Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
File: 0luQuJgbWR11p-k14TBKdAdWAv0.mft (raw, json)
Hash identifier: /OCblDFw1Jx40GHh0Ys59ok9UpNjKtKj5XeS9O8gmjU=
Subject key identifier: 68:CA:05:F3:BE:95:C8:74:9A:FA:75:EB:B3:57:46:9A:6A:F7:19:8D
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 0199228CA42D049E389075EC4E7462386571
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
Manifest number: 154B
Signing time: Sun 07 Sep 2025 05:01:06 +0000
Manifest this update: Sun 07 Sep 2025 05:01:06 +0000
Manifest next update: Mon 08 Sep 2025 05:01:06 +0000
Files and hashes: 1: 0luQuJgbWR11p-k14TBKdAdWAv0.crl (hash: n4Dht4hI1Z/rf2dLtetqG83sdBPDsg2KyTJl/LdeYHE=)
2: n6mO0jwfMCGtBTJz4z0BBFhaaaw.roa (hash: depvn6FAlXY00NO5eAYz1KXbUInLhBp+Jz+PGCqafeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:a4:2d:04:9e:38:90:75:ec:4e:74:62:38:65:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Sep 7 05:01:06 2025 GMT
Not After : Sep 8 05:01:06 2025 GMT
Subject: CN=68ca05f3be95c8749afa75ebb357469a6af7198d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:4f:dd:00:13:bc:61:c4:19:80:db:b2:30:4c:
fb:75:c3:24:e8:0c:95:a6:41:2a:b5:df:69:64:1a:
71:cf:e5:87:0e:ac:23:8b:ea:4d:91:fa:da:52:0f:
8e:83:8a:e3:5e:c4:d2:e8:68:78:07:44:f6:d5:1c:
75:99:96:c5:50:09:a1:74:0d:cd:8f:dd:58:fe:de:
78:16:76:72:2e:39:9e:bc:5a:44:9a:36:a4:b0:b0:
41:6e:b5:a5:8b:b8:b9:a8:a6:f9:08:9e:38:d4:7a:
5a:19:4c:33:ed:fc:34:4f:86:14:5e:16:01:a4:84:
f4:f6:1a:20:c1:b9:b5:e3:b6:30:74:ca:8b:c2:f0:
31:71:85:1b:91:1e:fb:8d:e1:de:89:fe:cb:11:7a:
9a:0b:0e:50:4a:55:da:f5:e0:88:71:3d:bf:a7:e6:
d6:89:9f:ba:71:09:6f:bf:b0:8e:b3:8b:9d:97:f2:
1a:5c:e9:37:23:f4:21:c3:41:bc:1c:75:bc:2d:83:
19:fe:ab:dc:90:ec:08:24:29:7b:1c:44:c6:11:6d:
ee:4d:82:9a:ee:61:26:a5:e8:f9:8a:8e:c0:ec:3a:
8a:44:04:cc:39:32:f3:fd:3e:5e:b0:ea:c0:ed:a5:
ec:64:23:62:fc:5a:19:2d:44:40:77:b5:b3:c6:6f:
dc:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CA:05:F3:BE:95:C8:74:9A:FA:75:EB:B3:57:46:9A:6A:F7:19:8D
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:57:72:3d:d8:1a:45:05:d5:4f:39:79:6a:f2:e7:ff:f0:89:
19:3f:e1:b3:f6:8c:be:86:36:58:1c:09:01:29:b5:1e:ed:0d:
99:cd:0f:a6:35:51:55:4d:d0:82:0b:5c:e3:d3:fb:44:ba:50:
da:f2:5b:02:69:dd:90:c3:a5:b3:22:04:e6:43:00:48:b4:b0:
ee:8c:a5:b6:05:eb:99:01:7c:a7:2a:6a:d9:ac:6f:0c:9f:6e:
a2:dd:c2:0b:3f:3d:48:a2:51:d2:2e:d3:66:de:b3:63:e6:cf:
cf:c4:cd:c8:ee:a2:96:1b:eb:9c:7c:c6:98:49:cd:3a:c2:04:
af:f4:a9:f2:7a:91:2d:c7:5e:2b:a4:08:ba:54:16:d1:32:a3:
28:33:e4:21:d4:66:f7:8e:33:52:c0:65:9d:cb:cd:c4:f1:90:
6c:e3:ad:ff:f4:a0:9e:c8:6e:dd:85:38:e6:8d:d9:7b:79:90:
66:5d:d4:a3:21:2a:7a:59:6d:a4:c7:6a:1d:cf:4f:6d:c4:7d:
4d:dd:f9:5d:bc:82:8d:7c:24:01:cf:ca:97:62:7d:fa:d8:c9:
33:fa:5d:7b:7b:d6:99:d4:e6:a1:57:c7:a0:09:37:52:35:60:
b9:f0:a5:d1:cb:48:91:0f:a1:bf:5b:2c:a6:e0:c4:49:04:6e:
ff:65:a2:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:41 2025 by rpki-client