Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: xCv3YLBORPOLsJclzUwryqmWtvpHG1+cuXYWl7N0v/A=
Subject key identifier: 63:1A:28:07:6D:A8:84:EA:0E:14:2F:E1:5D:E4:F6:47:BE:B6:7C:02
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 0199616C1CECAE21E0ED32980248AC9A869E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 1150
Signing time: Fri 19 Sep 2025 10:01:39 +0000
Manifest this update: Fri 19 Sep 2025 10:01:39 +0000
Manifest next update: Sat 20 Sep 2025 10:01:39 +0000
Files and hashes: 1: 0CceuujOUN7fI6SJWiU4I3JvZeo.roa (hash: ReNIag9nA9bjr82rfcj5JjzPGdjpj3RK7GRwiAamY6Q=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: Zd/j6Cb8JsZsQ2tbV+I6vaGgB66rFhT54kx4WQ26ZYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 10:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:61:6c:1c:ec:ae:21:e0:ed:32:98:02:48:ac:9a:86:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: Sep 19 10:01:39 2025 GMT
Not After : Sep 20 10:01:39 2025 GMT
Subject: CN=631a28076da884ea0e142fe15de4f647beb67c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:38:83:5c:d1:c5:9d:d1:93:d5:d8:06:99:e5:
1b:a3:d1:11:f0:ff:5b:2e:56:d9:c7:43:9f:31:d4:
04:df:31:91:21:a3:eb:df:49:71:42:39:0a:49:7b:
77:5c:71:d6:83:fe:be:2b:54:96:ef:57:c5:55:f6:
4d:34:3d:70:6e:30:12:d8:04:dd:16:cb:ca:d9:6d:
b5:71:f1:d0:bf:31:4f:75:b0:34:3a:4a:bd:ac:bf:
0c:c6:11:f3:9b:8f:98:cd:ff:d7:35:b5:cc:1b:20:
56:4a:8e:02:bb:6d:71:b8:bd:6f:66:49:69:a7:39:
06:ad:ef:b0:3b:78:79:c5:53:bf:62:bb:18:1e:8a:
e7:00:64:7d:a1:a3:89:2f:9e:ab:3d:ae:d9:4a:5a:
6f:31:6e:42:6b:aa:9b:d3:33:17:dc:39:1e:34:29:
6f:31:14:4c:06:75:13:52:73:dc:1b:99:62:45:ba:
80:2c:3d:49:3c:e3:cb:68:01:e5:2d:fd:da:78:f5:
5c:cd:69:61:49:c3:9c:58:6d:e5:54:40:1d:ac:85:
16:e9:6d:0a:53:09:52:15:94:2e:af:1e:1c:8d:fb:
45:d3:54:77:19:cc:cc:19:eb:53:9e:3e:cc:65:6c:
0f:72:69:ed:9c:aa:ff:a0:1a:8a:85:91:ec:a5:f1:
f2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:1A:28:07:6D:A8:84:EA:0E:14:2F:E1:5D:E4:F6:47:BE:B6:7C:02
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:db:92:b1:13:af:7a:c0:2d:84:dd:99:6d:57:16:73:72:a1:
2c:dc:df:53:a1:a2:0f:10:02:1f:7c:b5:f3:f4:fe:50:65:98:
9b:36:5d:d6:de:d8:f3:e0:05:14:ae:b0:a7:df:87:93:f4:a9:
f5:2b:39:af:21:11:9a:a8:98:65:ca:ef:d8:10:06:e6:d6:61:
43:81:0d:dc:fd:f3:4c:2b:55:99:9d:5f:35:3a:b0:21:0e:3e:
8e:5c:59:e9:d4:4c:b0:4f:ae:7c:f5:e0:69:52:52:08:15:f0:
66:b5:f9:82:64:f5:72:54:e7:92:2c:1e:4e:c1:73:22:68:16:
82:11:26:d7:0c:84:90:76:1e:4c:da:8e:ab:af:7f:3c:81:89:
d2:89:a3:fe:bd:5f:b2:56:e1:11:ad:c0:b8:c2:74:5a:50:8c:
28:3f:c5:3c:f1:97:7f:d0:34:d6:7d:7c:46:df:9a:fa:17:3b:
fe:8b:e1:ce:e0:8c:95:dd:3a:4b:4a:9b:bb:a6:ce:94:b6:3e:
3f:f1:42:bd:54:6f:3d:f4:ff:b0:fb:ed:19:92:e9:66:66:39:
d7:f6:b5:48:40:e1:ce:7e:5a:77:25:92:24:12:98:2e:0c:ce:
94:9d:12:bd:2e:a0:eb:7a:a8:7c:03:7b:f1:cc:97:62:2b:32:
0b:e6:fe:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 17:45:11 2025 by rpki-client