Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
File: 0aiWnX4yy_knZkstxDa5bnFJpis.mft (raw, json)
Hash identifier: K1KMWSbZ+WB+XgIFpCzFi/qQUHGYO/wJce+lWBPha2U=
Subject key identifier: 14:1D:E2:5E:45:76:A9:CE:18:7B:E5:F8:D4:A8:8B:F4:B1:B0:53:D5
Authority key identifier: D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
Certificate issuer: /CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Certificate serial: 0198D54DC8E77ADC14DA0FED5ED1A6D8AF04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
Manifest number: 0F80
Signing time: Sat 23 Aug 2025 05:01:41 +0000
Manifest this update: Sat 23 Aug 2025 05:01:41 +0000
Manifest next update: Sun 24 Aug 2025 05:01:41 +0000
Files and hashes: 1: 0aiWnX4yy_knZkstxDa5bnFJpis.crl (hash: XK1my5m6gm20dkt06/mxg/l5iKtE30sb2gKujH45cCk=)
2: p1fyn5poKGi3v6udklaZLK6DaPs.roa (hash: ksuBLRSUua1zFmd4JmcnhcAsP8MWyD8OR/dcK6d/pkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:c8:e7:7a:dc:14:da:0f:ed:5e:d1:a6:d8:af:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Validity
Not Before: Aug 23 05:01:41 2025 GMT
Not After : Aug 24 05:01:41 2025 GMT
Subject: CN=141de25e4576a9ce187be5f8d4a88bf4b1b053d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6d:e8:3f:8c:46:cb:7e:88:f5:86:88:48:4e:
1d:d1:e1:55:4f:81:4e:01:ff:67:f9:b9:ca:02:40:
1e:0e:6b:cd:94:34:94:5c:ea:f2:1a:0a:37:29:6a:
eb:4e:3e:79:9c:ef:b1:bd:12:e5:4f:d2:57:14:99:
08:fb:91:4d:65:5e:52:1e:57:44:12:8f:27:47:27:
38:c8:c8:b1:b4:12:4b:2c:8a:2b:f9:c3:50:5d:c3:
67:d7:8b:bb:0a:58:c5:eb:32:39:38:a4:7c:10:74:
99:cd:3d:2c:b9:39:5d:19:ff:a9:69:01:38:a1:d5:
c4:af:08:3a:2c:ea:ef:46:cd:bf:39:f2:18:ba:ba:
6a:66:27:35:6a:56:b4:a8:33:bc:82:c5:3b:ff:1b:
35:c3:7b:9b:4a:f3:d5:4e:4c:17:59:b6:8b:a7:00:
dc:b1:a7:63:ce:c3:2a:92:d0:73:7b:ab:f0:f6:f7:
66:83:f2:41:c5:a2:b1:a3:75:53:f8:f4:7c:f1:4c:
dd:e1:b5:65:c9:d0:25:c2:c8:16:45:f2:08:a4:0c:
99:ed:05:d2:c1:10:1c:db:10:b3:61:29:58:58:7d:
d5:ee:61:b0:8b:ca:d3:5e:c2:c3:78:d2:54:4a:db:
97:ce:07:54:54:7b:3b:ee:a1:53:ae:9d:1c:4c:c5:
d8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:1D:E2:5E:45:76:A9:CE:18:7B:E5:F8:D4:A8:8B:F4:B1:B0:53:D5
X509v3 Authority Key Identifier:
keyid:D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:d4:02:a9:bb:c1:87:d0:d2:35:e3:1e:3a:8e:65:1c:2d:b7:
3e:9a:db:b2:01:53:ca:8a:d7:27:31:6c:90:6d:93:f6:ca:97:
6b:55:67:00:f6:8d:0e:43:ea:f9:ab:70:d1:81:9e:51:f3:89:
d6:10:d5:27:45:2f:ec:34:68:fc:7d:13:60:f8:47:f0:fe:cf:
df:c8:a3:b3:58:b4:58:af:e4:2f:7f:00:2d:e1:93:b1:6c:b3:
d5:dd:f1:e3:90:04:97:27:83:d7:f8:b9:21:d8:a3:56:c0:60:
e1:5b:5d:56:f7:b6:5f:9c:d3:ab:82:fb:b9:af:70:89:32:57:
6b:48:0b:27:ca:ef:0c:6a:96:68:a7:ea:77:d6:81:b8:d0:55:
23:67:62:ee:e0:03:fd:db:af:f5:22:3f:f8:dd:51:e6:d0:f7:
aa:67:dc:96:7b:18:c8:ff:76:43:98:68:0c:a0:b3:28:5e:7e:
05:8b:23:00:64:8a:f6:4c:e3:99:04:7d:58:4a:ad:7a:f0:85:
ea:da:1a:34:b6:ef:9e:46:5b:38:d5:67:cf:32:4d:70:33:6b:
0a:4a:c8:65:d3:4a:7a:a3:10:0e:58:4d:87:e9:e4:f1:79:da:
0b:cd:70:ab:d8:9e:ea:1c:56:67:13:f9:78:61:e6:61:7a:61:
8f:9b:70:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:38:45 2025 by rpki-client