Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft
File: 0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft (raw, json)
Hash identifier: WXmoc4QZxI0uNNkYwoexxBMjXMGuXE76hzGq2Xn0aRM=
Subject key identifier: 3E:B2:43:D2:EC:8F:6E:0A:ED:44:CA:E2:C8:AA:A6:B4:79:6C:23:3E
Authority key identifier: D1:BF:17:6A:F8:DB:A3:0F:EF:32:53:65:EF:34:04:81:2C:E2:D8:4A
Certificate issuer: /CN=d1bf176af8dba30fef325365ef3404812ce2d84a
Certificate serial: 019A096EC197BFF30608DEA80D0A4467CA26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft
Manifest number: 0F6B
Signing time: Wed 22 Oct 2025 01:00:44 +0000
Manifest this update: Wed 22 Oct 2025 01:00:44 +0000
Manifest next update: Thu 23 Oct 2025 01:00:44 +0000
Files and hashes: 1: 0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl (hash: G4W7pbbNAEyT9u00TyLtavTrudzP9y/XLYt9yEWGupk=)
2: tWrNNpvQLnIYXShcXDmxPXzlROA.roa (hash: rl7K0aTuna5/yne12oTJUAQ6OhB1j3YlRj4Y9PjqK84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 01:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:09:6e:c1:97:bf:f3:06:08:de:a8:0d:0a:44:67:ca:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1bf176af8dba30fef325365ef3404812ce2d84a
Validity
Not Before: Oct 22 01:00:44 2025 GMT
Not After : Oct 23 01:00:44 2025 GMT
Subject: CN=3eb243d2ec8f6e0aed44cae2c8aaa6b4796c233e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f4:47:37:f4:dd:1e:6c:c2:10:bd:7e:3b:07:
b7:a2:f2:e2:a2:6d:c0:53:a1:b5:8f:ff:68:b3:2c:
29:ba:e2:81:04:7d:45:11:bb:91:0f:5a:8d:01:1b:
39:0a:81:de:46:1e:31:1c:9a:88:b5:64:d3:2d:e3:
e7:50:7c:7e:42:53:52:b0:d9:05:27:8f:cd:68:41:
36:91:71:7b:42:86:01:6c:5b:4a:6b:84:81:f1:80:
2d:2f:bf:ff:eb:e7:ea:d0:8c:27:3c:1e:1e:03:36:
3d:92:2e:50:8e:1e:e8:7a:e5:34:62:e3:74:ff:26:
4d:f1:20:0f:c8:5e:8b:21:51:0a:a6:56:dc:cc:46:
d8:d2:a2:76:7d:85:54:79:77:7a:96:b5:10:8f:f4:
26:17:ce:25:61:9c:27:39:92:5b:aa:a1:b2:8c:68:
cc:ae:4a:a1:b3:f1:16:ba:c1:93:49:c6:a5:70:4b:
19:c2:64:53:40:dd:18:cf:08:1f:4d:e5:07:cf:2a:
af:14:8c:1e:43:00:f2:80:a5:68:a0:53:f2:f5:b3:
07:f5:81:23:43:c3:a8:91:c6:20:7f:e9:bb:ab:2e:
5b:72:1d:04:bc:fb:67:20:eb:d4:da:6d:a6:1c:82:
30:d3:9e:c1:ef:22:ab:04:c4:ba:82:9b:16:46:8f:
bc:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B2:43:D2:EC:8F:6E:0A:ED:44:CA:E2:C8:AA:A6:B4:79:6C:23:3E
X509v3 Authority Key Identifier:
keyid:D1:BF:17:6A:F8:DB:A3:0F:EF:32:53:65:EF:34:04:81:2C:E2:D8:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:2e:b4:fb:d1:2b:4a:46:9d:65:f3:54:55:74:51:b7:65:b4:
a8:60:c1:64:7e:c5:1c:fb:b1:58:0b:45:64:d5:4f:dd:50:26:
d9:4e:68:a0:c7:dc:8c:7b:6b:37:b5:cc:7b:0e:39:ce:ff:24:
1d:e1:f1:df:51:b4:ab:c0:7d:17:fa:84:34:1d:2a:4d:fb:30:
2f:c2:14:0b:92:39:97:7c:11:61:f6:d6:b2:8f:73:62:31:e2:
60:f6:1c:df:48:9f:c3:d3:72:6f:18:b3:50:1a:db:0d:24:6c:
17:b1:0f:77:c2:cb:20:ce:e0:14:a2:5d:81:91:c4:b0:84:f6:
7c:ae:9c:74:28:34:2b:9f:53:30:eb:6b:f6:4c:e8:b3:85:71:
5d:92:21:cc:42:ab:b2:1a:53:45:aa:9c:83:f9:39:bb:16:22:
4f:08:8c:2d:2c:62:af:04:dd:a3:95:b6:0e:d7:50:f2:00:95:
f7:f2:47:3c:51:95:7d:b4:27:55:81:b7:8b:fd:bc:44:4a:51:
0c:4d:1f:f6:7b:6c:4b:0a:74:c4:07:f5:6a:ca:6d:9e:c3:a5:
b2:82:15:9a:e6:6f:fd:58:c4:ef:a9:92:35:e4:9a:37:29:61:
3d:2b:56:83:95:e4:ef:6f:53:57:49:da:ce:a6:71:65:16:73:
30:26:31:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 10:25:12 2025 by rpki-client