Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json)
Hash identifier: IvpO2zou1vGsdK0n0TsOnTtTe4+vc3zUjhY1PFbkepc=
Subject key identifier: 56:47:D8:99:98:4C:40:2E:9A:1E:EF:ED:C7:3C:38:76:08:68:B7:78
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 0198D5BBC9A17D82D2250FB3B45FB6620884
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
Manifest number: 0DD9
Signing time: Sat 23 Aug 2025 07:01:50 +0000
Manifest this update: Sat 23 Aug 2025 07:01:50 +0000
Manifest next update: Sun 24 Aug 2025 07:01:50 +0000
Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: Kg81OSu9trjSN1AvJE5ZJL6B1nPNuGZtIeiJvLfkRSk=)
2: nEst59VNXuZ4VJfEimqfkDoIWMw.roa (hash: MVYyTOwc+4oCrDyXY6sI17JYzQycO6fjKklmhjG1KnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:c9:a1:7d:82:d2:25:0f:b3:b4:5f:b6:62:08:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: Aug 23 07:01:50 2025 GMT
Not After : Aug 24 07:01:50 2025 GMT
Subject: CN=5647d899984c402e9a1eefedc73c38760868b778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:47:e0:7a:38:3b:01:42:37:5c:09:7b:3e:f0:
7e:f2:96:50:a2:35:53:5e:1f:63:00:49:08:ae:c4:
f6:99:71:cb:4b:40:1f:71:2b:73:a8:0c:0e:5e:25:
2a:6b:f4:3c:ff:8f:f7:66:b4:c9:e3:f6:0e:30:11:
11:0c:c7:c8:64:a8:fa:54:06:35:9d:11:27:82:92:
20:c2:08:cd:55:78:01:56:b8:35:8c:04:a9:97:08:
e1:c5:d3:8c:ae:5e:5b:a3:4f:b3:e3:7b:ae:9b:0d:
b2:e0:dd:44:56:8c:65:ee:84:30:e3:81:c9:00:73:
56:fe:43:dd:ad:5d:af:b7:d1:4f:56:90:63:19:1d:
10:a4:5d:81:3b:41:44:7a:da:99:27:50:56:ec:ae:
cb:29:4f:eb:5d:11:de:f8:0b:9e:40:86:2e:31:10:
ca:89:e7:af:01:14:37:d7:22:b0:44:4e:bf:f0:37:
70:37:f7:73:f4:81:71:0c:b5:0e:91:6c:c8:04:be:
c4:da:14:ac:46:e2:39:21:7d:74:46:d5:4e:38:7d:
55:14:48:44:a7:29:83:d9:cd:dd:16:e2:4a:eb:0a:
6b:db:0c:73:fa:8c:6c:7d:df:b7:c8:cf:10:f1:05:
92:d2:7a:ab:73:f9:af:7e:47:d2:f4:9a:b2:3a:72:
e3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:47:D8:99:98:4C:40:2E:9A:1E:EF:ED:C7:3C:38:76:08:68:B7:78
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:3b:ae:b0:b7:59:27:01:b3:07:82:2e:fc:4f:98:ac:98:0a:
88:0e:f2:f5:38:a4:b3:a1:46:83:20:9e:3e:54:6b:79:7b:76:
0b:74:1b:92:ed:c6:33:f8:26:43:c7:a6:af:13:76:88:f0:ce:
d2:dd:a6:89:83:8e:6e:20:c4:8e:9f:9c:90:73:c2:95:3d:09:
b9:a4:e3:21:56:14:dc:cc:30:1f:ad:64:3f:ba:f4:92:39:2e:
a6:30:bd:81:29:84:dd:79:bc:8c:02:64:6c:e6:b7:13:64:b2:
d3:65:36:51:16:d4:2f:1d:e6:af:b4:2a:a7:0f:aa:fa:1e:af:
e2:c2:9b:04:cb:1f:be:ba:6a:74:df:4d:ab:fc:36:79:ee:e6:
58:bb:22:62:42:33:39:56:42:6a:b0:52:c7:3b:a4:e0:5f:ec:
ad:1a:06:54:18:11:91:ca:89:a4:88:03:60:8c:57:f9:79:9d:
13:cf:d4:ee:b5:e1:af:24:41:b2:31:00:65:54:55:54:55:1c:
e2:c4:13:e6:04:5d:a8:f8:6c:2c:a5:0b:67:06:1c:5c:d4:66:
ff:10:8d:10:f6:32:08:96:42:a4:35:13:13:a9:2a:93:6c:4d:
b0:9a:89:2c:7d:b3:e1:9a:f3:39:69:e0:49:f5:9b:c2:76:df:
de:c0:dd:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:06:42 2025 by rpki-client