Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
File: R1oGyte9DD25-KOB8euc1sdaqyg.mft (raw, json)
Hash identifier: VcJGT4Xobz4fz74f79tFi3T4+PSX+5/sX0OZuSxSSKQ=
Subject key identifier: 9E:D7:4B:71:22:08:22:A4:DD:76:08:61:7F:A9:61:22:7F:33:81:44
Authority key identifier: 47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
Certificate issuer: /CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Certificate serial: 0198D65F2637540A97E3E7785203368BDBA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
Manifest number: 0205
Signing time: Sat 23 Aug 2025 10:00:16 +0000
Manifest this update: Sat 23 Aug 2025 10:00:16 +0000
Manifest next update: Sun 24 Aug 2025 10:00:16 +0000
Files and hashes: 1: P26izWnWykundEbYZ5JEBhpU0uU.roa (hash: cWV+pN/zcAshvYcQxK5v+o4IGsyjFJQg91I3ipirKBI=)
2: R1oGyte9DD25-KOB8euc1sdaqyg.crl (hash: AwvytvCqX9JP9NnbWOznPruo7I3qctERoOh/o41hugo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:26:37:54:0a:97:e3:e7:78:52:03:36:8b:db:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Validity
Not Before: Aug 23 10:00:16 2025 GMT
Not After : Aug 24 10:00:16 2025 GMT
Subject: CN=9ed74b71220822a4dd7608617fa961227f338144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:81:49:b6:a8:8c:70:46:ce:e7:40:31:44:19:
db:25:4d:6e:d8:a1:1c:0a:10:c7:39:2e:5c:a2:d7:
e1:3d:ce:d3:0b:e4:13:72:73:56:2b:a8:89:9d:34:
d8:7d:f7:5e:10:ac:ea:70:e9:8b:1b:99:dd:c4:ec:
48:d2:ce:36:7e:5e:b6:78:78:8f:f0:e8:df:e9:74:
8c:ed:c8:53:fa:04:64:36:14:22:c1:0f:a1:94:0b:
e6:b3:4f:10:a9:19:77:dc:c6:aa:7b:5c:5c:ea:8a:
96:7e:0d:b0:f8:16:c8:8e:55:44:a9:d1:f9:75:a4:
07:b8:66:d1:59:ac:0d:a3:1f:8a:21:5a:f0:88:e2:
52:c7:96:32:e8:f2:b8:c8:8e:92:5f:f0:e1:7f:6b:
64:55:9f:8f:5f:5c:1b:e0:29:56:74:d4:cc:1e:54:
02:12:36:48:6f:2b:f4:9b:bd:96:b1:e3:a0:18:80:
98:19:4f:3e:e4:0c:57:ed:2f:4d:3b:a7:aa:75:3d:
a2:bc:3e:66:d1:25:0a:48:d9:8f:7a:32:36:fd:0a:
ab:54:fe:5f:04:f6:ff:8a:46:39:8a:3f:c3:3f:b2:
f8:b0:c3:c6:cd:61:92:9a:1c:75:62:88:a6:ee:55:
3b:fc:11:fc:93:66:b7:37:33:2a:df:4e:39:b9:4a:
17:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:D7:4B:71:22:08:22:A4:DD:76:08:61:7F:A9:61:22:7F:33:81:44
X509v3 Authority Key Identifier:
keyid:47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:15:8a:ee:8d:8a:82:0f:25:88:a4:12:b6:ba:b9:9e:32:af:
80:ec:7b:10:4f:74:1d:9c:b4:3d:a3:2b:1e:26:5a:4e:90:91:
ed:9a:68:4f:27:cd:a4:49:73:c3:2c:d1:3c:fd:73:b7:17:0d:
cc:cd:be:02:21:20:b3:f5:b9:b8:5c:0a:70:f3:cc:2c:33:03:
39:c7:dc:61:28:9b:95:f3:26:d7:ab:e4:9c:33:cd:34:e5:e4:
f7:7f:20:50:3f:95:46:dc:f0:6d:c6:a8:47:85:60:f7:b4:9a:
d6:3c:02:fd:dd:b9:df:97:47:76:7b:b0:25:96:3a:a6:f7:25:
8d:1a:13:45:05:0b:01:38:7b:31:8e:d7:2d:88:6f:6b:eb:62:
8a:91:ee:23:e6:c8:96:9a:5e:c4:16:97:44:04:8e:88:1f:b4:
dc:ea:07:71:94:47:04:ab:7c:fd:b2:47:b0:a2:e9:6c:2d:38:
d0:a8:f0:74:20:d0:4e:71:65:b7:62:9d:3c:25:dd:83:a2:cc:
fd:ca:53:aa:20:99:49:02:4f:84:db:10:c1:83:45:0a:3c:4b:
72:48:6a:a3:f1:ee:5f:fa:a9:cb:2f:96:1e:8c:27:06:06:a1:
a2:5e:ce:c8:43:7b:49:91:c8:e6:91:f3:81:3d:c2:b8:39:bb:
fa:18:25:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:38:00 2025 by rpki-client