Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json)
Hash identifier: k0Nk6YF906JTht9nPtU3NJi+9szMjIFyvZJJZqEv5+w=
Subject key identifier: A3:97:FB:6F:B4:89:ED:CB:79:0C:83:84:2A:79:B2:73:74:B8:2C:0D
Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Certificate serial: 0198C9B8A9A1269C0D17F056EC5AF4DC2D5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
Manifest number: 0970
Signing time: Wed 20 Aug 2025 23:02:59 +0000
Manifest this update: Wed 20 Aug 2025 23:02:59 +0000
Manifest next update: Thu 21 Aug 2025 23:02:59 +0000
Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: sXAF9SEZbNxCT5ZlLAx12qER7l3UsLU5NiFr+YEIIGI=)
2: eTuN91J09OBNoZtxEtruVhH4DbY.roa (hash: F1iOkNAfZrkXFWgz/sdsk9Ul6Wkc9BDyHiaUC1recQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 23:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c9:b8:a9:a1:26:9c:0d:17:f0:56:ec:5a:f4:dc:2d:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Validity
Not Before: Aug 20 23:02:59 2025 GMT
Not After : Aug 21 23:02:59 2025 GMT
Subject: CN=a397fb6fb489edcb790c83842a79b27374b82c0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a9:9c:51:54:3d:ae:55:43:2b:ee:d3:b2:7a:
92:ec:98:c1:bd:e0:f8:d4:fd:58:8b:c5:74:dd:d5:
28:df:0c:0d:cd:f8:e4:32:ef:31:96:ce:0f:06:5f:
78:4a:21:c3:85:da:1c:53:50:ef:2f:92:e5:a8:85:
90:02:e0:90:9e:87:d7:d0:9b:f0:02:da:97:3b:4f:
d5:74:12:e3:be:cd:ac:fd:9b:73:9b:8c:b2:2b:c1:
71:f5:8b:06:9d:f4:eb:a4:14:c7:34:c5:7b:75:54:
1f:7d:a4:b2:4c:51:a3:4f:ad:32:42:a9:c5:83:d3:
83:9d:c4:f7:f1:78:ae:ef:10:b9:f9:ea:4f:e8:ae:
83:cf:4e:df:54:c7:0c:f9:f4:2a:76:7b:57:26:33:
0b:25:49:33:1d:92:e4:dd:a2:df:55:10:7f:5f:b0:
56:71:4b:6e:0c:81:fe:50:db:a1:42:f3:1e:78:13:
7a:aa:e2:f6:20:b3:c1:cf:ac:ee:8d:01:a6:89:b9:
6d:40:d0:ed:aa:64:4c:ba:1b:22:5f:0a:ee:b0:f4:
a9:90:24:db:5f:9e:d7:ec:02:73:a2:09:56:21:52:
f4:70:4b:ce:51:10:c1:06:c7:ca:13:3d:b5:2a:fa:
fb:38:94:de:7b:a0:f7:12:b0:73:7b:0d:d9:9b:b7:
c7:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:97:FB:6F:B4:89:ED:CB:79:0C:83:84:2A:79:B2:73:74:B8:2C:0D
X509v3 Authority Key Identifier:
keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:76:7f:17:de:ac:7d:59:fa:95:7b:a2:8f:33:54:40:24:99:
b0:4f:a9:2b:d4:ae:e9:80:a6:07:b0:5c:1c:b3:63:9e:cd:bd:
8c:78:bf:29:dd:4e:0c:ea:ea:27:3e:62:ae:a4:55:72:4b:0e:
17:e3:d4:fe:83:f5:ae:2d:5d:45:e0:50:f0:8c:c3:ab:31:af:
c8:1d:07:dd:4a:49:4d:79:8b:21:ab:7d:d6:2e:6c:98:71:71:
91:6a:ba:1c:b6:dd:32:0f:c6:4e:3e:8f:dc:87:11:37:5c:c5:
c7:d4:d8:4e:1d:02:01:67:e0:3e:b5:a2:48:4f:e9:79:9a:10:
87:d6:cb:74:13:a5:41:dc:b0:8a:7e:5f:6f:50:71:b8:c5:65:
d3:e2:f5:e3:2b:13:3b:38:6e:75:06:ed:cb:6c:2d:c9:11:30:
76:48:03:b0:61:b2:66:cc:f7:87:08:bb:b5:95:c8:e7:2b:01:
e1:69:e8:86:97:93:31:b6:5d:c2:87:8a:61:99:d0:d8:b4:0f:
43:31:d0:70:e0:33:d0:00:13:35:cb:e1:ae:ad:3f:25:96:8d:
e9:0f:fc:a7:48:4a:e8:7a:9d:8b:dd:50:02:9b:e8:c0:bf:74:
12:9e:1f:8e:df:b5:ad:15:35:7b:e1:42:34:7a:52:f9:ad:81:
7b:b5:22:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 08:16:01 2025 by rpki-client