Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
File: 2okNBdXIi33m9bqkwdCF_nMB9dU.mft (raw, json)
Hash identifier: dtI143niWEb14o4L0bQC7/8Y8Cax5VvpKVTjCNznqEU=
Subject key identifier: 5F:D9:E4:0A:32:D8:01:99:80:DF:35:49:A6:AB:5C:09:75:4D:F3:70
Authority key identifier: DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
Certificate issuer: /CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Certificate serial: 019921B2845C08BFDCA7CB81F029BA461190
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
Manifest number: 0AC8
Signing time: Sun 07 Sep 2025 01:02:51 +0000
Manifest this update: Sun 07 Sep 2025 01:02:51 +0000
Manifest next update: Mon 08 Sep 2025 01:02:51 +0000
Files and hashes: 1: 2okNBdXIi33m9bqkwdCF_nMB9dU.crl (hash: KRL3qOd9REsLAs6yOp8a1zTYMgjWOZorCduMo8B5X2c=)
2: empYwKrx4ABahFY0k2CZXZft5Pg.roa (hash: lQyRrUFjZRPH9Yib0Mwz+z/3ALSf5u0tcJRbBn2hjqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:84:5c:08:bf:dc:a7:cb:81:f0:29:ba:46:11:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Validity
Not Before: Sep 7 01:02:51 2025 GMT
Not After : Sep 8 01:02:51 2025 GMT
Subject: CN=5fd9e40a32d8019980df3549a6ab5c09754df370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6a:a9:44:3a:53:0b:26:c6:c3:5f:f4:97:c0:
1a:21:2b:67:fd:4f:f4:8d:9e:4a:c6:dc:59:7c:b2:
f0:a0:92:61:d9:94:76:ef:0a:70:a2:68:92:c2:6f:
d8:fb:44:f6:90:e7:31:9b:f4:90:91:dc:82:30:5f:
1e:fd:cb:e3:e8:12:bc:dc:76:65:94:38:34:18:29:
36:af:2e:2b:74:8b:5c:d1:0c:53:19:2b:46:ac:7c:
77:79:e6:cf:77:db:07:8f:bc:f4:98:2b:16:7e:3e:
aa:80:f3:34:77:21:ed:7e:2d:67:b6:66:c4:ab:b7:
e7:41:f4:ab:3d:55:92:42:28:ab:a4:b8:ca:26:89:
ab:c8:0f:12:49:f3:be:a4:5c:79:b2:41:77:a9:b5:
92:2b:e3:cd:43:15:1d:91:45:76:d9:e0:31:43:be:
92:0b:e4:e5:02:9c:bb:4d:e3:68:d6:2b:ca:54:ce:
b3:b0:de:89:d9:f4:d4:19:f6:e9:f0:ae:ef:7c:75:
bc:87:13:7c:9f:af:02:63:4b:39:5a:7e:1c:77:ea:
ec:20:7c:26:70:6d:61:49:47:b3:ae:59:cb:1f:64:
d5:f3:1f:db:70:05:3c:ef:c2:4f:82:fb:9a:1a:10:
91:d4:61:54:9e:3d:91:2c:f0:77:cd:c2:22:ff:c4:
9d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:D9:E4:0A:32:D8:01:99:80:DF:35:49:A6:AB:5C:09:75:4D:F3:70
X509v3 Authority Key Identifier:
keyid:DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:2e:90:8d:5a:b9:9f:2d:e7:c3:3a:a8:40:7b:49:c6:89:81:
fd:ea:bc:e6:e3:45:7d:77:63:f9:89:84:79:90:00:4b:2f:ee:
b1:09:4b:58:25:50:46:79:f5:73:10:de:bf:97:81:ea:9f:45:
b2:54:f3:96:5f:6f:6d:ed:de:c2:63:fc:ed:b0:67:cb:ee:d0:
74:97:71:47:73:49:a9:5b:48:53:dd:34:6d:20:9e:6a:c4:02:
ab:83:d5:be:83:f2:50:e9:bc:e7:6f:ad:45:51:b2:1e:8c:e1:
4f:75:c8:a1:51:22:ad:49:d2:fb:69:55:09:5e:e0:17:7e:f5:
27:93:3d:6c:c2:35:61:f7:90:c0:f8:d7:0f:38:a8:4b:05:46:
17:5b:c5:b7:bd:53:2f:43:8c:ef:9d:c0:41:8a:02:b7:4f:0b:
c8:e4:3c:0d:38:25:c5:77:aa:e5:6a:be:09:85:37:71:19:25:
bb:f3:6c:e8:58:2e:f3:96:24:36:d9:c1:5f:a9:dc:8b:8e:f7:
b5:c0:50:bf:f5:9c:ea:f6:23:8e:c0:59:a6:48:d9:ca:81:23:
2f:60:02:5f:37:30:34:96:b7:ea:43:a5:d2:3b:9a:43:b5:5a:
2f:63:8d:12:f7:8a:6b:47:be:30:ca:d5:67:77:0b:d1:36:96:
de:f4:ca:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:25 2025 by rpki-client