Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
File: koDT5GcpaPhuiVXbYgy3ZdudcUI.mft (raw, json)
Hash identifier: g70wNhY6dePjZcTVSuD3slF2b3sFl+dY8yWZsH3zj2c=
Subject key identifier: 44:C0:F1:0C:6E:DB:88:B0:1E:4B:92:F8:A0:AA:A1:52:91:18:CD:06
Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142
Certificate serial: 0198499BE9837C294C80B3A0A1BD4257D45E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
Manifest number: 0A30
Signing time: Sun 27 Jul 2025 02:00:11 +0000
Manifest this update: Sun 27 Jul 2025 02:00:11 +0000
Manifest next update: Mon 28 Jul 2025 02:00:11 +0000
Files and hashes: 1: HJG2LfZbcdQILd5mjrG6JouJjB8.roa (hash: AJsKTbmetLnV+AkJjtEMj7IQPl7myVO7TWx6kpWmD6s=)
2: koDT5GcpaPhuiVXbYgy3ZdudcUI.crl (hash: gcuhH/7BFwpvWhfM05qKT4lzqeUxfF5tByQ5GY/ye5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:9b:e9:83:7c:29:4c:80:b3:a0:a1:bd:42:57:d4:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142
Validity
Not Before: Jul 27 02:00:11 2025 GMT
Not After : Jul 28 02:00:11 2025 GMT
Subject: CN=44c0f10c6edb88b01e4b92f8a0aaa1529118cd06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:96:29:4d:2c:e9:20:fc:18:7a:59:2f:c7:de:
ff:d8:53:97:25:80:b4:3b:80:20:fb:73:f4:47:d0:
7e:80:b1:33:99:ba:d0:01:6a:38:8e:c0:80:ab:c5:
ca:ab:f4:c0:10:53:87:69:7e:e0:7c:3d:db:de:49:
45:bb:40:1d:62:91:34:0c:1a:ad:af:04:0f:4f:f6:
f8:ba:e4:06:87:b2:39:c1:78:12:4d:84:b1:b9:36:
ee:ed:77:b9:42:5b:27:80:45:35:a8:71:7d:52:43:
b4:c6:c9:70:40:44:1b:29:c7:31:61:e7:58:56:e1:
2d:23:c6:73:f1:bd:fe:6e:3d:8d:36:e8:5c:c6:ce:
eb:e8:4a:d7:9e:57:d3:2c:62:21:c8:55:fb:89:5e:
e3:82:9c:1e:5f:ed:fa:a6:ff:5b:07:7d:fb:af:d4:
2b:ed:e4:a5:0e:dd:67:20:59:3c:9b:09:15:34:31:
e7:04:dd:bb:ff:ae:85:a8:f5:53:14:93:02:5c:f1:
93:b9:62:57:9d:d3:b3:62:a0:f8:58:cf:57:86:50:
be:cd:2f:9e:ac:11:fb:eb:b9:10:b4:ad:a6:37:9e:
31:65:67:12:c0:1e:20:a5:a9:66:e4:91:ca:7e:ce:
8d:f6:88:24:21:78:f2:43:61:3a:19:e0:8e:e4:3e:
7e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C0:F1:0C:6E:DB:88:B0:1E:4B:92:F8:A0:AA:A1:52:91:18:CD:06
X509v3 Authority Key Identifier:
keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:d6:6f:c5:63:81:c7:33:64:1a:6d:36:2f:3e:51:de:1d:33:
08:4e:6f:df:17:12:2c:20:d4:ce:9d:21:78:54:c6:6d:ff:91:
8f:59:a0:0f:be:de:f5:f0:67:5b:fb:38:a8:24:1c:97:08:8c:
d7:ca:07:3b:d2:ce:ad:ab:09:fe:58:db:30:96:12:27:b5:e9:
1d:50:f2:e7:b8:fe:b6:c5:8c:d2:7f:19:0d:6c:03:45:ed:57:
ef:b4:64:47:62:0b:8d:50:50:63:d4:1f:60:fa:80:ee:58:07:
d1:1f:d2:81:f7:bb:4c:a9:15:70:5a:2c:41:13:0b:1a:4c:d2:
07:5e:e7:38:ed:c3:ea:fb:01:ab:82:d4:96:05:8f:67:00:9a:
7b:0a:f1:4a:19:4c:21:56:04:0f:ef:38:eb:59:b2:04:90:27:
a8:ea:21:3f:a9:6a:4c:6b:8c:c7:93:bf:7f:31:d6:06:98:47:
d1:89:58:b2:b0:63:b5:ae:d1:f3:ef:8d:ee:88:9d:df:bd:b1:
c9:83:c5:c7:ef:17:ef:a0:b6:97:e5:01:50:e9:ae:07:a8:66:
f1:22:10:96:dd:13:38:7c:db:91:2a:0f:7c:24:64:47:aa:9c:
d1:18:16:10:bd:a1:b3:ea:cc:72:44:3e:11:d1:c3:8f:13:d2:
64:d5:a1:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 12:20:28 2025 by rpki-client