Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
File: 1onLcYkcbZS9nm8U8W5-N8LHKL8.mft (raw, json)
Hash identifier: cRWlJyF5zTkvIhlK0xPylJbKYFGcYT6p520L8hELzW8=
Subject key identifier: 22:EC:6D:8D:4F:46:90:52:0E:AC:B4:A2:24:DC:59:2D:D6:B0:36:28
Authority key identifier: D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
Certificate issuer: /CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Certificate serial: 0199DF2955097B2F83D5B9671D2DDBAA7D4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
Manifest number: 0488
Signing time: Mon 13 Oct 2025 20:00:51 +0000
Manifest this update: Mon 13 Oct 2025 20:00:51 +0000
Manifest next update: Tue 14 Oct 2025 20:00:51 +0000
Files and hashes: 1: 1onLcYkcbZS9nm8U8W5-N8LHKL8.crl (hash: MkMur0ZKgcZrh3gnRPk/Y8+TuYRVbiV9ptIN4Iqeiog=)
2: kSER2798uaT4ZEQ3_Ywav1IgXDo.roa (hash: o89fQ/v3jr3XzrvC5mfE9JQZHOaC2hUzybiixeh55JI=)
3: yZlOT6r0_6wmgpAAvcSq6qfpXoA.roa (hash: CFuI4jvHDVJgJ7TNYXPE3aUuvYsSM/+AObIDbJtCPww=)
4: zl7tT8dRR7O1ZujdC0-GhGjBJAU.roa (hash: dZhp70Fm8wBLybFYAH8VTvH36PqVNE1zgwuzpEitFwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 14 Oct 2025 20:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:df:29:55:09:7b:2f:83:d5:b9:67:1d:2d:db:aa:7d:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Validity
Not Before: Oct 13 20:00:51 2025 GMT
Not After : Oct 14 20:00:51 2025 GMT
Subject: CN=22ec6d8d4f4690520eacb4a224dc592dd6b03628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:4a:8d:7b:92:0a:b6:56:d4:86:ab:f6:c4:3e:
54:ae:7f:d1:be:4c:6c:8c:44:05:f3:29:04:99:aa:
5d:13:00:79:08:3e:47:22:2b:11:59:87:18:69:49:
33:3d:76:3e:67:9c:dd:c0:a6:80:4c:71:e1:e3:13:
5d:dd:c2:3e:dd:fe:c6:d4:57:13:f9:19:9b:8d:e4:
a8:a6:3c:fa:3c:c1:78:0f:d1:16:c0:53:f9:2b:9e:
d6:ed:4d:81:7c:cc:c7:da:98:1f:91:3d:f1:c0:52:
18:7f:8c:da:38:44:d2:b5:59:01:8f:e5:37:86:18:
36:51:24:47:09:80:83:0e:56:29:da:f5:b2:57:a9:
8f:46:a4:af:ef:42:0e:86:48:9c:37:9a:86:f1:a5:
79:5a:77:93:1c:b9:21:b5:98:68:fb:3c:47:b4:f1:
b3:19:43:46:55:a5:18:c3:6c:94:6a:de:c2:b3:29:
a2:03:af:ce:01:ed:47:f4:b7:b2:ef:5e:87:1f:ae:
2b:84:e5:cf:5e:28:9f:8a:d6:95:0d:c5:8c:22:e0:
3e:dc:71:bd:da:69:24:d5:60:69:b6:f2:63:6e:31:
5e:9c:c3:2a:1d:a3:fd:24:7e:90:61:c8:a0:a5:1f:
96:02:73:4d:e7:f9:6b:63:6d:fc:a0:a8:28:a4:7f:
be:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:EC:6D:8D:4F:46:90:52:0E:AC:B4:A2:24:DC:59:2D:D6:B0:36:28
X509v3 Authority Key Identifier:
keyid:D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:84:15:3c:13:82:bf:fc:9a:83:ad:4f:3c:8e:19:5c:bf:51:
bf:de:2f:ca:9c:bf:a0:04:d0:ab:52:a4:a7:6a:b9:83:2e:0d:
1a:41:00:85:08:a2:07:36:63:ba:24:6d:7f:08:74:46:98:65:
28:5b:61:bc:6a:a1:c1:01:ad:35:7a:43:a4:27:d9:58:19:1b:
39:59:d7:d5:73:16:60:f1:5e:41:71:bf:1f:34:80:76:db:a3:
9f:c8:08:26:ca:80:db:f0:2c:ea:fd:84:c6:56:13:7b:f7:d6:
26:7a:d1:59:86:96:c1:75:be:35:21:8d:56:6b:4f:7f:c0:0a:
0f:65:83:ef:25:9d:04:80:b8:a3:b6:5f:d7:4d:e7:1b:50:61:
98:05:4c:28:47:f4:4f:ba:71:f4:f2:12:6f:98:c4:db:79:0b:
8f:16:a2:5a:99:be:32:74:f0:e7:a2:11:f3:a0:d7:cf:43:0e:
03:43:c0:00:f0:06:f1:1c:88:14:43:28:9d:bc:fb:c6:07:4b:
2d:34:86:a9:50:d2:f1:8e:16:03:de:6d:c6:ee:2b:d7:b2:51:
87:41:46:03:95:0c:d8:f7:7c:1a:b4:cc:74:d8:f2:f4:be:a4:
92:94:01:e5:8e:61:f6:ec:2b:cf:60:9a:9e:56:4c:2c:bc:8f:
3d:b1:87:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 14 06:04:48 2025 by rpki-client