Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
File: CBg0SlIKOZknm7gkfheeiEBuNXg.mft (raw, json)
Hash identifier: WsvxiHL2CILjFTeqOoeUzfqEc9YgxFwv8Hwwp5JEkB0=
Subject key identifier: 89:DA:75:05:4E:83:1B:FB:7B:8D:E7:E8:E2:CB:A7:84:34:35:85:C9
Authority key identifier: 08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78
Certificate issuer: /CN=0818344a520a3999279bb8247e179e88406e3578
Certificate serial: 0198C67F5E1607DC4A749E90D87E253FF115
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
Manifest number: 090F
Signing time: Wed 20 Aug 2025 08:01:32 +0000
Manifest this update: Wed 20 Aug 2025 08:01:32 +0000
Manifest next update: Thu 21 Aug 2025 08:01:32 +0000
Files and hashes: 1: B-j6lkFyqvjbC_PQncwIGbX8TJo.roa (hash: UphQUvnVM6eEU6Z6D8ssHUSQvyAzogcc5pnYk33x3jA=)
2: CBg0SlIKOZknm7gkfheeiEBuNXg.crl (hash: PIogFCsiTbWh9WkmkZkUl1BWrx/ik3VvlxvzuCA1bU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c6:7f:5e:16:07:dc:4a:74:9e:90:d8:7e:25:3f:f1:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0818344a520a3999279bb8247e179e88406e3578
Validity
Not Before: Aug 20 08:01:32 2025 GMT
Not After : Aug 21 08:01:32 2025 GMT
Subject: CN=89da75054e831bfb7b8de7e8e2cba784343585c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:47:c8:f0:77:df:80:3e:b7:52:1b:f8:69:27:
ac:1e:dc:6c:62:58:6b:77:8e:41:71:0e:97:79:0c:
10:16:e8:8e:e4:4b:50:43:a8:b9:bf:94:d8:06:66:
8f:4c:f5:6c:dc:fc:cd:c5:a2:a1:61:cf:6c:1e:f3:
54:50:78:c9:dc:02:3c:e0:f9:98:ab:e7:e6:78:c3:
03:cb:90:bb:ca:6b:4f:62:80:6c:cd:91:dd:8a:70:
5e:39:63:9a:85:51:38:18:65:4e:2d:71:b5:10:4a:
66:53:33:0b:28:65:74:40:ad:f9:8f:0f:7d:f6:32:
82:e3:ff:e3:36:2d:54:f7:e5:35:88:63:e2:c1:9b:
c3:a1:aa:7e:77:f7:b3:e0:70:54:50:68:b0:1a:f5:
3b:8a:f8:08:af:17:e0:dd:b4:7c:ec:ba:17:a9:f9:
51:a8:97:27:24:5c:21:2b:21:31:c8:2b:30:ab:e2:
36:33:e0:66:38:25:85:c0:9b:67:09:77:8c:ce:2d:
86:48:e8:c6:20:54:6a:a9:3a:c8:78:ad:0d:37:4b:
b4:a4:04:76:28:11:c0:dd:71:13:5a:48:cc:50:07:
a9:79:45:7a:d8:a5:eb:ab:80:d0:61:60:e8:e6:79:
6f:10:5d:a3:d5:70:43:f1:e5:c1:f7:0c:a8:2b:51:
eb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:DA:75:05:4E:83:1B:FB:7B:8D:E7:E8:E2:CB:A7:84:34:35:85:C9
X509v3 Authority Key Identifier:
keyid:08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:62:26:90:e9:e6:f9:a8:4c:a4:73:a9:5d:32:f9:93:b2:39:
92:20:19:56:fa:ed:c8:a8:60:59:70:5c:a7:f9:c5:7d:86:6e:
68:3e:eb:e0:87:74:32:56:15:e2:fd:e2:2d:e7:92:49:e5:ec:
7b:4a:c0:7a:0f:d8:ec:d4:97:2b:69:a7:29:22:48:6d:0b:46:
9e:a8:78:41:b6:69:62:33:1b:16:41:67:47:ed:28:5c:85:ca:
00:58:ce:3a:da:01:93:db:6d:df:b5:81:9e:96:fe:29:3b:b9:
9c:b9:03:84:0e:b2:00:2c:f8:3b:d8:62:99:db:2b:2e:92:9d:
7d:6c:46:92:14:6e:a1:dc:26:aa:c4:c5:6e:7a:88:70:37:92:
5d:f9:ed:ce:18:40:69:08:a0:ea:fe:99:ee:b0:01:48:91:d4:
9e:02:6b:a5:a0:f6:03:54:d5:7f:72:f9:80:8e:73:40:33:91:
76:c4:69:d5:44:0b:16:4b:55:43:de:88:2e:7e:0b:4a:9f:6c:
15:d1:c6:78:9b:b8:eb:9a:82:58:63:e0:e9:ac:68:e2:6c:3b:
ac:76:cb:8a:09:75:20:08:a1:cc:ae:fc:20:8c:b4:db:82:c6:
b1:06:89:39:71:43:e1:81:65:59:87:a6:0d:9b:90:c4:3c:e0:
24:b2:bf:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 20 13:11:00 2025 by rpki-client