Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/10ce73-3d4f-43ef-b685-250a4d777ba6/1/0TAReuHNwt8cWIFuAOVFH4fvs3A.mft
File: 0TAReuHNwt8cWIFuAOVFH4fvs3A.mft (raw, json)
Hash identifier: YvinP3oA3DzSIHktZXI+i5nPXkaMVLk2mMwPNHqDwJY=
Subject key identifier: 54:D9:C2:B7:8F:68:09:53:64:A8:9B:03:0E:5D:CB:0F:B9:63:80:97
Authority key identifier: D1:30:11:7A:E1:CD:C2:DF:1C:58:81:6E:00:E5:45:1F:87:EF:B3:70
Certificate issuer: /CN=d130117ae1cdc2df1c58816e00e5451f87efb370
Certificate serial: 01984B546EAF3D8E28464641C53E6B5FAE27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0TAReuHNwt8cWIFuAOVFH4fvs3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/10ce73-3d4f-43ef-b685-250a4d777ba6/1/0TAReuHNwt8cWIFuAOVFH4fvs3A.mft
Manifest number: 068F
Signing time: Sun 27 Jul 2025 10:01:21 +0000
Manifest this update: Sun 27 Jul 2025 10:01:21 +0000
Manifest next update: Mon 28 Jul 2025 10:01:21 +0000
Files and hashes: 1: 0TAReuHNwt8cWIFuAOVFH4fvs3A.crl (hash: k05oXR+vSOKWuaA7WJr7OCc2DBC2GYaN9BiZSkWAG7M=)
2: z_Ej6CoZbrKxrzLQhz11AHSKLRg.roa (hash: UVS5jjAa9OEvk26uuzlwcbiMZWOU5g+RlzuAxXPKfXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/10ce73-3d4f-43ef-b685-250a4d777ba6/1/0TAReuHNwt8cWIFuAOVFH4fvs3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/10ce73-3d4f-43ef-b685-250a4d777ba6/1/0TAReuHNwt8cWIFuAOVFH4fvs3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0TAReuHNwt8cWIFuAOVFH4fvs3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 09:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:54:6e:af:3d:8e:28:46:46:41:c5:3e:6b:5f:ae:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d130117ae1cdc2df1c58816e00e5451f87efb370
Validity
Not Before: Jul 27 10:01:21 2025 GMT
Not After : Jul 28 10:01:21 2025 GMT
Subject: CN=54d9c2b78f68095364a89b030e5dcb0fb9638097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:eb:44:99:f1:47:d4:62:c9:70:ce:8c:d0:cc:
db:d8:3a:3e:c1:ab:26:d9:69:4b:38:1a:f2:04:4e:
48:9c:cb:6f:49:ac:e0:2c:ee:c1:a8:80:a9:e0:37:
95:bb:40:a7:a4:a4:e9:47:a9:9b:e3:b0:88:72:84:
8c:62:bf:0c:fd:a3:96:f3:c9:c0:c2:bb:36:83:b6:
1d:0a:88:3d:6b:1a:74:1a:47:ee:b6:18:d7:19:09:
d6:88:35:c4:47:76:38:28:5e:b2:49:08:34:01:85:
de:b0:8f:59:08:ef:3e:14:80:22:fc:99:f6:da:94:
0e:a7:a6:84:7f:c1:6d:ea:5d:a2:28:0d:8b:71:f7:
98:56:7a:53:0f:b7:32:94:b9:e6:21:bf:66:3d:8f:
58:5e:e2:3b:62:db:d2:fb:0c:75:db:67:80:a2:07:
fe:c1:70:e7:a9:58:32:ea:de:c3:c8:f0:9c:61:09:
02:07:d3:92:d0:5e:56:f8:0c:42:e9:4c:ff:74:25:
ee:65:89:ea:35:5d:a7:67:41:12:db:5b:d2:09:c7:
bf:5b:b1:9b:2c:42:49:11:69:78:58:3d:70:56:c7:
32:72:bc:38:75:23:15:8a:be:03:28:3c:a7:c2:25:
ca:b8:30:33:81:bc:19:2e:12:ae:0f:db:46:8c:46:
b1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:D9:C2:B7:8F:68:09:53:64:A8:9B:03:0E:5D:CB:0F:B9:63:80:97
X509v3 Authority Key Identifier:
keyid:D1:30:11:7A:E1:CD:C2:DF:1C:58:81:6E:00:E5:45:1F:87:EF:B3:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0TAReuHNwt8cWIFuAOVFH4fvs3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/10ce73-3d4f-43ef-b685-250a4d777ba6/1/0TAReuHNwt8cWIFuAOVFH4fvs3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/10ce73-3d4f-43ef-b685-250a4d777ba6/1/0TAReuHNwt8cWIFuAOVFH4fvs3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:8a:26:52:84:33:ac:3a:e9:9d:91:42:b9:21:8e:4d:25:3e:
2c:85:0f:b9:9e:2b:3a:1c:02:8d:5b:b4:26:aa:01:3c:fe:ac:
2e:64:82:15:0d:0f:1b:13:e2:7a:5e:85:c5:98:6b:ee:df:26:
4b:5a:b0:f3:9c:95:39:bb:31:8b:aa:cc:06:e4:4a:a6:56:0f:
a9:35:b2:b2:93:96:37:ae:7c:57:24:9c:d9:9a:38:fa:04:80:
78:b2:f5:eb:49:41:3b:dc:a1:1f:a9:89:25:06:3c:52:a0:d1:
cf:a7:c4:3f:b5:7b:94:a1:e1:4f:05:f5:c2:03:20:c1:67:04:
40:bb:32:3b:45:3e:03:45:c9:36:42:84:57:9c:1e:69:ed:80:
10:35:9a:a1:1c:1d:77:b7:18:a9:05:71:95:ca:26:01:24:d7:
92:6e:ec:ac:ab:9b:0a:57:0f:c9:d6:43:fb:a9:8b:bb:49:ae:
12:ec:b0:91:e1:67:f8:46:d1:63:3c:49:fe:a8:d6:4c:47:02:
93:1f:50:b3:42:93:19:65:07:2a:85:02:39:b3:fc:f0:a5:57:
61:b8:49:9b:1b:2a:a4:07:65:3f:65:75:83:18:ec:ac:84:73:
00:79:a0:59:08:d7:95:a7:70:89:ad:49:5d:7a:e3:31:ae:80:
36:25:b1:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 16:59:49 2025 by rpki-client