Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
File: 0LYdHx2czatrbY4UUMLJNtOX5nA.mft (raw, json)
Hash identifier: VjOQiqzwhtnwzFHPZ2hXZ7JETO4a4OFzBSMRHGkKc4E=
Subject key identifier: 43:BA:60:E3:90:08:E6:A7:9F:76:2D:56:6A:52:E9:24:DC:A5:29:90
Authority key identifier: D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
Certificate issuer: /CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Certificate serial: 0198D583FE94C7EEA54898E7D3A124BFD96D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
Manifest number: 032D
Signing time: Sat 23 Aug 2025 06:00:54 +0000
Manifest this update: Sat 23 Aug 2025 06:00:54 +0000
Manifest next update: Sun 24 Aug 2025 06:00:54 +0000
Files and hashes: 1: 0LYdHx2czatrbY4UUMLJNtOX5nA.crl (hash: P3wflSPH8LLv2Fi20V4LJKz+X/FaGHSAm2cP4fb12eg=)
2: WtuPQAz22oEnCEx3Rc-9J0U0Qbk.roa (hash: LqsVaHB6US9lWput6TNuWvOyM8xnvQFU16n5uBdiSPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:fe:94:c7:ee:a5:48:98:e7:d3:a1:24:bf:d9:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Validity
Not Before: Aug 23 06:00:54 2025 GMT
Not After : Aug 24 06:00:54 2025 GMT
Subject: CN=43ba60e39008e6a79f762d566a52e924dca52990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:34:97:d6:38:08:50:af:b5:b9:c1:9b:e7:cb:
c3:0a:aa:f8:d8:d9:ad:fb:49:ae:52:86:20:67:88:
13:56:7f:72:ed:a3:eb:c9:c4:d9:ff:59:72:af:f2:
6a:7a:a2:9e:b2:2b:9c:34:3d:fb:0d:2d:64:e9:19:
09:f4:cd:90:b4:66:3f:3c:67:1a:35:cb:b3:44:21:
5d:15:90:24:f5:54:9c:33:ad:5f:19:f8:64:c1:5d:
23:39:ad:be:0c:91:2f:c2:26:0d:96:14:2d:c2:be:
d7:e6:28:82:e1:91:2f:65:77:18:d6:85:ee:f3:92:
8c:f7:ba:43:af:81:56:29:92:88:cf:de:9e:0b:ef:
98:88:00:8b:af:b7:99:be:31:7f:d6:1e:20:ea:9f:
4e:ec:ad:e5:41:1e:db:c9:f9:01:c6:ef:b9:24:5d:
2e:59:c5:5b:b4:1b:85:2e:34:a4:8b:06:56:f0:d5:
35:fd:d7:65:4f:80:6c:22:24:fc:50:48:11:d1:56:
d3:52:5d:b6:74:11:f2:be:88:b4:03:03:b6:e0:e8:
fc:de:2e:44:3e:82:37:06:2c:79:2f:72:17:d1:5c:
5d:39:08:c4:e1:ef:e5:ef:8c:da:d2:8b:b3:0e:ff:
49:b2:57:91:e7:3c:f8:ce:6b:79:89:84:36:29:e2:
bf:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:BA:60:E3:90:08:E6:A7:9F:76:2D:56:6A:52:E9:24:DC:A5:29:90
X509v3 Authority Key Identifier:
keyid:D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:09:fe:5f:b0:e1:d0:10:9f:64:a3:ad:93:87:78:cd:e5:a7:
37:5d:26:39:9f:06:2f:7a:b1:fc:3f:1c:4f:f1:8e:db:aa:5e:
13:1b:f5:f9:9a:d5:05:47:fc:ce:1d:e4:9a:d2:ad:79:e2:ac:
3b:cd:58:a3:93:86:1b:17:c8:16:a2:e8:62:61:7a:4d:52:a9:
82:9e:04:9f:6a:2a:4d:d8:2e:d2:15:88:b9:c0:aa:ce:b9:96:
97:d4:c8:c3:f8:25:52:f4:d4:d1:cd:66:da:ab:ac:d0:4a:c5:
53:66:ce:87:25:0d:7e:77:4c:71:b5:b0:4b:e3:be:16:c1:05:
3d:27:07:c0:0d:f7:49:b3:e6:36:f3:5b:92:aa:fa:87:31:50:
38:71:e2:a1:7e:4f:8b:87:94:04:4b:31:d7:45:a6:3b:94:e9:
03:b5:d9:a1:1a:63:12:c6:e6:8a:d7:aa:61:a8:32:0f:35:ec:
68:7a:bb:22:25:b4:fb:eb:0f:60:2a:9a:2e:1a:ed:1e:c0:e3:
c3:19:96:5e:fe:c8:f2:4d:c0:a9:9d:f4:6f:4b:35:52:3e:a3:
4f:d3:a2:13:ba:a2:7a:6f:fb:78:4f:5c:c6:d5:a7:b0:61:66:
a1:7b:95:1a:37:d6:c7:a5:dd:5c:a6:6c:ff:86:43:6f:55:ac:
5b:2f:c9:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:32:33 2025 by rpki-client