Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json)
Hash identifier: 7m00Y6fPAsLc6ZLX5NcFewhQ7iAwpZKZkMnG+bh3Akk=
Subject key identifier: 8B:49:C5:3B:F7:45:83:40:31:05:2D:11:58:AF:F3:A8:F0:B7:27:2E
Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782
Certificate serial: 0198D4A78C739663234AFC42E5174ADBCCB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
Manifest number: 0D20
Signing time: Sat 23 Aug 2025 02:00:06 +0000
Manifest this update: Sat 23 Aug 2025 02:00:06 +0000
Manifest next update: Sun 24 Aug 2025 02:00:06 +0000
Files and hashes: 1: KH_j-0tZP7kZGa_RGAqb8KjeOKE.roa (hash: nJQFit94GD/cIbI8GNPP+c6lmHYIPdofJMVeQt5hkQ4=)
2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: W8EEK+J9ot9EHt3y5CYtNbmoJQhpwSWO9mWWRwUdofo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:8c:73:96:63:23:4a:fc:42:e5:17:4a:db:cc:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782
Validity
Not Before: Aug 23 02:00:06 2025 GMT
Not After : Aug 24 02:00:06 2025 GMT
Subject: CN=8b49c53bf745834031052d1158aff3a8f0b7272e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b0:90:d8:6b:0a:80:94:29:4d:b2:9e:d5:87:
3e:ad:52:b2:19:76:b0:aa:fa:0a:85:51:fc:03:58:
37:23:53:76:1f:4c:15:d1:c7:32:3b:e3:a5:35:36:
36:c9:3c:85:63:19:a8:99:6c:82:5f:18:03:75:87:
4c:7e:e2:52:db:6c:12:fb:82:b9:e9:5d:a2:92:75:
ee:46:4f:5e:f6:48:16:f6:59:1b:65:e1:9d:71:ad:
dd:8e:d8:46:4c:de:54:39:5a:53:33:fd:19:62:b8:
60:97:85:11:95:99:6d:d5:ae:27:b0:55:90:2a:86:
e8:8e:ad:c7:a0:70:ec:b4:50:53:11:bc:eb:d4:f9:
4d:68:83:37:c7:a3:79:13:9b:74:bf:59:fc:59:1f:
68:d2:39:5e:78:3f:dc:cd:75:2e:32:cb:e5:20:b2:
31:b8:fb:52:52:5c:1a:35:39:5d:4d:70:33:30:4e:
25:7f:67:02:2d:e8:e1:46:74:78:b1:ad:f8:e1:da:
5f:0e:99:eb:bf:5a:f9:80:c6:ca:77:02:6b:c8:7f:
47:85:23:3f:0f:25:0e:1d:f0:13:57:2a:a3:36:d6:
11:2f:7f:84:aa:6e:6c:f9:fe:b1:b2:20:6b:17:25:
4a:ce:15:50:13:37:35:21:03:a1:ae:62:ea:c3:34:
e6:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:49:C5:3B:F7:45:83:40:31:05:2D:11:58:AF:F3:A8:F0:B7:27:2E
X509v3 Authority Key Identifier:
keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:e0:67:22:44:19:eb:c9:c2:18:1d:43:c2:99:da:b9:a8:bb:
73:fc:b4:8d:9d:63:50:a2:41:14:11:db:02:44:06:a3:2c:49:
6e:b7:06:ef:81:9b:5f:61:26:1a:b2:e0:31:59:04:1d:d9:f1:
97:52:1f:35:79:18:4a:36:f3:cf:31:81:f4:b6:26:92:63:fc:
09:39:b2:e1:63:ad:d6:a9:00:eb:b5:be:79:b8:99:8e:6d:ca:
14:9f:a6:fa:71:bb:d3:fb:ed:cf:e7:63:3b:d7:7d:02:77:e6:
7d:72:fc:0b:b1:9f:ac:85:e8:6c:1b:d5:b4:e5:ea:21:29:07:
a4:d4:48:9a:53:15:05:32:63:a8:b2:6c:77:6b:27:fe:89:38:
4d:6e:d9:be:2f:f5:af:6a:fb:29:e0:c5:c3:3a:46:58:9e:9b:
96:db:cf:b0:a4:ae:93:f7:58:7c:ea:a5:4f:d7:30:80:23:d6:
ee:0b:ca:50:e5:9f:ac:9e:31:23:31:30:f0:0e:d2:d1:8a:79:
cb:ac:3a:82:71:a3:d4:af:cb:7f:f5:68:ff:d2:6f:67:23:40:
56:26:64:18:de:c7:6c:cd:86:91:52:9b:c0:52:b9:36:cc:45:
05:22:85:18:dd:aa:78:fc:d5:e7:6d:26:85:e8:e5:63:fe:3a:
cf:33:28:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:46:20 2025 by rpki-client