Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
File: D9zw7HuvNJ6JLVERXCLA29Q1C44.mft (raw, json)
Hash identifier: hdsdGsTxem3F19XTGumkgycgvpuCOJAQp9574mUUl2I=
Subject key identifier: 2C:69:AB:F3:3A:67:D5:BC:58:35:42:0F:89:6B:1F:B4:C9:BC:E4:56
Authority key identifier: 0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E
Certificate issuer: /CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e
Certificate serial: 0198D473917DB84361059605A758B9E6FB39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
Manifest number: 0301
Signing time: Sat 23 Aug 2025 01:03:20 +0000
Manifest this update: Sat 23 Aug 2025 01:03:20 +0000
Manifest next update: Sun 24 Aug 2025 01:03:20 +0000
Files and hashes: 1: D9zw7HuvNJ6JLVERXCLA29Q1C44.crl (hash: bImmAPJsFuLwSVYIKIYUhYnKcV0RURAbv8bMAyXVcZg=)
2: LkbZ9NbuqV8kVwW0R6t_W7E36SY.roa (hash: OFwtZ8nR+nHbeTcy4UO/g/3elRZlu1GMxchq0zT/W/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:91:7d:b8:43:61:05:96:05:a7:58:b9:e6:fb:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e
Validity
Not Before: Aug 23 01:03:20 2025 GMT
Not After : Aug 24 01:03:20 2025 GMT
Subject: CN=2c69abf33a67d5bc5835420f896b1fb4c9bce456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:eb:35:c1:cd:06:1d:ed:e1:f7:25:29:9c:e4:
dc:aa:cf:10:02:e6:09:1c:28:b3:6e:2c:85:67:f7:
d0:07:c1:fe:bf:75:eb:ad:3b:e2:59:5d:ba:75:d6:
64:c2:8c:21:26:0b:55:08:e1:2e:57:21:16:a4:c4:
ca:f4:03:23:42:b4:eb:56:50:98:0b:e5:11:65:1f:
77:69:e1:86:15:54:c1:49:52:95:4b:e8:34:29:4e:
22:99:ab:a8:3f:b2:61:ab:a4:de:04:c3:a3:6e:b8:
93:e5:ad:65:19:6a:e5:de:ca:9b:ab:84:95:92:8b:
07:c4:f6:a7:f3:a5:39:55:79:5c:35:95:de:b8:b2:
40:be:91:5c:33:12:98:5d:f3:35:eb:d1:e4:da:fd:
26:c0:8b:09:bf:33:2f:74:59:b4:04:86:01:fc:0c:
91:de:08:2a:0a:2a:e0:14:8a:40:c9:24:73:01:22:
07:8b:76:31:00:75:e9:a7:b5:17:ec:34:51:a2:50:
c0:8d:29:e5:fc:8d:fd:95:fd:ee:bd:71:b5:a9:bc:
04:1b:89:5e:d3:e2:f6:0f:9a:a0:e0:e9:a7:86:74:
82:bd:8f:e5:d0:cf:b5:82:f1:4d:60:02:bd:90:08:
e9:2f:d4:3f:81:0a:4a:ee:e1:f4:fd:bd:0b:90:21:
08:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:69:AB:F3:3A:67:D5:BC:58:35:42:0F:89:6B:1F:B4:C9:BC:E4:56
X509v3 Authority Key Identifier:
keyid:0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:66:aa:d1:66:2a:6c:12:1c:b7:f9:a2:d8:9c:88:c4:aa:79:
a1:3a:a3:ac:be:e9:94:c6:dd:9d:3b:e5:42:f1:49:82:e4:a6:
50:6d:c2:47:a8:ed:b4:33:0a:4c:86:0c:9a:05:26:16:83:53:
67:d6:cd:e2:2b:33:27:d9:09:1e:bd:99:bd:bc:79:39:52:de:
db:44:ff:94:f0:f4:6a:b4:7c:42:87:06:50:0c:42:77:d8:2c:
71:ca:8c:36:34:db:6a:d7:e8:c9:a6:91:7d:c5:2d:44:2a:69:
e2:64:bf:4f:b1:ec:fb:05:8b:fd:15:3c:b6:4d:83:ef:bc:4f:
d9:88:05:44:f9:73:0f:71:a7:77:ee:9c:f1:64:74:7f:8a:17:
75:fe:4c:c2:10:4b:1f:66:b1:c8:2c:c2:c8:4e:98:ec:62:4d:
a5:6c:51:3c:6a:10:f1:48:61:22:50:9c:c7:7a:1c:59:24:ce:
12:ee:a4:46:72:1a:c2:af:c0:0a:aa:ea:c6:8d:7e:10:2a:c0:
08:1a:a7:57:15:50:a8:6a:c6:1d:f3:4b:b8:ae:74:8d:d1:5c:
da:35:b3:18:89:43:f0:77:7b:e7:02:0c:53:f6:1a:6a:1d:de:
5d:01:9b:a9:19:2a:2f:8e:4f:c4:a2:f9:eb:75:f5:cd:29:75:
88:bd:67:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:48 2025 by rpki-client