Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
File: 20IFnOKR1Jpmkgcxx2faVj7yESQ.mft (raw, json)
Hash identifier: D8ycP8HwauN6h+XeO1ksOFCCI6jHgIpoWB7wn2nLHMg=
Subject key identifier: 09:77:0E:79:87:65:61:D6:A4:9F:EF:67:70:1E:CA:9E:A9:D3:4B:EF
Authority key identifier: DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
Certificate issuer: /CN=db42059ce291d49a66920731c767da563ef21124
Certificate serial: 019845F642EB3B31E8F259094A0B29F95F4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
Manifest number: 08FB
Signing time: Sat 26 Jul 2025 09:00:23 +0000
Manifest this update: Sat 26 Jul 2025 09:00:23 +0000
Manifest next update: Sun 27 Jul 2025 09:00:23 +0000
Files and hashes: 1: 20IFnOKR1Jpmkgcxx2faVj7yESQ.crl (hash: KsKLqwR+LiVqTH3VHHrXRJooB72/C0w4Crq7LD1ErF4=)
2: 4Eso2GRh3TFlocCc5lcI1-kD4Pk.roa (hash: ZZWcQEmA2vmSeltVrHKBZfPJ+X7E/tLB/wKbTZ0f8BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 06:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:f6:42:eb:3b:31:e8:f2:59:09:4a:0b:29:f9:5f:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db42059ce291d49a66920731c767da563ef21124
Validity
Not Before: Jul 26 09:00:23 2025 GMT
Not After : Jul 27 09:00:23 2025 GMT
Subject: CN=09770e79876561d6a49fef67701eca9ea9d34bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9c:8e:3b:98:3e:50:7b:7c:be:50:51:79:83:
a9:1d:f2:6a:e7:dd:36:62:45:8f:4d:06:37:65:b9:
ba:e8:60:24:28:db:74:4f:dd:73:17:4a:f8:a7:1e:
29:67:1f:cb:7a:f5:42:dc:7f:fc:fe:c2:b2:88:47:
42:ad:64:2e:0f:4c:71:22:f3:d3:0d:f6:8e:c9:a5:
bb:16:af:f0:1f:98:d6:ae:0e:ca:cc:5a:e6:d2:89:
c6:d6:23:c8:ec:3a:83:c8:51:af:af:4f:e7:9d:97:
54:43:92:a2:7a:32:d9:ae:29:30:33:7c:6b:ea:c2:
df:42:7f:67:f2:c0:8e:89:c1:60:87:ae:9a:63:0b:
20:c0:4e:33:95:1a:17:35:9b:d1:ad:62:aa:09:00:
27:fd:38:7c:cf:57:39:81:1d:b3:91:96:10:30:d7:
97:a3:fb:94:56:69:49:1c:cc:e4:c6:96:e9:c6:05:
ce:bb:16:80:fb:31:69:90:de:45:83:b5:6b:e1:ad:
b1:e4:8e:c3:74:d8:84:c4:71:54:11:fd:98:38:11:
06:6a:9b:1e:7b:36:27:38:67:85:24:69:f7:4a:7c:
82:d7:ba:e6:c9:3e:d3:75:e5:09:85:db:83:79:0f:
a5:02:62:8b:15:af:c2:f4:ed:34:5a:8a:03:70:d3:
7b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:77:0E:79:87:65:61:D6:A4:9F:EF:67:70:1E:CA:9E:A9:D3:4B:EF
X509v3 Authority Key Identifier:
keyid:DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:28:89:96:9c:2b:f5:74:b4:cd:15:48:6b:d9:74:db:90:ac:
de:02:32:5d:9e:6b:f3:45:a9:d1:46:f6:1a:6f:af:9e:1d:cb:
54:bd:27:d2:47:2a:92:f4:e7:70:69:f2:36:b8:99:80:70:38:
3f:34:9c:83:d1:0e:dd:4f:69:89:c9:fc:13:b1:39:3a:ca:25:
5b:47:59:b8:6c:26:31:72:0d:a8:91:a4:63:1d:68:fe:74:2c:
fc:c5:7f:6a:74:89:3f:1e:b9:7f:8b:d0:48:4c:05:f8:6b:54:
c5:d9:94:58:45:45:a9:51:f9:44:87:3f:57:4a:c5:6f:60:93:
64:78:d2:68:41:30:21:91:12:e3:0d:a6:6c:51:60:64:bb:bd:
4a:3a:42:d3:a5:af:04:57:43:f6:9d:41:85:ed:35:80:52:3f:
38:21:c4:05:ad:c8:87:65:3c:4a:a3:13:aa:ec:e1:e6:02:ae:
4f:b6:18:12:ec:81:ea:7f:59:2d:5f:e8:a3:79:84:1f:b5:57:
9e:35:12:ee:ce:5d:1c:84:26:1d:19:f0:80:0c:c5:7e:b9:c5:
09:d6:63:44:2d:27:97:32:71:83:ae:c1:a2:e4:d2:38:56:f1:
16:15:60:3d:d1:c0:6d:89:e5:6d:fb:56:af:3b:74:87:9b:df:
4a:a2:ef:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 15:19:42 2025 by rpki-client