Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
File: dotOLq79y-wVupnop6IcieSyzL0.mft (raw, json)
Hash identifier: GB5vg+SQO/wgumD1F29vxFim1l64QUuL3fyQLS4Q6rU=
Subject key identifier: AF:9C:E1:4E:16:1D:47:A2:5F:80:32:67:6C:51:29:BE:73:63:7C:55
Authority key identifier: 76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
Certificate issuer: /CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Certificate serial: 0198D65F26CF85FF8B6AD1A38B5788AEF57F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
Manifest number: 01B5
Signing time: Sat 23 Aug 2025 10:00:16 +0000
Manifest this update: Sat 23 Aug 2025 10:00:16 +0000
Manifest next update: Sun 24 Aug 2025 10:00:16 +0000
Files and hashes: 1: 2d_NXZtW0ODYRMQ4wdJe7FkxoW0.roa (hash: PhAe9DgdWLVDbJJiZelbxMyByKXlfBNEMtHqWSG1jZ8=)
2: dotOLq79y-wVupnop6IcieSyzL0.crl (hash: VBThc7qSX/+BqbGCN+OUI0gMImbzKzz9kJ3QopfCG24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:26:cf:85:ff:8b:6a:d1:a3:8b:57:88:ae:f5:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Validity
Not Before: Aug 23 10:00:16 2025 GMT
Not After : Aug 24 10:00:16 2025 GMT
Subject: CN=af9ce14e161d47a25f8032676c5129be73637c55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b5:39:49:bc:55:c7:be:53:fb:a8:11:25:fb:
bc:53:13:b9:83:6b:1e:6a:b7:45:3f:13:64:ec:a0:
5a:c7:df:ad:0f:27:cb:3d:e9:0a:bd:36:3d:b9:b6:
13:0d:b9:d0:04:02:ff:bb:d2:29:e3:e5:3f:42:25:
5e:81:61:a6:e1:70:52:94:e6:cc:80:0e:b0:5e:c2:
09:19:1d:ee:f5:1d:11:1d:f1:da:6b:5a:d8:85:92:
d9:79:f9:c4:a7:03:d7:c4:73:7d:1d:b4:2d:b6:41:
b2:a9:10:e6:8b:a2:6d:24:eb:ee:dd:3b:39:0b:94:
ed:39:a2:4e:ef:fc:1e:14:ec:c3:80:10:16:c3:55:
85:d7:e3:d4:fd:8c:e4:2b:cc:32:65:a5:b7:55:d1:
68:44:d0:81:a0:8a:4d:bb:a0:50:04:cd:92:8d:bb:
58:98:5a:4e:a8:a8:5c:38:7e:2c:53:4e:f5:36:0e:
5d:cb:e1:bd:31:6e:c1:d4:d8:d3:aa:f7:b5:c7:41:
16:90:cd:4d:07:1f:01:d8:96:61:66:2b:3d:9d:83:
a7:68:f1:79:3b:b4:a4:37:43:19:ad:19:f8:7b:94:
87:ae:5b:bb:ea:e8:d9:cf:f2:3d:ec:c1:4d:b0:25:
b7:3d:0e:dc:6e:0c:d0:81:e9:6a:6e:b5:69:e5:b4:
23:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:9C:E1:4E:16:1D:47:A2:5F:80:32:67:6C:51:29:BE:73:63:7C:55
X509v3 Authority Key Identifier:
keyid:76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:7a:70:4f:53:38:42:21:a7:1f:a5:99:39:c7:38:e6:fd:72:
cd:d3:4f:2f:97:3e:02:81:58:1c:b6:23:ac:70:b2:37:b1:ca:
36:fe:98:2d:fd:66:48:da:6f:24:0f:7c:76:f0:7d:28:5f:91:
51:0a:ea:92:0e:75:13:2c:3b:4a:3b:7f:a3:a4:0e:a2:18:16:
1e:56:7b:82:6e:37:53:8d:90:ee:1f:c8:0f:20:b1:ab:ef:61:
75:ce:c8:db:db:14:28:8c:61:ca:85:7f:cf:17:27:17:c8:ef:
93:0b:08:03:a3:c5:b6:53:28:63:59:3e:70:e4:a8:4e:a6:dd:
4c:f5:18:04:6b:42:ed:2e:ae:46:3b:9f:0e:74:d5:fa:8f:5b:
d9:46:d3:76:6a:6e:86:20:cc:a1:f0:18:4d:76:3e:df:25:bb:
00:fd:31:05:7f:7f:3f:28:4b:86:56:0b:0a:4a:6c:ef:9c:9b:
14:bf:52:39:31:38:9f:9d:99:7a:69:fe:ad:71:1f:5e:7a:96:
1b:80:ad:9c:00:bf:4f:59:c2:f0:fa:3c:9b:1f:5d:e6:05:b9:
5a:f0:d6:70:8a:99:bc:9e:dd:b2:44:9a:dd:a8:a3:bb:06:25:
d7:c9:b4:36:72:cb:bd:66:fe:0d:c1:a4:46:bc:47:e7:bd:66:
69:27:72:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:16:07 2025 by rpki-client