Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
File: 0tzocORzw1QnPonF5OLtPgwGk1Y.mft (raw, json)
Hash identifier: lW+VPEUDDeJ/0ihKa9nveYhRMKuHFm4oRBLiyPD17u8=
Subject key identifier: 63:02:55:A6:52:3D:4F:72:01:F4:F3:D4:DD:EF:54:ED:48:B7:85:E7
Authority key identifier: D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
Certificate issuer: /CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Certificate serial: 0199221F6951649A2272D82ACF84816E4441
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
Manifest number: 0AC9
Signing time: Sun 07 Sep 2025 03:01:47 +0000
Manifest this update: Sun 07 Sep 2025 03:01:47 +0000
Manifest next update: Mon 08 Sep 2025 03:01:47 +0000
Files and hashes: 1: 0tzocORzw1QnPonF5OLtPgwGk1Y.crl (hash: EcrcCXwfVhixg3xWSPRkCS8jsrgvLsGty3M0/9EDGMc=)
2: tTZ8ChHVIsV9vssdJRRwpvt77Ic.roa (hash: vUfunefLZb2Jpmp53yxYY0pVxR49oq3Pwb2HHqDzrlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:69:51:64:9a:22:72:d8:2a:cf:84:81:6e:44:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Validity
Not Before: Sep 7 03:01:47 2025 GMT
Not After : Sep 8 03:01:47 2025 GMT
Subject: CN=630255a6523d4f7201f4f3d4ddef54ed48b785e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3a:f5:9a:5f:47:05:7b:80:c2:e7:8a:3f:ae:
c6:ab:01:a6:3a:33:ba:59:44:5d:ce:f5:d4:63:50:
0a:cd:a7:ea:ac:b3:5c:b6:0a:1c:6b:7d:39:71:e0:
06:57:cd:bc:72:96:20:67:63:5f:cd:4a:06:2d:58:
4b:84:b3:ae:ac:64:d3:3c:b4:50:25:d9:c3:4a:a8:
d6:bf:c2:a1:ef:69:b1:03:18:b7:fd:e3:ac:66:c8:
54:12:38:f2:d1:de:fc:7b:56:b5:e0:49:15:04:ae:
8d:aa:0a:8b:69:d6:cf:76:88:91:ec:ef:87:b9:9c:
f0:48:10:c5:d3:83:68:3e:b4:b0:d0:93:9c:5b:a5:
0f:28:c9:28:07:11:fd:8c:0a:d9:70:a0:28:a3:cc:
2b:4b:a2:59:75:40:a1:dd:85:d5:75:09:88:ed:3d:
f4:9a:0d:35:e1:a8:02:b0:c4:9e:97:8b:a4:aa:76:
c8:1e:d8:a4:2d:ae:bc:d8:a5:9f:29:2a:90:f7:7f:
26:04:1c:38:32:eb:66:26:ec:79:b9:a2:29:01:4c:
bd:27:50:2c:a1:18:64:2b:b3:17:25:73:4c:78:2f:
54:ba:22:26:96:de:8e:05:41:c8:18:00:56:6f:a5:
76:9b:b0:d2:dd:12:5e:38:49:ff:c9:d5:fc:94:2a:
dd:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:02:55:A6:52:3D:4F:72:01:F4:F3:D4:DD:EF:54:ED:48:B7:85:E7
X509v3 Authority Key Identifier:
keyid:D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:fb:17:77:ab:1f:7a:d7:1d:f7:62:89:ad:a3:d5:18:3b:33:
c9:5b:4b:33:70:e7:c3:b7:df:56:72:86:6c:0e:ac:cd:c3:06:
0a:17:71:b0:63:d4:bb:25:1b:dc:61:31:37:63:0f:8b:2f:5d:
54:3d:06:7e:f1:92:a7:51:47:ab:45:1a:af:82:6d:38:78:bf:
10:5d:af:70:b8:49:a6:59:8e:3a:b4:b2:ac:96:c8:3b:68:aa:
df:dc:40:18:90:6c:7c:20:45:48:02:a4:0b:ba:00:b1:ef:47:
a3:d3:3d:a7:89:dc:43:25:87:47:2f:b9:f0:ba:97:be:19:cd:
e6:d4:44:b6:fb:b5:f0:ff:07:95:30:bb:0b:57:1e:de:e2:4b:
6a:0f:51:9d:d4:0b:9c:7e:40:ed:6d:bf:c1:ac:22:9f:e7:dc:
db:90:03:53:13:e1:c5:d8:1f:0a:14:d3:ac:2a:b7:06:07:4f:
b9:9b:fa:65:d3:2d:4c:be:b3:33:97:e1:ad:03:98:0b:e3:aa:
ba:92:bf:81:26:6b:92:9d:30:a6:90:38:ab:e1:78:ea:0e:12:
b8:af:5b:55:91:c6:6c:9e:0b:26:6c:19:c3:c5:57:75:a2:84:
75:2e:84:56:eb:d8:98:0b:6d:9e:b3:a8:42:09:d4:c4:7f:4b:
65:a1:d7:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:48 2025 by rpki-client