Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
File: 0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft (raw, json)
Hash identifier: MW+AnEzLvLuJe9xz4wwbtxci7Y8V7kqNRONGOjwWJQM=
Subject key identifier: 93:3F:9E:5A:2B:77:93:EF:52:99:3F:39:1F:95:DB:04:DF:9E:07:A0
Authority key identifier: D0:E6:5B:EC:5C:76:5C:85:0E:E8:FF:97:CC:41:B3:80:31:D1:D8:3A
Certificate issuer: /CN=d0e65bec5c765c850ee8ff97cc41b38031d1d83a
Certificate serial: 019921B1C06C93ED687B39AA396A5864D92B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 01:02:01 +0000
Manifest this update: Sun 07 Sep 2025 01:02:01 +0000
Manifest next update: Mon 08 Sep 2025 01:02:01 +0000
Files and hashes: 1: 0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl (hash: tN+U2wX7Xi/KE0zxkvn65xFxLNUIWi4OSc3tR667RRY=)
2: AddwdaQYSDgJ_-W9pipGLPibD4Q.roa (hash: YjKAFD6jnw8P32xCITagf8KVgpNGeRxCswidFmsKIOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:c0:6c:93:ed:68:7b:39:aa:39:6a:58:64:d9:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65bec5c765c850ee8ff97cc41b38031d1d83a
Validity
Not Before: Sep 7 01:02:01 2025 GMT
Not After : Sep 8 01:02:01 2025 GMT
Subject: CN=933f9e5a2b7793ef52993f391f95db04df9e07a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:dd:e0:7e:0c:65:29:5d:05:5a:20:bb:92:be:
6d:bf:f9:2a:b3:79:e2:3f:5c:16:69:00:1f:40:93:
48:87:5f:cd:d4:2a:d8:70:2d:30:20:9f:c5:25:f3:
9c:b0:64:ef:d6:6c:c1:1d:41:8c:eb:12:9e:a1:04:
bf:56:a8:86:bb:1a:f1:e2:50:2d:8d:f4:91:55:82:
d6:de:6b:0c:35:ec:43:a9:7a:57:d8:4a:8e:c3:4f:
d3:ae:81:6f:d8:c4:a2:f7:2d:c5:a4:da:10:c1:d2:
54:34:16:b0:17:b7:b5:57:59:09:05:51:fe:92:c7:
93:fb:4c:19:ff:5a:f4:35:ff:ab:78:ad:07:59:0a:
53:33:cf:a9:50:2c:a3:c9:1e:66:ad:34:3b:c6:9f:
43:d1:f1:cc:97:c7:00:d3:5f:8f:f6:92:a9:98:20:
ab:0c:5a:3b:a0:b8:12:9b:60:c8:99:92:8b:a4:d3:
13:43:a2:d0:36:68:db:fb:67:73:07:be:28:f9:53:
82:a8:1f:92:e7:c1:0d:12:80:80:18:cc:77:e8:2a:
ed:c9:15:ed:7a:c6:db:a0:13:fb:f6:d2:9a:aa:4e:
a3:5a:73:ad:e4:52:bb:3b:3f:49:4b:12:91:a8:10:
a0:fb:47:3d:74:bd:3e:ab:fa:87:fa:36:08:7d:37:
22:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:3F:9E:5A:2B:77:93:EF:52:99:3F:39:1F:95:DB:04:DF:9E:07:A0
X509v3 Authority Key Identifier:
keyid:D0:E6:5B:EC:5C:76:5C:85:0E:E8:FF:97:CC:41:B3:80:31:D1:D8:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:06:b3:ce:ef:8a:3d:03:fc:78:6d:c6:03:07:de:0c:9d:eb:
23:9f:36:c3:58:7d:7c:d5:28:0b:42:4d:e5:9f:55:29:c9:df:
bc:90:3d:de:a7:45:fb:f7:2c:2e:e7:ed:a3:7e:56:c5:d5:68:
b5:25:87:17:a4:51:2b:8f:04:26:0b:7c:8f:90:91:30:fd:61:
15:b0:18:74:c2:13:08:e6:c7:e0:16:69:ae:09:0e:18:33:60:
0c:a1:8e:f9:43:7a:4a:58:04:86:16:f0:ae:6b:7c:aa:2c:12:
08:e0:6b:48:c7:98:5c:e8:2d:cb:6f:ee:c9:03:9e:38:ba:7a:
d3:73:00:69:57:da:d2:ff:40:fd:dc:e1:8d:10:bc:c6:f6:d0:
c6:68:d0:47:4e:3f:54:e6:b1:25:21:04:07:f3:1e:0d:40:b9:
69:26:9c:02:d0:27:a7:d7:68:99:b5:ae:49:03:61:67:d7:c5:
b1:57:13:16:1f:b8:96:85:aa:01:f1:1a:8e:3f:d1:98:ee:96:
77:0f:65:81:cd:54:e9:e6:78:fd:0d:b0:ae:fe:1d:c5:7b:55:
c1:05:54:b1:51:67:b7:11:a8:86:e7:04:5a:e3:38:13:51:f2:
e6:9a:ea:a9:e3:1c:d2:f3:37:c8:94:ea:ab:da:c4:32:a6:a1:
3e:68:fa:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:37 2025 by rpki-client