Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/5ea569-f174-45c5-9db7-2af095ffc9bb/1/0fmHr1rbIwTUJvVA3l1lBUUjHlA.mft
File: 0fmHr1rbIwTUJvVA3l1lBUUjHlA.mft (raw, json)
Hash identifier: 0QT7/CmqKG7Vd8YlufYPVWetueeecAg8Kmp8w/FuqWA=
Subject key identifier: 6A:E5:4D:55:22:91:A3:B3:5E:F9:5F:79:3A:EC:24:7A:F6:AA:E6:22
Authority key identifier: D1:F9:87:AF:5A:DB:23:04:D4:26:F5:40:DE:5D:65:05:45:23:1E:50
Certificate issuer: /CN=d1f987af5adb2304d426f540de5d650545231e50
Certificate serial: 0198D4E07B6A13E181A0546207D3DC4756D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fmHr1rbIwTUJvVA3l1lBUUjHlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/5ea569-f174-45c5-9db7-2af095ffc9bb/1/0fmHr1rbIwTUJvVA3l1lBUUjHlA.mft
Manifest number: 0B31
Signing time: Sat 23 Aug 2025 03:02:18 +0000
Manifest this update: Sat 23 Aug 2025 03:02:18 +0000
Manifest next update: Sun 24 Aug 2025 03:02:18 +0000
Files and hashes: 1: 0fmHr1rbIwTUJvVA3l1lBUUjHlA.crl (hash: gSkbW4gOC8dNXirl31PFFlokilAz4QcZAhTcsURGYJ0=)
2: 5LrP6fsEeipB-xjaCGTQi9KsiHU.roa (hash: IUrzC+/E4lKM4F7rtTCN//MYlbyHBk9E/FLwLHHLeZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/5ea569-f174-45c5-9db7-2af095ffc9bb/1/0fmHr1rbIwTUJvVA3l1lBUUjHlA.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/5ea569-f174-45c5-9db7-2af095ffc9bb/1/0fmHr1rbIwTUJvVA3l1lBUUjHlA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0fmHr1rbIwTUJvVA3l1lBUUjHlA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:7b:6a:13:e1:81:a0:54:62:07:d3:dc:47:56:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f987af5adb2304d426f540de5d650545231e50
Validity
Not Before: Aug 23 03:02:18 2025 GMT
Not After : Aug 24 03:02:18 2025 GMT
Subject: CN=6ae54d552291a3b35ef95f793aec247af6aae622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:19:19:72:b8:63:5e:9f:df:3a:02:ee:ee:34:
e4:dc:b4:3a:62:60:52:5a:0c:d9:6e:26:af:f0:a6:
20:ed:b1:b3:b9:bd:fa:3c:74:01:7b:58:98:4d:d8:
bb:b9:ed:30:55:d6:2a:89:5a:19:b4:c3:9f:4e:aa:
3d:44:52:0c:48:4c:f3:89:f2:09:fc:78:bf:97:d9:
f4:ba:84:e5:4e:4c:78:6e:55:46:b7:c2:a3:27:b7:
06:ca:7a:41:bc:bc:b7:ba:f1:50:e3:b6:6e:93:83:
cb:79:a9:9f:41:55:ce:48:0c:2d:77:b6:3b:ed:74:
9d:ec:6b:f4:a1:08:e4:87:fa:27:85:6b:d1:81:7f:
13:00:81:3d:16:08:9f:ce:b1:ef:23:cd:d0:1f:68:
28:a6:38:cf:2f:75:f0:10:a2:48:00:e9:a8:d3:cb:
07:77:56:ef:a5:05:b8:ad:8a:5b:b1:92:bf:be:a8:
6e:ec:56:10:c6:23:e1:9f:07:18:1e:9f:97:0c:6d:
f4:5f:31:fd:2d:c0:12:ce:d4:24:b2:d0:73:97:c1:
7d:56:2d:bf:3c:3c:04:04:2d:58:7f:4f:20:f8:c1:
56:be:e2:09:b9:9f:cf:35:96:fb:72:65:03:4c:72:
b1:81:12:a4:1b:da:98:db:e0:01:e7:1c:4d:aa:5d:
e8:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E5:4D:55:22:91:A3:B3:5E:F9:5F:79:3A:EC:24:7A:F6:AA:E6:22
X509v3 Authority Key Identifier:
keyid:D1:F9:87:AF:5A:DB:23:04:D4:26:F5:40:DE:5D:65:05:45:23:1E:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fmHr1rbIwTUJvVA3l1lBUUjHlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/5ea569-f174-45c5-9db7-2af095ffc9bb/1/0fmHr1rbIwTUJvVA3l1lBUUjHlA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/5ea569-f174-45c5-9db7-2af095ffc9bb/1/0fmHr1rbIwTUJvVA3l1lBUUjHlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:b7:67:5a:f6:d9:74:3d:90:f4:71:ce:ba:d6:12:ca:77:07:
20:3b:62:00:c8:37:f7:f0:d1:dc:1a:d6:9e:53:d5:5e:a9:52:
c0:12:9a:a6:95:9b:1d:e3:da:61:1a:de:c7:5e:78:c2:bf:53:
72:f9:fe:a1:c2:0e:24:a2:09:74:f0:b0:83:4c:84:aa:6e:2f:
38:d4:b7:9b:ae:6e:f4:1c:ce:70:87:e4:ac:8d:35:5d:ed:7f:
d7:f9:61:4a:de:ae:93:22:e8:ac:af:ec:aa:eb:ab:ef:23:4a:
10:8d:f7:8f:f2:1c:53:34:0c:f3:9e:e0:6a:13:9c:62:4e:23:
70:cb:a1:07:68:ac:3c:9d:d9:2b:a7:61:d3:33:61:db:63:e9:
26:c0:85:eb:86:5c:3f:bc:93:4a:a0:4e:5e:c5:de:16:ec:d3:
18:ce:46:7d:d1:a2:86:2b:70:c9:47:18:2c:ac:d6:f1:aa:bd:
79:dc:92:d4:7d:bf:01:58:c9:88:39:4c:89:f7:fe:23:f2:3d:
9c:0f:84:13:21:01:3a:9e:97:5b:2f:e9:e3:ee:15:0d:c3:a0:
b9:af:e1:da:8c:7a:4b:fc:7a:10:4c:5b:35:4a:4a:84:21:1b:
96:5b:02:ed:7d:6c:7e:96:62:47:6b:28:ce:22:b5:34:a2:19:
8c:08:72:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:07:34 2025 by rpki-client