:
4f:59:fa:63:7d:4c:bb:26:d0:87:31:9b:f6:00:bb:64:79:0d:
a7:d4:2f:df:44:9b:51:80:4c:de:bb:90:f9:94:82:14:52:a2:
e1:16:fe:7f:1d:bd:14:e5:ba:c7:41:f5:75:6b:54:45:23:d3:
68:6d:a8:87:ff:51:6d:0f:b6:d5:a7:f3:a0:c6:0e:8e:f6:8c:
c5:b1:cf:6a:43:c9:40:58:f8:28:6f:b4:f8:d2:90:07:69:3f:
f4:92:d2:5a:8e:3c:c9:61:3d:e2:ac:b2:21:22:53:40:2a:5a:
e2:e6:c7:82:33:e9:c1:63:61:3b:a3:dd:08:7a:7a:93:07:60:
c9:bc:65:9b:ad:ed:b6:9e:49:6b:9f:25:c2:9f:44:41:f5:c4:
c3:d3:f0:26:d5:f0:f6:0e:61:88:77:93:b4:cf:56:2d:08:54:
23:35:a7:12:85:f0:82:85:64:54:90:42:0d:d7:98:1e:9d:80:
4d:fc:6f:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:27:54 2025 by rpki-client