Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
File: l9nve9MDJN7fcLrOS72ldgwyaxo.mft (raw, json)
Hash identifier: sRfy/m27uOiM8Fu3ruOEVrjZ0peFP6YD2pJLs7pXULs=
Subject key identifier: 64:E6:C4:BD:CC:CE:04:38:27:A5:51:A0:AA:18:D1:2C:83:1D:27:5D
Authority key identifier: 97:D9:EF:7B:D3:03:24:DE:DF:70:BA:CE:4B:BD:A5:76:0C:32:6B:1A
Certificate issuer: /CN=97d9ef7bd30324dedf70bace4bbda5760c326b1a
Certificate serial: 0198D5F15894B20BA8853133862A6B371D81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l9nve9MDJN7fcLrOS72ldgwyaxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
Manifest number: 0F11
Signing time: Sat 23 Aug 2025 08:00:20 +0000
Manifest this update: Sat 23 Aug 2025 08:00:20 +0000
Manifest next update: Sun 24 Aug 2025 08:00:20 +0000
Files and hashes: 1: N0s8xKfa_bF09tlRJvpRIiwnl5w.roa (hash: 90x2GkpRoKN6DUPIyJuUzKhNvSMsOvRGP9u2xtqB9lE=)
2: l9nve9MDJN7fcLrOS72ldgwyaxo.crl (hash: UgG7O0sXzM4xUT/+2kzbRZtbCTT4Hzf7WDNS2NESSjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/l9nve9MDJN7fcLrOS72ldgwyaxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 08:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:58:94:b2:0b:a8:85:31:33:86:2a:6b:37:1d:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97d9ef7bd30324dedf70bace4bbda5760c326b1a
Validity
Not Before: Aug 23 08:00:20 2025 GMT
Not After : Aug 24 08:00:20 2025 GMT
Subject: CN=64e6c4bdccce043827a551a0aa18d12c831d275d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:51:27:81:ec:a5:a6:88:e9:7d:0b:5b:fb:5c:
4d:09:a8:e5:91:9d:61:c1:37:21:b2:74:eb:de:f8:
1a:93:56:9a:95:e1:19:28:3d:31:b0:f8:33:0f:96:
8c:90:f3:d5:aa:d0:36:d4:ed:ab:de:f5:d4:63:4c:
ac:85:b6:37:d4:b8:0e:62:5a:43:bf:d3:6c:02:fa:
45:45:49:65:e5:f1:eb:d0:f7:3b:d7:76:54:61:a3:
b7:45:3b:31:c6:a9:56:48:87:8c:67:11:63:59:cc:
c7:ba:d2:d7:69:da:7f:25:ca:ba:4a:1d:e5:ef:c8:
01:ee:2d:ac:33:9d:01:69:7d:d5:c8:24:70:ba:66:
ed:e4:80:ec:c6:cb:fc:43:4c:6e:ba:56:b5:1e:d2:
98:cc:2b:14:cb:1f:2f:a5:1b:ba:7f:55:b2:16:48:
e7:e5:a6:52:67:9b:da:db:26:3c:a8:16:29:2e:63:
00:81:c5:fe:b9:7b:ca:2f:44:19:77:fa:54:1c:bc:
3f:1b:cf:fc:13:b0:97:60:16:bb:89:52:be:1f:e3:
38:cc:b6:5e:c3:ae:70:a6:a2:a7:28:fb:b7:79:ec:
bd:08:88:3a:66:9f:bd:4a:64:58:3a:77:61:83:fb:
80:10:3d:d2:02:86:d5:b9:6c:8d:66:02:f4:8b:5b:
eb:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E6:C4:BD:CC:CE:04:38:27:A5:51:A0:AA:18:D1:2C:83:1D:27:5D
X509v3 Authority Key Identifier:
keyid:97:D9:EF:7B:D3:03:24:DE:DF:70:BA:CE:4B:BD:A5:76:0C:32:6B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l9nve9MDJN7fcLrOS72ldgwyaxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:8f:15:a0:bc:4f:e7:a6:7e:74:ad:45:b8:24:40:b9:d3:26:
6d:95:03:85:fa:3b:75:56:bf:a4:de:0b:32:d2:20:f8:09:99:
e3:16:92:53:3c:dd:4c:9b:cb:f4:07:21:66:c7:56:d2:14:78:
ed:57:21:c2:0d:26:8a:8c:35:75:ea:b2:5f:1b:38:d6:bf:3a:
60:34:9a:67:b0:30:7c:f0:6a:d6:39:e1:d1:71:a2:00:ad:51:
ca:06:3b:07:cf:e7:35:51:b3:98:eb:ed:70:a8:aa:ae:0d:4b:
22:80:96:c1:d3:8d:24:89:e4:4e:aa:ad:2a:66:c9:8f:c2:02:
80:47:5f:9c:66:d6:44:9b:5b:3d:d0:45:66:c9:47:bf:b5:54:
ec:db:7c:3d:8f:ac:33:8d:fe:5d:7b:75:e0:b6:5f:ba:8a:b6:
dd:fc:53:b1:2f:46:bd:76:68:da:88:15:97:42:59:b4:0c:72:
75:71:2a:9a:38:8a:5f:89:82:1f:49:85:86:e6:74:ab:b8:9c:
49:ca:c4:9a:3d:bb:d5:9b:da:20:61:f6:21:f9:3b:1b:0c:26:
25:cb:83:d8:27:82:01:b0:35:c1:d5:ff:8f:ac:61:50:9d:1e:
81:5d:7c:a8:72:de:4d:6b:1a:86:9f:bc:8b:7c:20:3f:46:55:
bc:a8:73:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:25:17 2025 by rpki-client