Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
File: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft (raw, json)
Hash identifier: cWT4SySGW81DCCObOnj5cYGdYxlafVcIzx8LVuinvjA=
Subject key identifier: 86:B0:8B:1F:52:69:D9:6C:C8:7D:3D:51:C9:A8:DB:2F:C9:C2:9C:FA
Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
Certificate issuer: /CN=d346e5d46291f6bc53b965865051ba399749eb2d
Certificate serial: 019948879E1FB5892FA7493FE189ACF09369
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
Manifest number: 022D
Signing time: Sun 14 Sep 2025 14:01:11 +0000
Manifest this update: Sun 14 Sep 2025 14:01:11 +0000
Manifest next update: Mon 15 Sep 2025 14:01:11 +0000
Files and hashes: 1: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl (hash: +BjSphEgSUGpH/pVvACMNuaEYBZF5MfK3gnPwNBq4fw=)
2: gYQl8tX6UzR3RDmi_Q8x7-FjoRo.roa (hash: Ql10T2YHVZxrbMNqGA2K5KVTFR5OZbWrykLTc4F+v5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Sep 2025 14:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:48:87:9e:1f:b5:89:2f:a7:49:3f:e1:89:ac:f0:93:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d
Validity
Not Before: Sep 14 14:01:11 2025 GMT
Not After : Sep 15 14:01:11 2025 GMT
Subject: CN=86b08b1f5269d96cc87d3d51c9a8db2fc9c29cfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:12:65:e6:21:00:b8:17:73:52:e3:f6:c1:b7:
82:1f:46:f0:8b:1e:a9:6e:d5:5c:46:10:6b:2f:3a:
48:cf:55:50:f0:08:e6:a4:c5:70:50:34:6b:5c:d4:
fd:10:ac:a8:2f:ab:f9:15:17:20:86:91:93:de:bd:
27:50:a0:43:29:5e:12:5e:a2:cb:d8:dd:6e:4e:8b:
ac:4a:cd:40:f8:73:2f:01:c2:d7:57:e7:88:8a:3f:
01:78:23:04:92:c5:81:dc:6d:cd:1f:35:6d:8b:3d:
25:de:97:7f:bd:c0:ce:50:9b:37:0b:e4:a4:82:97:
3f:fc:2a:ca:cb:3e:05:89:73:c2:34:8d:39:61:25:
e0:15:52:1f:c2:33:c4:f7:1d:b8:9d:0f:ed:16:e3:
f4:d5:b8:6d:8e:e2:ed:79:d6:54:f2:f5:ce:32:3e:
9f:d4:53:70:61:1f:6c:06:26:3e:7e:c5:8c:98:56:
7f:7d:f4:f5:29:5c:a4:09:78:dc:28:c5:a3:ac:06:
08:ef:7b:96:99:e5:5e:9f:eb:c1:1e:be:e9:cd:28:
be:2e:33:db:88:ca:f9:6e:e7:ca:ad:bb:44:55:a9:
f4:81:02:9a:24:04:1d:73:a8:6c:4e:0c:c5:da:94:
d6:56:f9:f6:c3:b7:22:31:37:15:3e:65:96:3d:6d:
bc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B0:8B:1F:52:69:D9:6C:C8:7D:3D:51:C9:A8:DB:2F:C9:C2:9C:FA
X509v3 Authority Key Identifier:
keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:11:41:c4:5d:ef:f4:10:f3:ad:e2:43:d2:7d:3d:5f:3c:2c:
f7:37:f4:97:6d:98:28:a0:a9:e1:8c:2d:06:4e:87:d9:70:5b:
e7:dc:7e:ad:76:c5:9d:e8:77:86:f8:43:7d:42:7f:3c:ba:e9:
a7:af:bf:b5:39:9f:7f:75:c2:98:3e:3a:ba:19:5b:0f:04:63:
eb:e0:7a:e3:1c:ff:3b:5c:b3:63:b3:0b:94:78:a9:a9:b0:46:
45:81:8c:94:71:d7:a8:f0:14:6f:ee:24:e6:5a:eb:72:40:88:
62:b7:7d:b2:12:76:5c:ef:f7:e1:0c:19:26:65:b0:00:a5:a3:
83:7f:bf:ce:20:bc:7e:a2:f9:bb:e4:08:5f:70:1f:8f:5d:a6:
90:08:8d:6f:40:d6:02:d2:e9:e5:a2:45:16:eb:01:7d:13:6a:
6b:ea:67:82:fc:b9:af:86:f4:a8:07:8d:90:1a:a3:c2:a0:ca:
40:44:de:2f:9a:06:4d:3b:b1:6c:be:6d:81:f6:28:41:d2:a2:
0e:59:46:27:e4:eb:16:af:72:40:f4:db:6c:c4:b7:21:18:15:
89:12:ce:9c:0c:3c:d0:cb:37:08:8e:76:a8:01:16:c0:bd:71:
1a:cb:eb:16:05:10:10:ff:78:ca:85:eb:14:e1:c7:46:0c:cd:
1d:7f:24:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 14 15:11:33 2025 by rpki-client