Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
File: 309yD7vOaxVdc1fb5xJspWwevnU.mft (raw, json)
Hash identifier: 5SOVZ5lne+/af8jotltRUQPk1GqBpJilTHICEMBtuGQ=
Subject key identifier: 71:55:E2:51:37:E4:7D:02:B4:9A:ED:30:2E:CD:D4:EC:D3:F0:D7:DA
Authority key identifier: DF:4F:72:0F:BB:CE:6B:15:5D:73:57:DB:E7:12:6C:A5:6C:1E:BE:75
Certificate issuer: /CN=df4f720fbbce6b155d7357dbe7126ca56c1ebe75
Certificate serial: 0198D583C35787E6B2BB19C33B3AA896FE03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
Manifest number: 01F2
Signing time: Sat 23 Aug 2025 06:00:38 +0000
Manifest this update: Sat 23 Aug 2025 06:00:38 +0000
Manifest next update: Sun 24 Aug 2025 06:00:38 +0000
Files and hashes: 1: 309yD7vOaxVdc1fb5xJspWwevnU.crl (hash: Zeblh+vJW/kqvh5cXcCnETDgS2flhxNVx1jHUtCAhtw=)
2: qjdo-2hELWfZ5X3xR6fmxm2tvRM.roa (hash: KdwciiToM5teWCqBbT0OWprvk5ot6XdBmfBuE2JH8Q4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:c3:57:87:e6:b2:bb:19:c3:3b:3a:a8:96:fe:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df4f720fbbce6b155d7357dbe7126ca56c1ebe75
Validity
Not Before: Aug 23 06:00:38 2025 GMT
Not After : Aug 24 06:00:38 2025 GMT
Subject: CN=7155e25137e47d02b49aed302ecdd4ecd3f0d7da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:48:58:d2:bd:6f:72:db:fe:b8:97:7e:7d:5b:
a2:d1:18:73:c0:06:c5:44:2e:57:2f:54:8f:87:7e:
58:e8:a1:7e:2c:2a:44:49:68:ac:b3:cf:b2:d0:8a:
4e:fb:f8:f7:04:34:89:a4:55:8b:1f:64:59:08:4e:
8a:07:5a:e5:5c:bd:de:ec:24:1b:14:1e:1f:2e:39:
67:91:7d:76:a0:a9:d2:75:10:c3:21:94:cd:e9:a1:
8d:c2:5e:2d:d5:46:89:70:11:a5:13:ed:c7:39:d8:
f4:66:e1:10:4c:33:dc:e0:22:c2:e0:8a:cd:49:a9:
d9:80:af:87:0d:2f:fe:5b:1c:2f:55:1d:bd:a9:1e:
e0:71:46:6d:5e:b3:94:f3:d7:42:25:13:a6:2c:0d:
53:69:40:d3:21:dd:0f:aa:2e:2c:11:f7:6a:6b:64:
f8:c7:e9:fa:fa:c6:ef:a9:ba:c6:2b:cd:23:bc:9b:
e5:96:61:d1:a7:73:fd:35:4b:3b:42:57:76:d9:74:
f0:e0:45:c4:64:f2:9f:f4:da:1e:91:e3:5f:fe:54:
cf:59:52:06:7f:ab:9b:32:a8:ff:cd:b5:de:34:be:
77:8d:ad:fc:45:de:fc:c5:23:ff:c8:12:8c:8f:13:
96:c1:b5:06:8d:b0:61:99:8f:9b:2e:02:04:31:0b:
f0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:55:E2:51:37:E4:7D:02:B4:9A:ED:30:2E:CD:D4:EC:D3:F0:D7:DA
X509v3 Authority Key Identifier:
keyid:DF:4F:72:0F:BB:CE:6B:15:5D:73:57:DB:E7:12:6C:A5:6C:1E:BE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:64:10:e8:5f:e5:db:f6:28:8f:c0:b5:af:58:17:c5:74:35:
18:c3:c8:d8:30:7e:77:7a:06:6e:7e:7b:c1:c9:ed:7f:51:29:
c6:0d:50:5d:99:86:fb:79:b5:d5:7c:49:19:75:7c:22:6e:ad:
b7:e2:4e:06:16:a7:45:0d:bb:36:40:c9:c4:cf:dd:7c:6f:e5:
69:7d:6a:7e:be:2f:94:58:39:8c:b9:fe:b5:ba:a1:1c:c6:16:
54:c1:9e:c7:61:e4:3e:8d:55:47:dc:de:f7:6b:a6:4c:f0:f5:
e6:6c:36:74:40:6d:a0:c5:70:b2:45:76:fc:39:b5:05:14:41:
e5:08:e3:16:27:a9:1a:73:58:a3:9b:85:c5:20:3c:d8:2f:5b:
01:00:8a:fb:f1:de:13:89:e6:62:aa:8d:45:62:33:31:58:68:
59:74:98:ae:ec:19:c2:14:bb:37:84:60:be:cf:30:33:e3:bc:
36:3b:ec:f2:b7:ce:fc:0a:84:31:fe:a6:2e:75:19:35:78:d8:
d2:07:8f:a5:65:37:20:65:d4:f3:7e:40:f7:f8:38:ee:6f:99:
e0:f7:e7:e6:b8:d8:d8:55:aa:9a:31:50:a6:90:2a:a5:88:71:
6c:ac:4e:be:92:2b:b6:e0:28:f6:0e:b9:82:c4:0f:34:fb:f6:
33:f1:74:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:46:52 2025 by rpki-client