Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: n4IQWI8uzS9dJigOOlpkOSa8e5QytWlU3NT3tCcLnCA=
Subject key identifier: A2:46:71:0B:59:9A:26:B1:EC:CA:6E:EE:66:CB:41:B8:B8:77:FA:99
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 0198D516018F079C39A59E70C209AB80D313
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 075C
Signing time: Sat 23 Aug 2025 04:00:45 +0000
Manifest this update: Sat 23 Aug 2025 04:00:45 +0000
Manifest next update: Sun 24 Aug 2025 04:00:45 +0000
Files and hashes: 1: EKdJIayRjGqpNjC_sXcLD4LpFxg.roa (hash: Q7XyDf/+ZYlwIoQHzzpWgBVzZ1z6oDECbrHcCzM9GG4=)
2: _-z4nvaTTyccKXJFwod66iKewX0.roa (hash: B/6vrb0o2kiLAGPMrkOgglOkupcsHoxdqdIe49F5XFQ=)
3: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: ni2pleF5ggpDHjqEY5nORenNyh7SCca+h/BhH6jRkUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:01:8f:07:9c:39:a5:9e:70:c2:09:ab:80:d3:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: Aug 23 04:00:45 2025 GMT
Not After : Aug 24 04:00:45 2025 GMT
Subject: CN=a246710b599a26b1ecca6eee66cb41b8b877fa99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:94:e9:f3:3f:34:d1:d1:3c:cc:0b:2e:9c:84:
9d:71:bc:f3:57:86:52:e3:73:3f:e8:9b:54:c9:46:
a7:e3:49:e3:6e:00:82:fe:c1:e6:7f:df:30:09:29:
61:54:d5:27:f1:e0:07:6f:80:ae:e5:b0:43:d9:6c:
96:6c:ec:d0:83:53:96:41:26:89:ce:40:9d:14:18:
56:1a:7d:04:c9:2f:58:6e:e6:51:60:42:a9:d0:58:
c7:93:e4:1d:c6:33:16:7f:f7:cf:0f:f8:0e:9c:f0:
62:2b:f3:e5:bd:4e:9c:08:94:3b:1f:8f:d8:9a:31:
b9:f2:7b:d7:42:2b:66:7f:cb:9e:55:4b:57:c4:95:
f6:07:3b:ce:9e:fe:1e:5d:02:7a:b2:db:bb:d9:e2:
15:44:10:ea:c3:cf:cc:3d:a5:70:af:2e:7e:f8:22:
a3:0e:c4:9c:d4:bc:30:3e:f1:da:f6:a5:66:f3:d5:
4f:92:af:e8:43:1f:ed:0a:8e:70:47:27:e5:b2:43:
20:b8:1a:1c:e2:5c:0e:ad:f5:17:37:85:63:61:9c:
8f:6c:73:20:4d:52:3f:18:3c:9e:c8:79:8b:24:19:
be:b0:5e:8d:f7:a4:20:b2:ab:6e:ae:49:12:e0:20:
df:85:d9:30:fd:c0:9f:1c:13:4b:a4:8a:56:c2:28:
d3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:46:71:0B:59:9A:26:B1:EC:CA:6E:EE:66:CB:41:B8:B8:77:FA:99
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:f0:b7:04:c9:52:aa:c6:20:39:a6:97:5e:21:01:2a:87:1c:
ff:6c:25:9d:17:1e:f7:f6:50:b2:71:6b:11:e8:91:48:a2:85:
c5:4a:9c:91:45:3b:b6:27:48:23:ca:c7:d3:0e:4a:90:db:d2:
47:bc:bc:59:88:42:71:56:8d:b5:7e:98:55:d8:73:23:5e:4a:
19:6c:34:1a:f2:a9:e9:be:6d:b7:04:b8:39:62:87:00:bf:d6:
d0:ef:6a:03:04:2f:d9:0c:2f:86:59:ee:60:6c:5e:5d:df:58:
ba:f6:02:60:cc:2f:06:98:2a:e3:53:c5:1b:23:8b:4c:1e:c0:
05:8e:63:9b:5a:51:ee:ab:c6:f3:89:b0:1a:cd:a9:9c:16:4d:
d8:61:12:2d:93:61:89:ed:fb:24:be:b1:a0:5a:c2:ac:8a:a0:
61:2a:21:d5:ae:a5:2e:52:4e:0b:c6:ec:5d:e3:c6:4e:f6:0a:
c9:16:07:2d:99:5e:0e:14:2d:64:0a:09:f9:40:73:84:7e:0a:
32:90:e4:98:58:f2:86:4f:d8:52:aa:c0:91:f7:6d:3d:13:61:
28:bd:bd:22:36:82:47:60:86:cb:7d:db:56:30:b6:b0:22:75:
50:26:31:c4:49:7b:da:f3:9c:7e:67:f1:c7:a7:d2:e5:a0:6c:
c3:ab:1e:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:38 2025 by rpki-client