Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
File: D5otI3SqascUtfim7duA3GlnnMY.mft (raw, json)
Hash identifier: RLi6gnfxrPpvo3gsugYtHpCf7vbNw1JOfustPt6/EYM=
Subject key identifier: 53:46:53:DF:17:26:91:4C:06:C2:B7:5D:A6:28:B4:89:6A:84:D0:D0
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 01993311F36D8AF9A620656BC345915DD38B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
Manifest number: 0CDE
Signing time: Wed 10 Sep 2025 10:00:38 +0000
Manifest this update: Wed 10 Sep 2025 10:00:38 +0000
Manifest next update: Thu 11 Sep 2025 10:00:38 +0000
Files and hashes: 1: D5otI3SqascUtfim7duA3GlnnMY.crl (hash: OluKh1hwabt2QjXJAoR1bPsmMzxITttMC2JIyX6kTeo=)
2: RNk_0Bt2Bdlaf0Pdd2eUPaMyW8E.roa (hash: m6J+0888VMRpST0J5iXwVh9t9K8LOLn/EV2xZ10pPjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 10:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:11:f3:6d:8a:f9:a6:20:65:6b:c3:45:91:5d:d3:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: Sep 10 10:00:38 2025 GMT
Not After : Sep 11 10:00:38 2025 GMT
Subject: CN=534653df1726914c06c2b75da628b4896a84d0d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:68:66:51:81:93:ac:da:a2:56:5c:a7:2b:79:
c0:0e:17:f6:5d:29:d1:34:d8:b9:d9:35:ae:84:9c:
9d:04:b1:0f:2c:25:c6:bd:1b:a5:5b:1b:5b:d5:63:
e5:0b:01:4b:cf:8b:63:c8:8e:f6:9c:6b:6e:63:b0:
e1:e0:f0:9b:0b:d5:5b:54:ce:6b:f3:a3:5f:f1:d9:
d2:ca:29:23:3f:cd:69:70:1e:b8:7f:d7:25:cd:3b:
78:e5:e4:68:dd:5d:eb:09:38:09:cd:51:8d:eb:81:
d2:0c:78:1d:a4:24:0b:26:89:17:ee:8c:1a:66:e1:
05:c6:00:96:08:98:a3:64:9a:00:f2:8a:d7:36:db:
7f:9a:5b:84:23:8c:1a:12:5e:04:3d:7b:d2:59:f2:
45:e9:9e:63:ae:22:d2:50:41:94:29:74:e4:0e:5d:
63:f8:6e:1b:6f:2c:c0:76:ab:13:63:4b:c1:2e:c6:
73:8e:b4:9b:11:3b:6c:e7:7a:31:19:5b:f0:70:3e:
58:df:85:7a:08:d4:37:e6:e7:70:36:93:a8:d6:88:
7a:f4:11:50:78:cd:07:e7:f1:59:87:b2:c5:45:82:
ef:cf:1e:23:23:ca:ac:8a:8b:59:f1:53:ce:4c:fe:
85:8d:a1:67:83:ba:a4:1b:94:6d:f6:63:07:fa:0f:
ad:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:46:53:DF:17:26:91:4C:06:C2:B7:5D:A6:28:B4:89:6A:84:D0:D0
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:30:d0:fc:61:01:63:5b:6f:6f:41:02:13:ca:c7:f7:84:8a:
9f:64:d4:66:4b:2f:a1:60:13:0d:f4:7f:8a:04:90:b6:d0:d3:
35:36:59:71:c2:cc:a6:4f:96:6e:3b:b9:06:0f:f1:24:88:72:
2b:4a:e2:01:20:af:15:60:85:9b:e7:39:e0:e9:6d:db:59:c6:
08:0f:e9:da:71:76:b2:f3:37:fb:f0:1d:e4:6e:27:91:65:53:
d4:e1:d5:ba:3f:a7:ba:ec:48:76:8b:49:50:dd:b4:38:c2:7b:
9c:77:5b:13:f5:40:1e:1e:45:43:5f:16:bd:e7:dd:0c:17:16:
5c:4a:11:08:68:fb:68:fb:d3:15:71:3b:0f:0e:1f:14:b2:07:
87:8d:24:ed:f7:37:69:2c:70:50:8f:54:eb:a8:23:3e:73:44:
16:ed:06:4e:24:69:2b:38:fb:53:13:4b:1b:a7:cd:ed:33:b1:
83:24:80:3e:2e:ed:f2:f6:64:5a:66:81:8e:5a:b9:7d:65:50:
de:48:10:94:4d:d7:a2:8e:9a:d1:28:26:06:ab:f2:7f:71:f9:
c5:da:86:64:c1:94:1e:32:53:ca:8d:67:d7:ae:ed:ce:30:4e:
62:c6:41:a8:dd:1e:1d:94:f9:9b:d1:4b:69:c8:44:c6:6a:d6:
9e:31:b1:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 13:43:31 2025 by rpki-client