Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
File: 0bS-sKan4ShKv0OFNIz0hhALn4A.mft (raw, json)
Hash identifier: JtyMJ84mes5G/o711NYoC248xxZjmBIruNFDUIQ/Umk=
Subject key identifier: F3:58:D9:BF:05:E8:A6:C9:62:C9:47:F4:C3:0A:66:42:17:5D:ED:FF
Authority key identifier: D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
Certificate issuer: /CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Certificate serial: 0198D4738DECB702C74D8F972538C9CDC009
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
Manifest number: 0E49
Signing time: Sat 23 Aug 2025 01:03:19 +0000
Manifest this update: Sat 23 Aug 2025 01:03:19 +0000
Manifest next update: Sun 24 Aug 2025 01:03:19 +0000
Files and hashes: 1: 0bS-sKan4ShKv0OFNIz0hhALn4A.crl (hash: 3kUrlXOQ8AzJ970Uos9cr0go7MIEh6zCRPE+NcmrXjU=)
2: c4vhQn8zi1dmhfuFlEzS457ekqY.roa (hash: K0d7LR2NOcizL+J6fo8ZUFPUHzj1ReR3yGovArPpqzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:8d:ec:b7:02:c7:4d:8f:97:25:38:c9:cd:c0:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Validity
Not Before: Aug 23 01:03:19 2025 GMT
Not After : Aug 24 01:03:19 2025 GMT
Subject: CN=f358d9bf05e8a6c962c947f4c30a6642175dedff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:38:5c:b4:29:09:76:c2:59:f2:d3:f8:b9:e7:
40:68:41:08:6f:3c:8c:57:e3:e6:44:26:27:0a:28:
ac:12:34:5a:7b:4a:18:d6:e4:29:19:33:f7:40:59:
52:9d:e8:9c:a8:5a:31:dd:b5:9f:f7:ca:b2:e2:0b:
2f:95:3c:33:c5:ec:af:76:de:c3:e9:c4:55:9b:8c:
a5:71:87:41:69:e7:d6:5e:05:bc:d6:51:d7:ee:70:
4f:59:d8:ba:d7:79:6f:cb:15:f1:d1:07:90:16:42:
38:4a:9a:05:16:81:d8:a1:c7:5c:17:d4:ee:28:17:
d8:1b:ee:f0:25:31:f9:b9:8f:46:3f:09:89:0e:0d:
bc:aa:95:38:d8:4a:a1:0a:75:e4:6e:ec:e9:6c:82:
3a:46:ac:f9:b3:f5:21:8e:84:4e:19:91:0b:ef:d9:
d3:60:9c:75:92:c9:5d:0a:6e:8f:29:af:1d:77:f0:
7b:c9:a2:30:ea:52:95:17:e2:a3:5b:f2:ed:75:f6:
95:07:d2:fb:35:ed:85:28:68:aa:d1:0d:c4:77:25:
4c:fe:27:fb:fa:a7:1b:f8:d4:77:84:08:5c:61:cd:
e1:2f:d8:e6:5a:44:38:75:4e:f0:91:46:7a:73:e1:
27:39:0b:6c:71:df:1e:60:8f:9e:2c:f7:b0:72:f8:
a9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:58:D9:BF:05:E8:A6:C9:62:C9:47:F4:C3:0A:66:42:17:5D:ED:FF
X509v3 Authority Key Identifier:
keyid:D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:fd:62:1a:78:50:84:62:29:11:d7:9c:c2:03:93:cf:1e:92:
f2:03:b7:79:63:75:56:a2:fb:9b:89:26:87:19:74:74:21:e2:
2f:22:f2:b0:a0:6f:1e:b4:6b:38:d0:df:0b:cb:81:60:91:d9:
68:a1:30:f4:fb:22:29:b4:65:8d:15:86:bb:e9:21:cb:90:f0:
6d:d6:67:1f:ca:30:00:04:1f:51:fc:f1:9f:b8:fd:4a:99:c7:
57:b9:75:a0:ba:6b:2d:ba:1a:9c:c9:5f:7b:d2:5a:48:49:58:
ee:a6:48:0a:1f:63:23:3c:ed:3e:39:7b:d4:1b:22:ab:b0:ce:
a1:2c:7a:f7:1a:0a:72:47:d1:ea:6a:62:c4:21:32:e5:8f:95:
9c:7a:83:c3:04:a9:6b:19:44:c7:ca:69:a9:08:b3:43:86:ab:
f2:78:4f:24:97:fb:52:19:34:48:fc:ed:cb:e2:e8:1a:cc:a8:
9e:f6:1b:8e:9b:1b:cf:fb:00:8b:29:4c:0d:5f:58:24:8b:ba:
f6:15:ee:d1:8b:b2:68:b8:3e:b8:63:e1:f3:9e:8e:79:13:6a:
1b:5d:92:7d:00:2d:fb:87:9b:fc:c7:61:e8:07:0f:f0:b1:33:
ca:06:9d:07:f5:65:fd:55:b6:ad:99:a7:56:a9:5f:b6:c1:53:
95:3e:57:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:49:16 2025 by rpki-client