Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
File: EdGf2unFPY0oseQcqROcM1VrpiU.mft (raw, json)
Hash identifier: AqLhbWMtkTtzxp5xrDOQ9vMxYK1iWCIbTo6ZyGJe0/c=
Subject key identifier: 23:F1:B7:A7:F0:DA:96:EE:95:1F:AD:FD:66:59:B4:EA:B0:DE:22:CE
Authority key identifier: 11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25
Certificate issuer: /CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625
Certificate serial: 0198D65F8B8A8D5C0E68226899596B8D6172
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
Manifest number: 0AA9
Signing time: Sat 23 Aug 2025 10:00:42 +0000
Manifest this update: Sat 23 Aug 2025 10:00:42 +0000
Manifest next update: Sun 24 Aug 2025 10:00:42 +0000
Files and hashes: 1: EdGf2unFPY0oseQcqROcM1VrpiU.crl (hash: ABqbDqwYqbPtA+k2lLRQsgzv7sQwjlk3xeVCLkN5O5s=)
2: hjbzdQG0z4fmkgxJ5yW_AFN2Z3I.roa (hash: FIaXEpRqjmfrs5VrZ6nFL+BtqxgLq2lRPch8+CMAMWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:8b:8a:8d:5c:0e:68:22:68:99:59:6b:8d:61:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625
Validity
Not Before: Aug 23 10:00:42 2025 GMT
Not After : Aug 24 10:00:42 2025 GMT
Subject: CN=23f1b7a7f0da96ee951fadfd6659b4eab0de22ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ae:2d:9c:11:4b:68:2c:e5:89:c3:b7:2a:84:
9e:e3:bb:ee:51:96:38:2c:b7:a0:aa:b7:78:62:b5:
8b:a0:b5:24:e7:6e:06:9b:6c:c9:24:54:f7:28:f7:
f0:51:b6:3f:43:aa:56:15:a0:c1:a5:51:f3:f2:52:
64:45:5d:d1:97:13:d9:34:46:8c:d3:92:6d:af:d1:
9a:9b:91:17:bc:bd:8f:93:51:3f:fa:9c:3a:f5:8b:
00:15:e1:6d:b3:51:d4:1f:a6:7e:ef:bb:21:7c:a2:
51:f0:23:37:b6:a3:61:fe:a4:46:12:47:e6:1a:aa:
7a:02:e9:f8:0a:fa:e5:ba:31:90:6a:bb:d9:14:cd:
d3:71:8d:2a:5c:89:33:62:d1:67:3b:a3:58:fe:a5:
b1:fb:d7:5b:6d:2c:11:75:dc:59:15:d6:5c:db:29:
7c:7b:b8:e3:4d:72:d3:bd:39:4f:4e:5f:55:2a:03:
35:7d:4c:43:69:bf:98:88:d2:86:bc:a1:a2:72:01:
e1:b2:18:5b:8b:40:e5:ab:19:f7:c8:9c:f9:a3:f7:
eb:9a:02:b2:d5:7a:ba:36:1e:7a:6c:27:22:e4:77:
c7:87:d9:a2:b0:da:2c:46:3d:0a:af:af:9a:5a:16:
db:28:db:b0:aa:43:bc:92:f0:11:f3:27:24:82:7e:
49:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F1:B7:A7:F0:DA:96:EE:95:1F:AD:FD:66:59:B4:EA:B0:DE:22:CE
X509v3 Authority Key Identifier:
keyid:11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d6:68:cb:19:6a:ec:58:40:a9:94:8b:d7:01:e7:f0:f1:c5:29:
c5:85:ce:bb:5a:19:84:b2:a3:be:db:74:f6:ff:00:a9:b5:58:
be:55:fb:ef:7a:78:df:d0:b9:c0:ba:e0:32:db:cb:54:62:2b:
8e:2d:e2:76:ee:a8:d8:1c:d7:97:c3:8d:92:41:af:f5:de:c4:
d5:f8:e5:85:06:93:bc:b3:70:b4:68:12:e7:2e:4a:d4:9f:16:
0d:d5:63:26:0f:0d:4b:8a:14:6c:13:4e:ab:3e:ae:7f:f3:9b:
96:e0:51:f2:b4:ec:77:66:c4:3d:bf:09:53:97:cf:fe:6e:9e:
57:b5:eb:01:6e:85:9f:70:a7:b3:89:11:1f:e2:9b:15:41:b5:
18:03:73:05:65:47:21:dd:de:35:fa:82:0d:ae:86:a3:e1:70:
a0:28:ff:99:7b:6e:92:33:01:1c:e4:a5:c7:83:a2:d4:b6:ae:
06:3c:e5:14:bf:d2:6b:98:56:52:35:32:dd:35:df:cf:8b:4a:
58:06:94:d8:87:c8:a4:42:a9:83:73:c0:9f:bd:2c:60:18:6f:
08:16:05:7b:b6:58:a4:54:12:c4:2e:0c:33:cf:d6:39:99:c4:
cb:4f:0f:30:71:b8:b1:47:9d:b0:38:e1:c9:e9:fc:80:66:f1:
eb:45:6e:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:25:20 2025 by rpki-client