Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
File: i70nOhRTYWFVEmDYSNdvomRGzUY.mft (raw, json)
Hash identifier: kBYqV+kekHpPwdb2h4m9KKQc8zQ07uZDBhRJLXaz6zk=
Subject key identifier: 10:BD:49:F6:55:22:9B:8B:AA:B9:04:57:C2:18:1D:AC:35:07:15:0C
Authority key identifier: 8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
Certificate issuer: /CN=8bbd273a14536161551260d848d76fa26446cd46
Certificate serial: 0198499C59B170BFA1D677CB603BBB75A475
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
Manifest number: 01D9
Signing time: Sun 27 Jul 2025 02:00:39 +0000
Manifest this update: Sun 27 Jul 2025 02:00:39 +0000
Manifest next update: Mon 28 Jul 2025 02:00:39 +0000
Files and hashes: 1: i70nOhRTYWFVEmDYSNdvomRGzUY.crl (hash: GGftw3nps0Zcq5qsJmxFFom6S2ydlON2gG6zNSbxX04=)
2: iW3M8w8EnOfRKmq5UL0Jzk_nXrc.roa (hash: vQxUQ/gQ4diOyDGNSgt4mcIRpvqTprh0PY77byZ05KY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:9c:59:b1:70:bf:a1:d6:77:cb:60:3b:bb:75:a4:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbd273a14536161551260d848d76fa26446cd46
Validity
Not Before: Jul 27 02:00:39 2025 GMT
Not After : Jul 28 02:00:39 2025 GMT
Subject: CN=10bd49f655229b8baab90457c2181dac3507150c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:44:56:30:17:21:80:5a:de:1c:09:1f:ad:ec:
22:16:a9:a2:4c:f8:2e:8b:0e:ce:15:91:b4:48:8c:
6b:56:91:1c:3a:8b:a3:83:15:97:54:1f:e6:b0:67:
d9:a9:63:0d:38:b1:c1:12:34:b5:e5:cf:b1:70:a0:
9d:86:cd:28:5e:b5:03:dc:05:ba:42:f2:cb:59:da:
ce:51:45:45:0f:42:24:08:d2:58:c3:16:4b:ef:95:
df:33:6d:f2:5a:46:56:e3:28:73:c9:ad:08:55:0b:
43:28:5e:92:4b:d2:c8:5c:33:0c:f6:aa:09:c6:1f:
6f:81:3e:00:f0:b7:e6:b6:2d:a8:00:31:15:e8:4b:
41:34:6a:5b:8f:0f:1e:d1:ad:0d:8f:ab:20:8a:2a:
9d:e7:8c:99:ed:82:fc:6f:f1:71:ee:da:64:78:5e:
f4:23:31:ce:1b:73:f6:58:c7:e1:50:d3:b6:5f:cf:
eb:67:fc:3d:d7:d5:b6:57:eb:b5:a7:74:26:01:50:
76:b2:75:ac:72:ca:10:dc:0a:59:93:44:7e:e6:e8:
ab:ef:26:71:c4:26:dd:5f:72:cc:5f:e4:29:44:1d:
69:95:50:cb:1e:f5:72:2e:5e:d1:16:20:ce:b6:14:
d3:20:31:8a:4c:24:b6:81:8f:4a:a1:18:85:c1:99:
f5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:BD:49:F6:55:22:9B:8B:AA:B9:04:57:C2:18:1D:AC:35:07:15:0C
X509v3 Authority Key Identifier:
keyid:8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e0:0f:6f:ea:47:0b:ab:9a:1f:72:bf:c5:b8:e7:ed:29:ba:5b:
36:56:b3:ce:db:e6:88:c4:4e:67:4e:d3:ea:5d:18:44:b4:7c:
8d:37:33:3a:b5:be:ff:3e:b2:df:a6:1f:d9:d9:d3:19:94:82:
8b:89:11:54:63:d5:39:7f:bb:ea:0f:55:25:ab:7c:ae:61:ee:
33:ec:52:ba:8d:93:a7:d8:6e:ef:77:95:7a:fe:d6:87:1e:08:
bc:b9:df:fc:a8:60:90:73:22:90:54:39:47:a0:63:0b:a1:3f:
be:1d:90:07:75:b5:dd:29:95:7e:fc:c1:56:71:c5:2b:31:a4:
01:be:5a:3a:53:c3:a1:ab:c0:49:8f:eb:1e:a1:01:75:24:54:
10:65:8f:16:c7:d9:1b:54:e5:44:b7:cd:e8:4b:12:98:1f:c0:
24:52:79:a2:d0:34:59:76:6f:b7:b4:51:bd:0d:d1:0b:bb:bb:
85:9f:1d:65:66:4b:ce:68:69:6f:97:d1:eb:c1:42:78:0d:10:
cf:60:c9:40:a8:de:72:a9:cc:8a:12:cf:f3:94:76:b2:d8:bd:
58:1e:3f:ac:2f:49:17:eb:94:f8:9a:5a:bf:2e:6c:33:0e:17:
d3:2c:2e:1c:5d:cb:33:81:b9:5a:24:c6:bf:b2:3d:1d:42:d2:
ce:d0:5e:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 07:55:45 2025 by rpki-client