Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
File: 0mHPvAfsMGN33LFql6EWDHptgsw.mft (raw, json)
Hash identifier: TIMRL/YbrlCuHWbVbiiNWdZVIGhN2hrMXDWZ/BOAfI0=
Subject key identifier: 73:02:4B:6A:DC:7F:7B:32:0B:52:88:DA:19:C6:9B:9D:D6:CE:3D:87
Authority key identifier: D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC
Certificate issuer: /CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc
Certificate serial: 0198D54ECDEB70B3819276CECDFD7582F333
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
Manifest number: 028A
Signing time: Sat 23 Aug 2025 05:02:48 +0000
Manifest this update: Sat 23 Aug 2025 05:02:48 +0000
Manifest next update: Sun 24 Aug 2025 05:02:48 +0000
Files and hashes: 1: 0mHPvAfsMGN33LFql6EWDHptgsw.crl (hash: pLrBD4/kC5cTIXHhWZ5ZOygzrl43x63ZzW5EUMboI2U=)
2: 1-242YNLxFtHiZKrZjOTCTUI_hX4.roa (hash: Zl/0hNDNG1rQGa8HsGyytZ4/ZO9Krs9kfipHSTu8iZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:cd:eb:70:b3:81:92:76:ce:cd:fd:75:82:f3:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc
Validity
Not Before: Aug 23 05:02:48 2025 GMT
Not After : Aug 24 05:02:48 2025 GMT
Subject: CN=73024b6adc7f7b320b5288da19c69b9dd6ce3d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:95:48:47:23:78:b6:01:96:b4:f9:e4:a7:5d:
95:2c:9a:7c:98:85:76:43:4f:d7:6b:ae:a2:a2:67:
23:74:0b:be:56:1d:35:87:96:8c:6c:0c:ba:73:b4:
b0:e8:f1:5a:a3:23:94:f7:e5:45:6f:ba:de:39:8a:
dd:84:f1:df:82:8a:d3:bc:ef:86:dd:4a:d1:74:bd:
09:96:91:77:a4:1e:e3:ff:f9:0e:f4:18:cf:40:1b:
82:b6:96:46:d2:d1:33:9d:c6:02:07:df:35:a0:ee:
23:04:4a:03:0a:d8:5e:da:a7:95:9d:9d:1e:40:ae:
9c:f6:ef:8b:33:bf:a9:a6:3f:d0:cd:a5:c9:11:5b:
e6:7a:6a:f2:8f:86:cb:b3:37:48:ce:8c:ca:05:49:
f5:9d:fc:13:64:01:b2:bb:db:d2:7d:c8:83:f1:1a:
e2:4b:0d:9f:62:fd:60:10:42:03:b5:ec:44:a1:2b:
22:fa:e8:fa:30:e4:be:4a:0b:60:2d:7d:3f:2f:56:
26:24:bb:63:4f:5c:36:86:b0:a0:9c:82:07:4f:3a:
48:40:c6:90:58:d5:39:87:31:86:d2:1a:34:e8:07:
1c:49:84:85:e8:6a:66:e4:50:35:10:f5:fc:f4:bd:
c7:c9:cd:95:23:cc:61:7c:48:a1:6c:cf:f4:85:95:
24:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:02:4B:6A:DC:7F:7B:32:0B:52:88:DA:19:C6:9B:9D:D6:CE:3D:87
X509v3 Authority Key Identifier:
keyid:D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:75:0f:46:a8:9a:1a:8e:6e:8c:93:de:aa:08:b3:04:d8:a8:
e2:85:32:17:df:48:f2:ca:84:b3:dc:00:f1:b1:27:0d:46:8a:
e4:f6:bd:ee:19:82:20:54:3d:27:f3:4f:f2:ba:9d:d1:75:d8:
c3:2f:a0:8c:3c:2f:d4:48:fb:4a:e7:59:10:b0:02:e3:43:c2:
a5:0d:36:1e:be:1e:f5:8d:00:2e:71:e3:28:09:b8:ea:65:ee:
02:b3:81:34:66:b7:df:b8:27:1e:a9:d7:54:c0:a3:bf:da:95:
a7:f0:51:65:f7:a4:5a:81:c5:02:7d:61:5c:80:7c:59:80:f0:
69:8d:a0:f0:70:1e:91:bb:43:0e:e2:a8:cd:b0:f6:4c:bc:3a:
30:ec:51:ea:d5:ce:de:3e:3a:c0:35:70:c7:cd:8d:d4:29:13:
f8:73:e5:00:0b:53:29:55:b9:28:e1:33:fb:57:06:87:f7:29:
0f:64:3f:64:05:55:93:19:bb:3a:94:a1:0a:99:f9:a8:17:d8:
d4:55:08:a8:a4:01:6e:eb:a1:bb:4c:9e:67:c7:92:6e:f1:a2:
aa:72:86:f8:15:ea:a3:10:ea:9f:d8:91:a5:f3:22:59:98:6a:
b2:c8:35:52:7e:85:90:08:63:a8:8e:05:2d:30:64:99:98:00:
b0:9a:43:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTs3rcLOBknbOzf11gvMzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNjFjZmJjMDdlYzMwNjM3N2RjYjE2YTk3YTExNjBjN2E2
ZDgyY2MwHhcNMjUwODIzMDUwMjQ4WhcNMjUwODI0MDUwMjQ4WjAzMTEwLwYDVQQD
Eyg3MzAyNGI2YWRjN2Y3YjMyMGI1Mjg4ZGExOWM2OWI5ZGQ2Y2UzZDg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZVIRyN4tgGWtPnkp12VLJp8mIV2
Q0/Xa66iomcjdAu+Vh01h5aMbAy6c7Sw6PFaoyOU9+VFb7reOYrdhPHfgorTvO+G
3UrRdL0JlpF3pB7j//kO9BjPQBuCtpZG0tEzncYCB981oO4jBEoDCthe2qeVnZ0e
QK6c9u+LM7+ppj/QzaXJEVvmemryj4bLszdIzozKBUn1nfwTZAGyu9vSfciD8Rri
Sw2fYv1gEEIDtexEoSsi+uj6MOS+SgtgLX0/L1YmJLtjT1w2hrCgnIIHTzpIQMaQ
WNU5hzGG0ho06AccSYSF6Gpm5FA1EPX89L3Hyc2VI8xhfEihbM/0hZUkVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHMCS2rcf3syC1KI2hnGm53Wzj2HMB8GA1UdIwQY
MBaAFNJhz7wH7DBjd9yxapehFgx6bYLMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMG1IUHZBZnNNR04zM0xGcWw2RVdESHB0Z3N3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS80ZWFmYzktNTQ3My00NjAyLWExNDkt
OTIyYTE2ZDExN2RkLzEvMG1IUHZBZnNNR04zM0xGcWw2RVdESHB0Z3N3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS80ZWFmYzktNTQ3My00NjAyLWExNDktOTIyYTE2ZDExN2Rk
LzEvMG1IUHZBZnNNR04zM0xGcWw2RVdESHB0Z3N3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYXUPRqia
Go5ujJPeqgizBNio4oUyF99I8sqEs9wA8bEnDUaK5Pa97hmCIFQ9J/NP8rqd0XXY
wy+gjDwv1Ej7SudZELAC40PCpQ02Hr4e9Y0ALnHjKAm46mXuArOBNGa337gnHqnX
VMCjv9qVp/BRZfekWoHFAn1hXIB8WYDwaY2g8HAekbtDDuKozbD2TLw6MOxR6tXO
3j46wDVwx82N1CkT+HPlAAtTKVW5KOEz+1cGh/cpD2Q/ZAVVkxm7OpShCpn5qBfY
1FUIqKQBbuuhu0yeZ8eSbvGiqnKG+BXqoxDqn9iRpfMiWZhqssg1Un6FkAhjqI4F
LTBkmZgAsJpDgA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:15 2025 by rpki-client