Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
File: 0KNDo37K0r-yw1vZsm1_SLy1dTc.mft (raw, json)
Hash identifier: 0WqGrDi1y0n751hIXrXg6CsvbClIvv3DuvvQ2yLHIXA=
Subject key identifier: 09:C8:AC:DF:D4:D2:24:4B:D1:73:27:E6:53:51:9C:F9:20:92:C6:38
Authority key identifier: D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
Certificate issuer: /CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Certificate serial: 0198D8BD871E7B2529FBDCC4B610668F9005
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
Manifest number: 15DC
Signing time: Sat 23 Aug 2025 21:02:36 +0000
Manifest this update: Sat 23 Aug 2025 21:02:36 +0000
Manifest next update: Sun 24 Aug 2025 21:02:36 +0000
Files and hashes: 1: 0KNDo37K0r-yw1vZsm1_SLy1dTc.crl (hash: aXlFOR7qHyeBPU2u1oAdpOvN6y3FNvOczmg+K/vt2p4=)
2: cednPNYKxfRsr4W4osQ0UxWr_xg.roa (hash: bAnClABodJAGvw6mOL61pHv3A1a0Gmryz3vjrqAKOxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:bd:87:1e:7b:25:29:fb:dc:c4:b6:10:66:8f:90:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Validity
Not Before: Aug 23 21:02:36 2025 GMT
Not After : Aug 24 21:02:36 2025 GMT
Subject: CN=09c8acdfd4d2244bd17327e653519cf92092c638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b1:ca:1f:5e:4c:94:65:0d:86:ee:50:86:67:
2b:4c:f1:af:8a:55:88:a4:9a:2b:fe:ab:66:6d:43:
85:57:33:e8:74:08:fc:05:ea:34:72:c3:e3:03:b9:
cc:b3:98:0e:ac:2a:fa:db:73:8a:15:28:40:0e:b5:
50:b3:f1:a0:ad:fc:07:22:50:e8:19:d2:32:55:ad:
55:6c:e9:38:92:52:57:a9:d1:c6:bc:73:b2:b8:26:
d9:e6:86:aa:e6:4a:29:06:5c:90:de:66:e1:39:f9:
9c:10:0b:44:03:e3:1f:9b:74:40:3d:b3:60:0c:a8:
07:7d:26:b3:23:1f:41:14:4f:aa:c8:bd:fa:ee:2e:
df:60:75:af:52:fd:f1:90:be:2c:b5:ab:29:6e:03:
6d:ba:9a:5e:aa:d4:3f:5f:c3:14:15:d4:00:dd:45:
93:94:80:1b:35:60:d2:cf:47:87:7c:0f:0c:d6:8f:
f2:88:12:61:e4:07:7f:48:33:e6:4c:ec:a2:47:82:
0d:30:e2:bc:95:ae:8a:4a:80:4b:e9:7c:aa:18:e7:
b8:ba:e8:bd:6d:c0:aa:30:40:55:90:27:5f:c9:23:
e7:2a:d8:4d:12:bc:c8:51:d7:1f:aa:2d:eb:2d:8d:
8c:21:09:e8:5e:64:6f:88:53:25:e1:7e:29:52:eb:
01:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C8:AC:DF:D4:D2:24:4B:D1:73:27:E6:53:51:9C:F9:20:92:C6:38
X509v3 Authority Key Identifier:
keyid:D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:38:b4:85:20:c0:ff:b3:dc:ab:b9:d0:92:6e:a9:05:b4:f4:
8e:e8:dc:d4:23:c7:15:36:98:4f:be:c2:c8:a3:f5:5a:9c:7c:
dd:42:74:f8:5a:4d:6b:a9:f5:83:e1:25:e3:ad:7a:19:ae:be:
79:41:91:14:0a:24:7c:8d:c9:b2:bf:e2:cc:ea:6a:d0:78:ad:
14:b4:71:e5:13:96:4e:53:ac:97:48:43:f2:d9:b6:03:b4:b7:
f6:02:64:17:92:ad:d6:c0:d8:89:d7:2e:57:2c:47:19:2f:fb:
3b:68:32:9e:5e:5a:07:3c:55:f2:ad:b1:0f:1c:f7:39:a6:04:
02:79:26:e8:0b:f7:50:f5:50:ec:61:59:a2:ef:13:ca:66:ac:
9d:8a:26:bf:f9:f9:a4:a5:67:ae:33:91:80:c1:aa:73:bf:a4:
fa:2d:7f:2a:1e:d1:2d:31:21:fd:d3:38:16:73:bb:b5:f0:90:
23:17:f4:9f:e8:a7:b7:86:7b:14:1c:b1:b3:1b:60:88:e4:87:
77:8d:5d:68:c5:da:01:ee:70:f7:61:e0:a2:63:a5:eb:b1:2d:
dd:77:3f:3b:2b:46:d8:23:3b:a5:4e:a3:b1:54:87:f2:d8:61:
ad:2c:0e:1e:68:6f:fe:5a:63:56:86:51:71:35:a1:19:d6:8d:
9d:58:c3:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:38:26 2025 by rpki-client