Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
File: 1a8gwCbeEE2W8XrLr054fvnTAgY.mft (raw, json)
Hash identifier: 7IvlaZUGDonaSSvP9iNlNjrgMf5abeuzd6bRkdBmJFI=
Subject key identifier: 5F:2A:40:10:B0:FE:5E:E6:13:D9:F7:8D:66:79:F7:C9:5B:D0:C1:93
Authority key identifier: D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
Certificate issuer: /CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Certificate serial: 01993011604EF4E7E36C13A0756099A0B2DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
Manifest number: 0AB7
Signing time: Tue 09 Sep 2025 20:01:09 +0000
Manifest this update: Tue 09 Sep 2025 20:01:09 +0000
Manifest next update: Wed 10 Sep 2025 20:01:09 +0000
Files and hashes: 1: 1a8gwCbeEE2W8XrLr054fvnTAgY.crl (hash: Bf6V5qUboUyOnEkioFXdkZXowi8hZH9VylVu8iru5p4=)
2: ZntZKX2L_8Ma0koJ3HPW10lURHI.roa (hash: OJbq7vowsXJwKs2XlYdhIC+ZaJvxn8OPWmKWbar3xew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 20:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:30:11:60:4e:f4:e7:e3:6c:13:a0:75:60:99:a0:b2:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Validity
Not Before: Sep 9 20:01:09 2025 GMT
Not After : Sep 10 20:01:09 2025 GMT
Subject: CN=5f2a4010b0fe5ee613d9f78d6679f7c95bd0c193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4f:6c:0e:02:ed:fc:dd:86:0a:c0:1d:59:3b:
77:a9:d9:8d:a3:c5:55:be:67:a2:6f:f1:ed:e9:df:
37:2a:e9:ea:2e:8b:62:42:51:65:ac:03:f9:67:3e:
63:00:7b:65:c5:2d:36:72:90:e5:c5:52:4b:79:e9:
c9:42:f5:43:f5:9c:f8:92:31:fc:1b:e2:1c:3b:67:
f4:50:57:06:e0:d3:00:a1:59:c0:1e:ab:f4:4b:a9:
23:68:22:1f:2d:22:75:15:41:2f:4c:0e:37:4f:df:
d5:29:a7:79:b4:d5:25:34:20:11:9e:fe:a9:4f:27:
3d:19:02:85:14:d9:1d:e6:91:28:aa:24:7a:ef:65:
b7:d7:45:56:cf:7b:6f:ec:2c:fa:63:f7:23:bf:7b:
3c:12:a2:c7:1e:fc:ef:ca:4a:20:82:7b:82:85:6d:
b6:20:70:b7:89:7a:98:2a:df:78:8e:01:7a:77:25:
d8:6f:6e:89:c6:4e:d2:cc:3b:b7:51:6d:87:bb:e2:
b4:6b:27:57:f6:f9:38:42:c7:14:ac:b6:e7:ad:d3:
d8:f7:a2:90:a0:5f:4a:09:68:b3:37:9e:80:24:59:
0f:fa:9f:86:85:cf:16:80:43:fb:90:25:f5:08:a7:
b0:9c:7a:e6:dd:84:3a:0f:bd:54:d0:0d:fb:fb:8e:
69:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:2A:40:10:B0:FE:5E:E6:13:D9:F7:8D:66:79:F7:C9:5B:D0:C1:93
X509v3 Authority Key Identifier:
keyid:D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:1f:2b:f4:14:8a:c4:ee:24:1f:3b:e3:1e:2c:08:27:28:1d:
2a:38:8b:f0:a0:60:fc:88:8a:57:05:53:e3:30:2f:a8:c6:7b:
09:d2:92:80:3a:67:5c:2f:fe:78:e6:15:b7:03:9b:bd:56:cb:
43:81:3b:22:05:94:71:7a:f4:2c:a4:90:4e:7e:e0:7c:96:64:
76:0d:51:e0:19:7a:01:8d:94:7f:42:1f:6e:f6:7b:01:32:15:
65:54:22:f5:2a:e8:62:14:6e:f6:1a:90:82:19:46:2d:a5:bc:
61:aa:7b:42:12:14:57:b3:81:ab:0b:4b:14:7d:e4:fe:68:34:
97:01:46:88:ba:97:72:a9:6f:30:c7:ec:38:7e:72:28:4e:a1:
2c:c0:7c:e8:07:29:76:33:a3:8c:3e:4c:03:d1:12:7f:f3:e2:
e2:25:7d:27:bc:0e:d7:a1:18:2f:94:d4:b9:9a:8b:f6:93:a4:
c3:fa:29:e5:06:38:c7:ed:4b:80:08:cf:5f:6d:a7:a2:53:ca:
4d:2f:25:53:cb:88:ed:b0:a0:97:9d:55:e6:f8:ad:4c:49:e8:
a5:27:9a:29:03:10:e1:4d:96:cf:fa:6f:f5:82:2a:a4:c9:33:
8d:bd:0d:02:2d:c1:9e:ea:3d:79:ef:42:05:f9:bc:d2:ec:56:
98:57:3c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 05:57:49 2025 by rpki-client