Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft
File: oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft (raw, json)
Hash identifier: kYGikW68PMy71YhXV9/W9NywCj3I/Z3t18bpRDdYN8Y=
Subject key identifier: EF:EE:AD:A1:E7:23:62:1B:D4:59:9F:D8:8D:CE:FF:EC:66:31:BF:F3
Authority key identifier: A0:7F:6E:2B:60:CA:46:47:00:DD:8E:28:FB:A0:DA:AD:C2:C4:0C:ED
Certificate issuer: /CN=a07f6e2b60ca464700dd8e28fba0daadc2c40ced
Certificate serial: 019923D5E6DA9000BFE6F8C5ADC503649F06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft
Manifest number: 02E4
Signing time: Sun 07 Sep 2025 11:00:44 +0000
Manifest this update: Sun 07 Sep 2025 11:00:44 +0000
Manifest next update: Mon 08 Sep 2025 11:00:44 +0000
Files and hashes: 1: KVGzhURun_Z2Cbls6jKq8-siUnI.roa (hash: ICdbcaL6JuM+fFFA7u9Ui1orbNqbZysTahR0X2YtQkM=)
2: hSxuqdFakuVuEvKUogCcsFaigPs.roa (hash: Xj6H7DBsScqxHUyFTpNMVSRKFfZSSLZGI1xOM2DNsyc=)
3: oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl (hash: OA01WfHQ1xXfsM/bx02yoJ4b01/S2N/2YFvO9ctGoJc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d5:e6:da:90:00:bf:e6:f8:c5:ad:c5:03:64:9f:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a07f6e2b60ca464700dd8e28fba0daadc2c40ced
Validity
Not Before: Sep 7 11:00:44 2025 GMT
Not After : Sep 8 11:00:44 2025 GMT
Subject: CN=efeeada1e723621bd4599fd88dceffec6631bff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b4:da:d0:92:4d:96:ea:20:8a:5d:f2:31:0d:
d9:4c:6a:a7:0e:85:5b:c9:46:0a:35:a6:05:86:67:
d8:39:49:a7:4c:22:0e:ae:b8:f4:25:bb:64:54:c1:
c9:ff:6e:59:31:b6:3d:1c:ea:d7:70:15:87:d7:f6:
b3:7c:76:9c:84:23:98:09:6b:7f:a7:b1:51:e4:4f:
8c:64:b9:75:47:90:58:89:bf:f6:f0:a3:91:69:fc:
4f:63:ab:24:de:de:78:34:8a:22:42:d7:ca:05:02:
23:9b:77:9d:68:96:af:4a:e4:8b:99:0d:9c:80:84:
73:aa:fb:70:f5:4f:d3:c9:cd:b4:2b:f0:82:bb:21:
25:92:8b:d3:5a:bc:6e:94:17:2a:ae:a0:a2:13:94:
b5:72:40:32:a7:63:fa:ec:b0:08:ff:90:dc:43:fe:
cf:cd:4a:e2:06:73:c3:55:09:06:8e:8a:47:15:83:
67:04:9e:22:73:c2:0f:61:25:9e:24:4a:d8:ed:a7:
e2:b2:0e:f3:7b:63:4c:fa:90:15:5d:af:56:07:6a:
6d:17:42:08:22:40:d7:32:cd:9e:b7:d6:ba:15:01:
af:db:bf:75:98:09:f9:23:b2:b8:1d:54:54:18:89:
1d:b4:01:3e:8e:04:ba:ea:6b:9b:4a:c6:b1:e6:3d:
a3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:EE:AD:A1:E7:23:62:1B:D4:59:9F:D8:8D:CE:FF:EC:66:31:BF:F3
X509v3 Authority Key Identifier:
keyid:A0:7F:6E:2B:60:CA:46:47:00:DD:8E:28:FB:A0:DA:AD:C2:C4:0C:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:02:3d:cf:31:09:08:6e:41:e7:43:61:a9:12:8c:2e:4c:32:
c1:fb:7c:68:4c:9a:70:e5:50:ad:eb:47:7e:a2:24:ac:e2:b1:
8a:ae:69:a2:81:93:a1:f6:31:1a:90:cb:fe:bd:4d:cd:73:93:
97:25:19:55:a7:83:59:ee:2a:c5:86:15:30:91:c8:db:dc:3c:
bd:78:be:c1:78:52:33:8e:a9:cf:fe:26:16:ed:01:5f:8b:c5:
e3:79:f5:c7:ce:ff:2b:d5:45:f8:16:68:ec:1a:7a:eb:86:e5:
2b:38:cb:c1:09:1b:db:aa:fb:b4:c0:dc:79:87:02:f9:09:f4:
d6:86:7b:b7:46:f8:33:08:ed:f9:28:b5:e1:00:7e:31:44:8d:
cd:ec:99:7b:63:ac:fb:68:37:93:d8:76:ec:8f:63:9c:7a:82:
6f:da:26:ad:e7:e5:81:65:0e:39:e8:b6:f3:c4:f2:3d:ae:97:
99:de:93:26:9c:75:fd:59:81:93:d5:d1:c6:7b:db:9a:3c:a7:
55:28:9d:cc:07:14:d9:c1:57:a2:4c:7b:2f:5a:a8:5b:5c:75:
85:c0:e9:fc:e0:9c:e2:0b:d3:a8:0a:e0:9f:d9:86:17:64:a6:
1b:85:b6:34:b9:b6:22:88:6d:f0:1a:ec:cc:b7:59:1b:49:ab:
d6:97:ff:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:46:45 2025 by rpki-client