Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
File: 0PT6gHWHU7JDohZe3ep12-7oJsQ.mft (raw, json)
Hash identifier: 48/wWjxG473LO252eatzemPmxFWb1DDP8N2DJot26go=
Subject key identifier: B4:D7:F2:57:47:D4:65:E7:B7:33:95:E2:86:23:AE:20:17:71:B5:2C
Authority key identifier: D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4
Certificate issuer: /CN=d0f4fa80758753b243a2165eddea75dbeee826c4
Certificate serial: 0198D583D92795688267DB1169482DBEF027
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
Manifest number: 1135
Signing time: Sat 23 Aug 2025 06:00:44 +0000
Manifest this update: Sat 23 Aug 2025 06:00:44 +0000
Manifest next update: Sun 24 Aug 2025 06:00:44 +0000
Files and hashes: 1: 0PT6gHWHU7JDohZe3ep12-7oJsQ.crl (hash: h4+Dqlw6C3j7cDCSOV+Bh60xyqMq9UOoysuC8DirrvM=)
2: dylc3WZzrjgV2VB-T70ps5y7_v8.roa (hash: CjiSp/7ghqmIWPlGrqN52h+3zV23QhuVF2kvnW7CFVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:d9:27:95:68:82:67:db:11:69:48:2d:be:f0:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f4fa80758753b243a2165eddea75dbeee826c4
Validity
Not Before: Aug 23 06:00:44 2025 GMT
Not After : Aug 24 06:00:44 2025 GMT
Subject: CN=b4d7f25747d465e7b73395e28623ae201771b52c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b3:41:10:40:90:52:69:68:25:0b:ad:9b:04:
34:25:28:4f:7f:89:cb:f4:b2:23:5d:b7:75:52:a6:
a3:b2:d4:8c:b9:12:c9:63:27:b9:5f:54:05:3c:d1:
f7:97:eb:44:2e:c2:e3:7d:3c:37:17:fb:3f:71:05:
74:ff:3c:9a:11:8b:cc:61:09:70:1e:45:c0:7c:97:
0c:3d:78:15:bb:9e:fe:bd:4d:b2:ae:d6:c7:54:b9:
40:1b:e6:2d:13:ca:fb:b7:d3:2c:27:0f:7a:d8:c6:
d7:51:53:b8:5e:a7:c3:18:ac:00:d5:2e:d2:3d:11:
3d:b4:5b:55:68:43:ea:eb:90:ae:a3:c0:c9:08:59:
1f:e4:0d:78:f0:23:de:96:f6:23:68:56:ef:49:81:
01:20:2b:f5:03:60:23:12:49:fc:e0:50:c6:fe:23:
bb:a6:04:31:f2:e7:5d:14:81:05:97:97:38:32:5e:
40:7a:8f:98:ca:d9:06:00:fa:0e:77:88:b9:cc:b5:
9d:ce:7c:a7:46:f0:93:70:83:79:54:6f:b6:c7:2e:
57:c3:70:96:f7:10:32:18:f5:bd:61:71:d8:bd:b5:
f3:2e:b0:29:a2:86:1f:4b:24:e2:de:c2:e8:e5:bc:
65:7c:3d:53:5e:8b:8a:e2:39:96:0a:5b:ac:53:fb:
7b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D7:F2:57:47:D4:65:E7:B7:33:95:E2:86:23:AE:20:17:71:B5:2C
X509v3 Authority Key Identifier:
keyid:D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:96:0b:27:fa:91:36:c3:22:fa:28:51:f7:f9:23:fb:cd:87:
ca:47:16:2c:45:e4:09:17:1f:6b:6c:2b:15:bf:59:40:27:7b:
88:55:d1:31:27:1f:f4:d4:5c:83:99:bb:9b:46:cd:00:5b:f4:
37:0e:1b:da:9b:55:ae:c0:5b:2f:9a:73:1f:84:8f:0c:38:50:
0e:a8:15:bf:48:7d:68:c2:1a:a5:5f:d7:aa:e6:46:f3:20:8c:
31:89:49:a9:fb:a2:11:19:78:0c:c4:ca:fe:6e:13:6a:db:91:
30:22:50:52:6c:88:b6:0f:7d:b7:3b:df:04:1d:7b:0d:59:5b:
eb:e5:86:d5:30:b7:76:aa:9b:7e:7f:33:d4:14:f7:07:55:91:
59:d3:77:5c:ad:9d:4f:89:00:7f:c5:d3:d6:a3:4b:09:81:41:
fa:1b:aa:ae:bc:95:e6:28:df:b7:2d:9f:4a:3f:fe:f6:cb:37:
71:6c:79:8e:57:08:aa:17:6c:ff:c8:08:fe:e3:83:c9:18:11:
53:44:e7:a6:b9:39:4c:07:7a:9c:8e:8c:87:e0:a7:bd:bf:30:
7b:d5:05:fa:a2:26:30:37:10:a6:1a:4c:3b:59:b8:1b:a2:ca:
5d:d9:86:e2:30:e8:91:57:be:0f:b5:f8:ee:e8:59:5e:0f:00:
0a:59:db:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:40:40 2025 by rpki-client