Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json)
Hash identifier: 7ndCmi9GlmhI+w/pUKe+/akbA+g6k8vk7qM+v5Hwmc0=
Subject key identifier: FE:D2:15:5C:87:46:29:07:50:6C:DC:32:D3:53:5A:54:AA:5D:28:0B
Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Certificate serial: 01992330FA4A6D108B19EF295571AF39BC4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 08:00:35 +0000
Manifest this update: Sun 07 Sep 2025 08:00:35 +0000
Manifest next update: Mon 08 Sep 2025 08:00:35 +0000
Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: BB9hU8HopWOClmaN3O+QZcFTBpkCFLji792Q8gafyfQ=)
2: uFIkyOKWSzQfZzP96vWM093yaBY.roa (hash: TWsqJU2I8/yV3h8FtJmMbNc3AlR1EJP1BU5hPExE0mk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:fa:4a:6d:10:8b:19:ef:29:55:71:af:39:bc:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Validity
Not Before: Sep 7 08:00:35 2025 GMT
Not After : Sep 8 08:00:35 2025 GMT
Subject: CN=fed2155c87462907506cdc32d3535a54aa5d280b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0e:17:5a:0a:df:90:78:8c:33:51:06:98:83:
b1:c4:8c:29:e2:ea:e8:ad:64:a1:eb:81:b0:9e:d4:
c8:a1:e2:0b:78:cd:1d:b1:db:15:aa:90:6a:03:47:
78:93:4e:d8:c3:4c:15:af:0e:85:82:02:73:e3:06:
4e:14:dd:42:b3:42:ca:0c:f9:1d:37:bb:73:b4:10:
33:3c:4f:6a:28:f7:5d:8e:a9:1c:0b:3d:26:e3:f1:
aa:f8:5c:56:02:19:61:5e:a4:59:df:5c:f8:43:00:
c2:70:b4:e0:c9:dd:0f:8d:8b:45:df:63:48:bf:9b:
f9:57:da:09:a4:a4:da:3b:67:90:c2:ac:1c:3e:37:
a1:36:24:82:24:78:1f:1a:60:a6:c8:e0:7e:77:d4:
4d:30:fe:07:69:3e:38:a0:27:3a:98:33:01:c6:fa:
7e:70:9f:40:bb:70:03:1f:7e:9f:9f:c5:63:a1:15:
ec:10:e4:2c:af:22:b9:72:8b:57:05:d6:21:0b:2a:
3f:9c:ee:9d:10:c1:5a:9f:81:dc:26:c6:e3:13:e3:
e7:b1:e3:4f:89:83:cb:6c:ad:6b:da:d6:18:3c:0c:
e1:dc:86:10:a1:23:78:51:0d:cb:63:1e:44:7f:d3:
6c:fe:5d:20:ae:f1:eb:cb:13:81:f1:07:60:7e:96:
c2:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D2:15:5C:87:46:29:07:50:6C:DC:32:D3:53:5A:54:AA:5D:28:0B
X509v3 Authority Key Identifier:
keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:52:01:4b:97:5b:60:3b:48:18:a0:9b:10:01:7b:9e:9b:1a:
fa:ea:b0:f1:68:bc:28:86:05:d7:e3:ed:a1:0f:2a:59:0f:61:
e5:95:d9:21:ed:37:ea:35:d8:49:7f:ae:e2:05:82:73:66:b1:
22:66:9c:bd:5b:f8:84:db:3a:13:51:aa:c2:bb:c5:e5:9d:e0:
e6:d7:94:87:03:e4:e1:65:50:c5:fa:e3:5e:10:b9:f3:c0:8d:
d6:4c:7d:31:6c:7f:91:e2:10:b9:28:97:8a:15:c2:b0:8e:4e:
4a:b0:a7:19:9f:42:c3:3d:e4:68:31:f1:80:84:a7:19:72:76:
aa:f3:c4:12:7b:db:94:68:d0:b5:03:76:59:f9:62:97:30:f0:
98:9e:c3:fc:fe:f7:e4:cc:5c:02:ea:de:dd:f2:3c:9c:44:89:
3f:a2:19:cc:76:cf:4b:d3:e5:e2:7d:48:3e:46:82:a9:0e:42:
e6:15:d0:fb:13:40:75:29:05:56:63:11:22:e9:8e:dc:bd:d6:
ae:9d:cc:42:3a:46:a3:c1:e8:d7:f6:01:cc:49:ef:f7:5c:31:
6f:83:ed:bf:68:e1:66:68:c2:e4:16:a0:c1:64:4c:71:a0:6d:
3d:ca:b3:ba:34:96:67:38:cf:7d:26:b6:2f:e5:16:4a:b5:cd:
04:81:12:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:08:24 2025 by rpki-client