Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: ynshgnYKvLTcdshgQ9M354VDC/ESlznxHG3Ld57mf0w=
Subject key identifier: 11:BA:55:62:A6:73:76:3B:1B:9D:88:88:BD:AE:D1:52:21:2B:D0:48
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 0198C792384571C18BF23D829AC85858FFB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 0755
Signing time: Wed 20 Aug 2025 13:01:45 +0000
Manifest this update: Wed 20 Aug 2025 13:01:45 +0000
Manifest next update: Thu 21 Aug 2025 13:01:45 +0000
Files and hashes: 1: EKdJIayRjGqpNjC_sXcLD4LpFxg.roa (hash: Q7XyDf/+ZYlwIoQHzzpWgBVzZ1z6oDECbrHcCzM9GG4=)
2: _-z4nvaTTyccKXJFwod66iKewX0.roa (hash: B/6vrb0o2kiLAGPMrkOgglOkupcsHoxdqdIe49F5XFQ=)
3: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: TbYPrU3eI/KaZ7fKeN+sD2m3tIx2UMRT0iCLLGta0yI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 13:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c7:92:38:45:71:c1:8b:f2:3d:82:9a:c8:58:58:ff:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: Aug 20 13:01:45 2025 GMT
Not After : Aug 21 13:01:45 2025 GMT
Subject: CN=11ba5562a673763b1b9d8888bdaed152212bd048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d4:3c:57:bf:40:ec:d6:f1:25:e6:c9:57:bd:
d4:e5:f2:12:22:c5:01:7f:5c:18:b3:1b:b4:ac:a1:
5b:b0:4f:4a:ef:1b:52:e9:b0:44:6b:b9:4a:ba:6b:
61:c2:af:77:4e:44:0e:54:f0:b4:23:e8:30:88:0c:
6b:69:85:65:be:55:65:25:7b:84:72:08:05:8b:e1:
e2:ea:c6:e4:ea:76:49:91:27:e8:5a:dc:d5:d4:61:
f7:4d:76:26:1d:46:5d:28:02:0b:c3:fe:44:78:fc:
e9:6b:c9:ca:43:eb:f1:3e:d5:23:36:75:a2:eb:1e:
f9:ca:b1:83:04:fe:84:c3:a2:fe:fc:39:11:d9:8f:
64:81:c6:4e:2f:07:61:af:c7:c1:d5:84:f9:27:ba:
ad:3c:14:10:d4:37:25:b7:72:e5:06:2d:1e:02:27:
df:6d:3c:33:de:83:0f:00:57:1d:c9:16:6f:7a:9d:
a7:ff:2b:4e:02:2d:76:56:b9:b6:f6:8d:39:91:2e:
8c:ec:50:8e:b1:5f:0a:09:0b:e4:aa:dc:c1:3b:ed:
15:02:ce:ae:09:08:25:9d:84:84:da:54:07:09:81:
cf:5e:8a:7e:df:3c:82:02:4a:40:e6:37:2d:10:3a:
72:d4:20:3d:02:f4:5f:26:8d:d3:47:24:5f:9c:f5:
56:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:BA:55:62:A6:73:76:3B:1B:9D:88:88:BD:AE:D1:52:21:2B:D0:48
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:1f:33:0f:fc:2d:1d:89:00:55:88:9e:fc:a2:b8:dd:cb:13:
0a:ad:ba:18:1a:27:4b:39:c1:8e:72:ec:1e:a9:b4:59:8d:0c:
ec:8d:c9:f0:69:b5:93:0f:4d:86:98:2e:40:c5:99:5c:05:31:
8d:9e:2b:d4:a6:7b:ef:47:d3:e2:9a:13:2d:03:a3:0b:45:08:
dd:89:b9:23:37:48:9b:23:3a:ed:8f:e2:17:07:3c:7a:c3:85:
aa:0c:23:8f:cb:10:66:3b:e8:2a:c4:63:8b:c9:5a:59:25:85:
a7:5b:c2:18:48:13:6d:76:3d:d9:74:b9:e3:f7:49:bf:74:03:
50:ac:a8:52:f1:6f:7a:d9:f3:d1:20:92:f4:4e:77:cb:1e:cc:
2c:73:6a:61:41:ec:d1:61:d4:20:3c:05:52:02:ba:ac:44:64:
9f:13:5b:d7:3a:17:05:8c:66:5b:2d:0c:2d:88:71:1d:1b:6e:
ae:d0:38:3c:2c:ee:ae:1b:63:da:76:d9:a4:f4:d0:7f:ab:70:
8c:cc:10:18:51:8c:e8:d1:38:58:fa:52:8c:6e:64:b6:12:9f:
a6:d3:b6:4e:ef:24:0d:aa:04:8d:e8:a2:99:30:e6:e5:18:b3:
13:36:b4:6b:56:7c:14:19:2b:6a:54:21:49:38:c8:c3:bc:df:
a9:12:70:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 20 17:20:25 2025 by rpki-client