Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
File: 0dI-JBGcupM36DRmSFv7EGsuJLY.mft (raw, json)
Hash identifier: qq6QHMLBu8v8Q2r4xmBf4VmWqQAGiJedG6IFQxzP80A=
Subject key identifier: D7:6F:A6:1B:88:F8:7D:ED:99:D1:4A:CA:F3:11:70:EE:AF:B6:37:07
Authority key identifier: D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
Certificate issuer: /CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Certificate serial: 01992255A325B799969CB2B22EE5B7DC5E32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
Manifest number: B9
Signing time: Sun 07 Sep 2025 04:01:01 +0000
Manifest this update: Sun 07 Sep 2025 04:01:01 +0000
Manifest next update: Mon 08 Sep 2025 04:01:01 +0000
Files and hashes: 1: 0dI-JBGcupM36DRmSFv7EGsuJLY.crl (hash: XRwn14vtMzCu9SD9DAGJ8mazO3+b1ubmsxO8WZwv+jg=)
2: M-IfQdJ5pbgcbSVbmMmO8aaPrAY.roa (hash: XwGRnAxf2Tdx5V01T06WDZvLLVmv2uRnErY5moi+5Gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:a3:25:b7:99:96:9c:b2:b2:2e:e5:b7:dc:5e:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Validity
Not Before: Sep 7 04:01:01 2025 GMT
Not After : Sep 8 04:01:01 2025 GMT
Subject: CN=d76fa61b88f87ded99d14acaf31170eeafb63707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ca:9f:61:54:01:28:43:f8:f1:7d:b4:fd:51:
d9:87:72:f1:a7:3a:8b:d1:b5:bb:c3:9c:41:7a:a8:
7f:6c:e2:9b:6d:9d:cc:20:53:05:3b:cd:a4:d1:1b:
e1:e7:0a:bc:eb:79:e3:f2:01:ec:2f:42:b6:43:2d:
1e:95:90:f5:16:11:1d:15:68:16:e2:04:13:f5:6d:
59:7a:fc:b1:86:0f:98:2a:56:1b:0b:96:a3:c7:61:
2d:13:dc:e1:48:85:89:37:dc:6f:1a:86:0e:45:65:
c7:fe:28:0f:71:b8:05:cc:41:d1:f9:00:c1:90:ba:
e8:6e:e0:4d:51:60:3b:c5:96:a0:c3:db:08:8d:2b:
1d:2d:42:6a:0f:68:99:20:58:1a:25:73:5d:03:69:
39:e4:63:c7:e8:64:76:90:ad:f9:f3:28:e2:b8:ea:
9a:a5:58:28:86:5e:3d:f8:1d:dd:4d:16:c1:3d:5e:
78:b9:c6:c4:34:da:1b:e2:0d:d9:f3:9a:34:c3:49:
1f:83:8c:2c:91:b9:c3:87:1b:63:7b:29:76:32:d3:
9d:26:95:3a:0f:35:5a:c1:b8:4b:0f:2d:cf:f1:87:
70:00:03:76:dd:72:5b:78:b9:71:d9:1a:5b:bd:92:
44:aa:55:f1:e9:a9:9c:9e:d6:3f:56:d6:f6:c5:38:
4d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:6F:A6:1B:88:F8:7D:ED:99:D1:4A:CA:F3:11:70:EE:AF:B6:37:07
X509v3 Authority Key Identifier:
keyid:D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:c1:cd:a6:ec:3e:71:27:0b:38:7b:01:88:de:f7:f0:15:b1:
b2:f1:81:b9:bd:24:34:08:f2:ff:25:2d:a1:2a:9a:ca:e9:57:
4f:70:2e:af:1d:0a:ac:7a:64:e4:e0:9f:58:80:e8:b6:ff:bf:
7b:29:ae:47:db:9c:5a:51:38:fe:c5:3d:84:c8:bf:bc:97:e8:
e1:bb:52:28:b6:e6:b1:7e:e6:1d:57:a2:6a:02:13:eb:2e:8d:
78:f7:15:55:20:93:de:90:27:01:75:f4:00:85:f4:94:ce:5f:
7d:ec:6e:49:2a:c3:e9:c4:07:1b:94:08:5a:26:dd:10:33:75:
f3:e7:ce:a8:42:fd:dd:05:67:ab:e5:80:6b:59:de:3d:dc:56:
69:7a:fc:a6:3e:51:db:07:a0:c3:a2:81:c6:64:cf:9d:a0:2a:
77:01:b5:52:a0:f5:4a:c6:46:ca:29:c6:7b:3a:19:7f:6e:57:
16:9e:de:02:98:aa:75:0e:e5:da:2d:32:ca:bb:c4:c1:e8:22:
bd:67:c0:71:11:8a:b6:83:6a:14:77:d5:2b:b5:0e:5f:97:ef:
df:45:10:15:aa:46:fe:71:fa:4d:22:30:56:17:54:9b:20:b4:
95:25:aa:8e:ba:c9:4a:86:bc:b5:b2:a3:ed:85:4a:ba:fb:a3:
d6:c5:25:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:26:05 2025 by rpki-client