Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: IPnovxOU7IszxEbNVVPHqt86qrO7vPEURfYIxGe0tmU=
Subject key identifier: B9:A9:73:AC:BA:C9:4B:6F:0C:EB:29:88:1C:DC:DD:D7:48:44:AA:A3
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 0198684BB07BD866AEDC230B46D5E0F186B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 10CF
Signing time: Sat 02 Aug 2025 01:00:47 +0000
Manifest this update: Sat 02 Aug 2025 01:00:47 +0000
Manifest next update: Sun 03 Aug 2025 01:00:47 +0000
Files and hashes: 1: 0CceuujOUN7fI6SJWiU4I3JvZeo.roa (hash: ReNIag9nA9bjr82rfcj5JjzPGdjpj3RK7GRwiAamY6Q=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: WHcpMcCLfh1+3nL2H5xtBCQyHGAi0XANpLJXo69dsjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 02 Aug 2025 21:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:68:4b:b0:7b:d8:66:ae:dc:23:0b:46:d5:e0:f1:86:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: Aug 2 01:00:47 2025 GMT
Not After : Aug 3 01:00:47 2025 GMT
Subject: CN=b9a973acbac94b6f0ceb29881cdcddd74844aaa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:dd:f0:b0:2e:9f:8e:57:51:66:cc:4d:ea:03:
30:8c:57:ae:ee:fd:ed:c7:22:ce:2d:24:88:32:81:
6d:c5:c3:5f:9b:f3:3a:8c:e3:59:a8:71:eb:66:02:
73:b3:85:7c:f3:34:dc:2f:dd:25:49:d8:cb:cd:2f:
2f:d2:ec:4e:b6:84:68:c2:b5:68:e2:f4:05:73:e0:
89:e1:30:97:15:fc:a8:cb:63:4f:8d:e4:bb:45:8d:
cb:ca:6a:fc:d7:fb:3e:13:97:6c:34:43:ec:18:b6:
e0:04:e8:ef:7a:c1:bc:8a:43:66:31:5f:8e:c3:4a:
13:dc:51:7b:7e:e5:4a:81:9e:82:05:29:0e:40:91:
75:f2:60:60:94:f7:aa:24:88:69:e6:6c:b9:3e:96:
a1:f8:4c:e1:5d:85:29:99:27:a4:39:1e:4c:f5:5d:
d6:5d:d2:73:32:d1:3d:c9:aa:94:71:e4:e5:4b:a4:
a5:c3:5e:08:39:30:76:43:f7:82:9b:ae:67:06:a0:
ad:0c:10:db:ea:3d:a6:d5:13:9f:68:9d:6b:09:2f:
de:db:99:e4:2e:d5:95:8b:15:29:70:03:b4:90:c9:
d4:c8:a5:15:d0:e6:1f:57:29:3a:96:fc:ab:9f:ce:
bb:cc:fd:48:99:32:00:43:43:94:ca:fa:f0:a3:22:
4e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A9:73:AC:BA:C9:4B:6F:0C:EB:29:88:1C:DC:DD:D7:48:44:AA:A3
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:19:5c:a0:ea:21:43:3b:15:aa:44:5a:3a:7e:20:d4:8d:22:
dd:f0:81:bd:c0:27:81:6f:2c:e7:a5:86:fb:33:81:0a:c2:03:
a0:15:fd:51:96:ee:df:c0:0e:ac:2b:e0:9f:84:55:c4:0b:41:
77:c6:34:2a:2f:4c:6a:ef:86:61:2f:e6:31:56:b1:75:62:ed:
af:fa:94:e7:ab:50:df:84:68:1b:bf:65:a3:7e:37:03:22:77:
fc:d2:3a:d3:0a:33:78:e3:97:37:aa:7a:a5:7f:05:7f:94:4f:
eb:21:b6:b5:44:90:7d:96:33:d7:d6:87:6a:b8:53:08:6f:27:
17:f8:cf:af:6b:fb:a9:4d:fa:4e:9a:c6:ed:92:67:b1:79:d7:
2f:12:37:73:9e:73:55:54:81:71:9b:f8:de:bc:b6:c0:d6:cd:
22:db:24:fe:67:36:f3:53:22:30:f5:88:36:04:e0:d7:42:83:
d6:e4:e3:15:4c:28:bf:5d:0b:b6:47:44:00:4e:9b:27:41:8b:
47:3f:ca:f9:a6:0f:5c:84:a4:55:1d:04:f8:ea:ec:4d:dd:05:
1d:43:ae:7c:7d:96:63:ae:30:c0:c8:24:75:d8:77:c9:76:9a:
fe:e7:a9:10:f4:de:cd:12:c2:9e:e9:76:f9:17:d1:2a:d9:45:
60:d9:14:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 2 05:30:38 2025 by rpki-client