Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
File: 0HCWDtmg2hybfiRX6ry2YEeNCK4.mft (raw, json)
Hash identifier: 2sUCEwFfmVB/VcDGD3L1M8JMBJzE8c/pSZlFCAs64H8=
Subject key identifier: 18:AD:D3:EE:62:95:C6:A4:50:D6:33:D5:E5:BA:CE:36:C7:42:D7:7F
Authority key identifier: D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
Certificate issuer: /CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Certificate serial: 01991D6652ABC8FBC299334DBE15BC536892
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
Manifest number: 074F
Signing time: Sat 06 Sep 2025 05:01:08 +0000
Manifest this update: Sat 06 Sep 2025 05:01:08 +0000
Manifest next update: Sun 07 Sep 2025 05:01:08 +0000
Files and hashes: 1: 0HCWDtmg2hybfiRX6ry2YEeNCK4.crl (hash: Y5fD/PxHP3m23caPzsIyTqaplRKkcgu1yE1alQBPV1w=)
2: ZYblDAaDwwmnrchNjFrf0zm4tO0.roa (hash: TUJh6mrSVIERTxbeRqv55tj1PiJ2BrobmYQdllbfBL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 05:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1d:66:52:ab:c8:fb:c2:99:33:4d:be:15:bc:53:68:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Validity
Not Before: Sep 6 05:01:08 2025 GMT
Not After : Sep 7 05:01:08 2025 GMT
Subject: CN=18add3ee6295c6a450d633d5e5bace36c742d77f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c7:c2:b8:9a:d5:19:d8:6e:fb:93:7e:88:86:
98:81:dd:50:50:a1:47:a3:30:4f:16:a4:2f:ff:5f:
3f:78:f7:b7:f1:ba:22:a4:57:1b:a1:65:57:8d:92:
15:b7:b7:d8:38:4c:19:54:04:32:34:1a:ba:8b:38:
b2:7e:70:77:79:7a:e2:6c:42:f3:2e:32:37:3c:de:
5f:75:b9:cf:a8:05:94:1a:5a:20:25:ba:d4:c7:fe:
46:18:f9:25:82:a8:02:98:df:f0:47:24:15:ae:05:
f3:1b:d6:58:57:01:27:25:b7:aa:f2:ea:ee:95:19:
c5:86:59:bb:aa:2d:09:a5:8b:9c:98:69:09:4d:e0:
33:00:1a:d6:ce:72:c9:b0:0b:45:6c:9a:93:15:7d:
e1:6c:72:dc:ee:98:56:af:34:41:82:0c:8f:f7:b9:
5c:5f:2a:01:cc:ef:39:1b:03:d9:80:c0:3d:da:15:
e2:ab:74:32:78:42:c3:e9:85:e4:a2:41:41:c8:e1:
a5:1c:bd:ae:25:16:2d:8b:8a:36:2e:ea:51:a2:04:
62:e7:16:c5:21:aa:79:ae:ef:02:fe:b9:75:c7:8c:
cd:a1:69:11:7b:9c:fd:93:0e:81:d9:c7:d3:ea:7d:
10:60:63:f1:2d:b7:36:94:89:d2:c1:cc:d7:42:c5:
76:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:AD:D3:EE:62:95:C6:A4:50:D6:33:D5:E5:BA:CE:36:C7:42:D7:7F
X509v3 Authority Key Identifier:
keyid:D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:72:e0:2a:a0:f0:d2:26:0f:8e:1d:62:5f:2e:97:ec:90:4e:
54:f5:2a:62:68:dd:30:4b:b3:45:e2:5a:20:f6:96:3e:b3:2a:
9d:0d:62:6b:db:d8:3c:11:cc:c8:ce:12:cc:3f:95:6a:36:68:
f9:f6:b9:be:00:11:ed:4f:8b:9b:7d:21:e0:6d:19:ad:9e:bb:
f3:97:66:a4:0f:a9:22:fc:9c:35:a1:94:ed:b4:e8:dc:1f:18:
60:23:b5:f4:b2:e5:1a:43:32:9f:ba:58:29:fe:e3:44:d0:cf:
0a:b0:38:4b:7c:8b:0b:3d:9e:d7:19:cf:09:7c:89:99:54:2d:
47:67:46:71:bb:8a:00:c4:50:a1:e1:e4:4e:e1:8f:84:b4:98:
e2:c2:1e:04:f5:4e:23:60:bb:39:3f:e3:e7:f5:e9:f5:c3:d7:
83:3e:97:37:7a:40:dc:5e:b0:c4:19:de:d3:59:cf:9e:fe:b8:
97:05:29:d1:6b:db:7d:79:d6:ca:10:21:47:79:f3:c9:bd:94:
21:55:12:18:0e:e9:6f:89:ae:a6:0a:e8:72:2a:85:24:2b:2f:
78:bd:22:50:9d:6b:47:3f:13:08:ea:1a:33:6b:f9:c6:69:f8:
5d:e4:fa:a6:24:c2:79:47:e6:d0:e4:80:c4:ef:bb:fd:08:bc:
39:82:53:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 14:34:09 2025 by rpki-client