Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: XFLTqYCKiHtIiKoxHPWU+8oJ9e3wasK1A+o3xhhyRx0=
Subject key identifier: A2:EB:57:4D:A0:F6:1F:DB:D3:D9:9F:95:9A:0D:0C:8C:9A:C1:49:6A
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 0199228C71C426D1DE798629939E6EA4B751
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 0B42
Signing time: Sun 07 Sep 2025 05:00:53 +0000
Manifest this update: Sun 07 Sep 2025 05:00:53 +0000
Manifest next update: Mon 08 Sep 2025 05:00:53 +0000
Files and hashes: 1: WJX8pUUgztAx5ziEUO7pdOPaYpY.roa (hash: Zv2hcAwndmbcI8AgNFSDMAAPE42QlNQ0rd+YTdhMpog=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: C6Z7hwYK9zDAc8tq1YN6enmPW6zDkE2ps6nQCLU2l9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:71:c4:26:d1:de:79:86:29:93:9e:6e:a4:b7:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: Sep 7 05:00:53 2025 GMT
Not After : Sep 8 05:00:53 2025 GMT
Subject: CN=a2eb574da0f61fdbd3d99f959a0d0c8c9ac1496a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:93:ea:82:b0:83:ec:1d:c1:27:02:8d:48:d0:
86:76:b2:d8:d3:2d:e4:0e:bf:a0:c1:88:62:ae:e7:
ee:c4:65:6e:b9:af:0d:c1:ad:c9:00:09:ea:94:91:
1c:9f:1e:b8:25:32:f8:61:39:58:65:6f:90:78:8c:
12:c8:3b:5f:fe:50:5d:b2:2b:3c:95:7e:6c:72:1c:
b7:0c:52:ca:8c:cd:d6:92:1a:3d:3f:79:37:80:8f:
6b:01:cc:f3:a4:32:a7:e9:61:71:7e:57:0a:43:af:
bb:14:c2:aa:36:79:f7:8d:d6:fa:ce:a6:e8:39:12:
3d:2d:ff:28:b7:af:a5:41:ef:8e:97:71:9b:a5:70:
30:f2:e3:c3:99:9e:82:70:c4:10:46:40:8e:6b:db:
22:b1:3e:d4:e2:cd:1e:76:0b:1a:e0:2e:60:25:a9:
be:62:84:03:ef:ff:0f:01:32:65:19:77:93:a9:29:
06:bb:3d:9d:ac:58:11:44:70:31:bc:23:2a:b8:3e:
91:cf:ef:4d:76:7e:f1:fb:85:42:b4:10:fd:e8:1f:
8e:07:ce:5e:4b:07:9f:e3:6d:6f:3c:93:6a:0e:d0:
7e:2f:87:dc:5f:27:11:0a:7f:24:07:54:3b:5b:5f:
88:38:3b:17:66:06:e7:e6:5d:23:4e:15:29:f4:e0:
d4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:EB:57:4D:A0:F6:1F:DB:D3:D9:9F:95:9A:0D:0C:8C:9A:C1:49:6A
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:10:ea:a2:71:e9:77:ac:9f:99:b1:81:63:3a:2b:38:c1:47:
98:88:15:50:e1:02:0b:34:e1:ca:3d:40:08:21:d0:52:66:d6:
78:3f:fa:ae:1a:bc:70:8b:df:ba:6d:6e:ad:f5:a3:ad:12:82:
6f:a7:f5:6b:7a:61:f5:ee:94:70:1e:f8:db:31:db:c2:25:5f:
8b:99:c9:0b:4e:17:f2:13:cb:3e:53:e8:22:35:33:ea:bc:65:
98:e6:45:9b:35:59:36:ea:2f:53:f4:2a:0a:bd:95:28:d4:85:
66:67:b3:a7:f5:96:86:5c:31:d5:2d:4e:e4:06:b5:8d:c0:26:
83:42:ea:1f:92:cb:a3:0c:3e:38:1c:9d:69:2b:d0:d2:4e:4f:
f6:7f:c4:5f:8f:fa:2b:eb:ff:1a:65:92:2a:b9:db:44:37:9c:
ba:42:18:c8:60:5f:c5:c8:0d:7a:e1:7d:ab:6c:18:e9:50:f1:
04:4f:9a:28:9d:88:bc:42:4c:41:e5:f9:44:e6:db:b4:92:76:
2e:04:04:7d:5d:79:ed:c5:17:61:24:ca:21:7a:e2:34:ab:3e:
77:22:83:24:7d:50:a8:02:ab:0a:60:82:f8:8f:44:15:de:78:
78:20:46:28:bc:43:be:9e:37:30:4e:40:e3:c7:1d:19:e0:88:
81:4f:89:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:33:58 2025 by rpki-client