Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
File: 02JOkIx0mP22E1QnU-9Wx1zXBL0.mft (raw, json)
Hash identifier: OFOjJ4t6SqD4TTqlfarxAlN1MyLe7eKUpekI7GdUkDA=
Subject key identifier: 8D:D7:56:57:17:4E:AA:32:39:FF:DC:84:51:CE:19:99:07:F9:C0:CF
Authority key identifier: D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
Certificate issuer: /CN=d3624e908c7498fdb613542753ef56c75cd704bd
Certificate serial: 0198D515AF1ABF4C842F8D714FEB21817BA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
Manifest number: 0A85
Signing time: Sat 23 Aug 2025 04:00:24 +0000
Manifest this update: Sat 23 Aug 2025 04:00:24 +0000
Manifest next update: Sun 24 Aug 2025 04:00:24 +0000
Files and hashes: 1: 02JOkIx0mP22E1QnU-9Wx1zXBL0.crl (hash: uLSfALHEanoQPURHQCiojJ9e5YByVDM8+9y2omnngLU=)
2: _l8jrf0myWSyZHEusIZ6cmnQafE.roa (hash: gjseV+JPjv3tCrp8kMrsCJYjL6BjqLfcHlxvbKTgJog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:af:1a:bf:4c:84:2f:8d:71:4f:eb:21:81:7b:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3624e908c7498fdb613542753ef56c75cd704bd
Validity
Not Before: Aug 23 04:00:24 2025 GMT
Not After : Aug 24 04:00:24 2025 GMT
Subject: CN=8dd75657174eaa3239ffdc8451ce199907f9c0cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b1:ec:5a:89:48:ee:3f:c4:69:83:d3:a4:36:
a1:03:34:2a:d1:a0:74:97:65:08:56:46:23:66:9d:
62:04:1e:e7:d2:77:18:76:e7:33:62:13:bf:17:fa:
62:60:df:48:0e:90:b9:32:dc:d5:44:33:ee:fc:08:
61:00:56:29:ca:09:21:c2:b0:d1:ba:14:4e:8d:ff:
d2:9a:29:9e:0b:de:aa:d2:80:65:8e:95:8a:12:11:
36:94:ec:3c:e2:b3:5e:b0:7e:d8:62:26:eb:8e:9d:
78:43:16:44:6b:bd:74:7d:6c:2c:5a:4a:f2:dc:59:
56:37:eb:0a:7f:24:fb:53:4c:1e:cb:40:ad:80:14:
16:93:7f:5b:f9:65:d8:43:ae:90:26:6a:a5:46:01:
cb:d4:93:79:f8:e1:24:1f:29:6e:6b:88:22:82:ff:
bc:ff:5d:a7:ff:4d:65:06:50:a7:64:7e:fe:e8:6b:
38:ae:5d:e4:cc:66:4e:27:e7:73:ac:07:fa:d0:80:
e8:48:e6:b2:c9:f9:b6:99:e8:96:90:15:fe:bd:a7:
79:b0:f2:25:bb:88:bc:2c:e7:c1:52:08:f8:ad:2f:
ea:97:46:84:fd:11:7f:ca:d7:63:38:01:8e:1a:01:
0e:d4:ee:57:b2:3e:14:72:3c:fe:e1:f1:f0:97:f5:
0b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D7:56:57:17:4E:AA:32:39:FF:DC:84:51:CE:19:99:07:F9:C0:CF
X509v3 Authority Key Identifier:
keyid:D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:09:0a:57:69:65:b4:47:bf:81:5d:5b:2e:00:bb:f1:81:30:
a0:ba:cf:37:da:a3:08:14:26:c7:9a:27:63:8b:6a:07:d1:20:
25:82:01:b1:30:f7:11:41:54:7f:f6:f7:d8:b9:e0:8a:2a:22:
dc:83:7f:9c:c3:6f:33:ca:b2:4b:50:7b:8a:a3:64:39:91:fc:
7e:f0:1a:02:f9:83:b7:d7:16:3d:27:f7:6e:0f:d1:9c:08:ce:
af:5a:2f:b7:8b:fc:44:07:8a:61:65:a7:27:27:94:43:02:d6:
74:7c:d6:c7:2f:05:4a:5b:9a:c0:10:ee:28:fb:75:68:93:6a:
da:40:fa:49:b7:2c:9e:09:13:a1:70:57:5b:4d:c5:44:a3:21:
3a:71:b5:d3:ba:bf:14:7c:4a:96:0d:1c:6e:43:a4:e0:77:fb:
ba:6e:bb:d9:b8:65:f0:6b:38:30:89:f5:75:df:76:09:32:96:
db:f0:d2:bb:62:21:c2:c5:88:c5:14:26:6d:6e:4f:2f:d4:19:
ac:6f:7a:32:3a:4e:aa:78:69:0b:94:14:6e:b6:ac:fd:f9:d8:
b3:19:b3:b3:dc:b8:77:6d:45:2d:d0:1d:3a:8e:53:fb:af:a7:
27:5a:69:c3:ea:5a:5b:a0:92:a1:75:44:5a:58:f1:7c:af:35:
81:df:04:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:07:21 2025 by rpki-client