Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
File: 1onLcYkcbZS9nm8U8W5-N8LHKL8.mft (raw, json)
Hash identifier: ny00Nqwl7o7IRQ32jxWlmovdRJzw4Gd394yNgjfSpb8=
Subject key identifier: 7B:FD:3A:5F:63:62:5B:E5:89:B2:A8:0E:53:15:5D:76:9E:2A:38:02
Authority key identifier: D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
Certificate issuer: /CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Certificate serial: 0198CB02042296403326277579B7DBBDF8C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
Manifest number: 03F9
Signing time: Thu 21 Aug 2025 05:02:43 +0000
Manifest this update: Thu 21 Aug 2025 05:02:43 +0000
Manifest next update: Fri 22 Aug 2025 05:02:43 +0000
Files and hashes: 1: 1onLcYkcbZS9nm8U8W5-N8LHKL8.crl (hash: doROAvz8+1ffmfMP7aTpNOofFqQFva4CJzRYDV/Uq0I=)
2: kSER2798uaT4ZEQ3_Ywav1IgXDo.roa (hash: o89fQ/v3jr3XzrvC5mfE9JQZHOaC2hUzybiixeh55JI=)
3: yZlOT6r0_6wmgpAAvcSq6qfpXoA.roa (hash: CFuI4jvHDVJgJ7TNYXPE3aUuvYsSM/+AObIDbJtCPww=)
4: zl7tT8dRR7O1ZujdC0-GhGjBJAU.roa (hash: dZhp70Fm8wBLybFYAH8VTvH36PqVNE1zgwuzpEitFwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 23:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:cb:02:04:22:96:40:33:26:27:75:79:b7:db:bd:f8:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Validity
Not Before: Aug 21 05:02:43 2025 GMT
Not After : Aug 22 05:02:43 2025 GMT
Subject: CN=7bfd3a5f63625be589b2a80e53155d769e2a3802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e0:ef:9f:09:d2:15:c3:56:e8:42:47:31:dd:
1f:2b:11:ef:c7:c6:76:68:ef:79:28:29:d8:2b:2b:
43:87:13:e8:8b:5c:eb:28:15:4b:2a:e7:77:e6:84:
55:65:93:59:a4:6d:32:43:a2:3f:17:1f:3b:16:80:
4c:a7:c4:de:4a:91:e2:4b:fc:34:ef:a1:d2:d9:85:
59:c3:78:a9:cf:3d:01:f3:9b:64:4f:a5:31:44:71:
99:48:68:5e:68:00:29:e3:ac:68:06:e6:a2:5b:ca:
51:72:5f:3e:c3:d0:bd:04:f5:f7:ef:8d:42:d1:fb:
d4:ef:ff:a6:7a:3c:15:2e:f9:83:83:63:e8:84:22:
ba:5d:6b:a0:10:af:31:ac:a0:cc:95:7c:d0:a8:45:
3f:c4:a4:7f:6c:7c:89:63:52:5b:9c:32:fd:57:63:
a5:bd:3f:0f:f1:bd:0a:ae:03:a9:47:73:53:e6:01:
b4:bf:0f:b3:9b:2e:41:55:31:f7:98:3e:72:ee:0b:
9e:2a:9a:cb:aa:11:52:fe:9e:66:97:83:09:61:aa:
a7:84:94:f8:4c:20:91:f7:bd:fc:76:55:a8:40:bb:
d7:63:06:06:d7:e0:b6:a5:84:47:b4:e3:df:5d:cc:
04:8a:cb:c4:7e:ec:0a:70:7c:df:f2:3a:0e:53:4e:
6c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:FD:3A:5F:63:62:5B:E5:89:B2:A8:0E:53:15:5D:76:9E:2A:38:02
X509v3 Authority Key Identifier:
keyid:D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:f5:8d:a1:64:e2:58:67:36:bc:3b:c6:8d:2e:08:da:1e:77:
71:14:26:24:7a:cd:e8:97:c7:10:66:56:77:bf:f6:c2:27:e3:
2c:0e:24:a4:e0:ef:27:8b:20:2f:b9:69:fb:37:a2:2a:28:df:
4f:0b:f3:c0:d1:7a:b5:88:9e:3f:f4:1f:cf:48:a0:78:87:c4:
8e:79:94:b9:1e:61:34:9d:00:b8:47:fc:d1:fb:ab:58:4d:38:
ae:a7:bb:18:df:c6:2b:99:bd:3e:a7:3a:33:f7:a4:d0:27:01:
fd:a4:83:30:c1:ed:f5:37:0a:9f:72:fe:57:d5:b1:e4:98:22:
f7:b3:27:a7:65:bf:70:ad:60:14:14:0f:76:c3:3b:9e:23:d6:
5e:9f:6f:17:9c:41:9b:fb:96:54:a4:99:38:f4:19:58:e3:cf:
70:be:59:99:39:74:6a:da:e7:a2:ef:9c:46:cb:71:74:e3:72:
68:ca:7e:b5:73:c7:a5:bd:b0:46:a4:fc:06:6a:bc:12:11:7c:
35:9a:f0:29:6a:8f:84:96:17:6a:24:ad:2f:1b:74:e4:60:95:
0f:7e:2a:74:41:13:6d:bc:83:50:ab:26:e7:47:eb:d8:6f:d1:
2a:82:dc:d2:ba:d9:30:0e:5c:27:a0:f1:f1:38:a4:87:87:15:
88:c6:c5:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 07:19:00 2025 by rpki-client