Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
File: 0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft (raw, json)
Hash identifier: Al0EHpH9/b3pRswgvWk2OkZVI2NNwXbvWdaa4EVZV1M=
Subject key identifier: 8E:4F:5D:98:E7:12:7F:70:BD:70:96:B9:1F:8D:7F:F6:53:CD:B1:0C
Authority key identifier: D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8
Certificate issuer: /CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8
Certificate serial: 019918ADBAF63E86C9C926EB6C37A10F5D4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
Manifest number: 02F1
Signing time: Fri 05 Sep 2025 07:01:02 +0000
Manifest this update: Fri 05 Sep 2025 07:01:02 +0000
Manifest next update: Sat 06 Sep 2025 07:01:02 +0000
Files and hashes: 1: 0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl (hash: 6PDYKu8+jPW6gJTDjFxcC3Jc+LE+CxmpeL9VuxHAxz0=)
2: vwZ3qyY8j7AihfGsWYtA6mwINxQ.roa (hash: VBbCuPYUO8ASQ+6MrnY57WOdr+3+R3PhClJszE/T/CI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:ad:ba:f6:3e:86:c9:c9:26:eb:6c:37:a1:0f:5d:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8
Validity
Not Before: Sep 5 07:01:02 2025 GMT
Not After : Sep 6 07:01:02 2025 GMT
Subject: CN=8e4f5d98e7127f70bd7096b91f8d7ff653cdb10c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:96:16:16:df:79:8d:d4:35:86:8f:55:20:2f:
d7:41:fb:94:b1:00:2c:14:30:62:88:67:49:4e:38:
39:cc:bd:a2:9b:51:30:a4:3b:af:2f:59:cb:ce:85:
58:c7:39:d2:f9:b9:50:d8:ce:91:cd:7f:08:ee:d6:
53:e0:2f:65:d9:30:40:7e:95:5d:97:29:85:dc:ed:
6e:6a:7a:21:68:51:d5:f4:38:36:8d:1f:b8:59:f2:
55:7b:ed:c8:ea:d1:25:41:5f:9a:ef:24:90:6a:73:
25:7b:13:8c:18:7b:40:f4:0c:ed:a2:c2:6e:f4:45:
c8:ad:20:9d:5d:4d:11:4c:e1:51:27:2d:9c:1d:12:
17:54:ab:f5:d3:db:c2:19:9b:7d:79:e4:16:ec:70:
1c:ee:b5:55:84:30:c9:47:02:91:65:f1:c4:ec:96:
27:a9:7f:cd:a4:c9:a1:d2:fa:ec:c7:a3:e6:a6:43:
21:dd:eb:1a:1d:85:14:7a:e1:c3:c3:b5:d9:df:b6:
ee:53:75:a0:f9:c0:7c:a5:40:fb:7b:b8:b7:5e:8c:
88:a2:e1:74:6a:58:95:90:ef:6a:7d:05:cf:19:04:
b5:0f:6a:e4:e8:85:32:8a:d5:00:30:fa:f6:73:69:
14:fd:b7:88:eb:ca:37:08:8e:b8:81:a9:6f:9d:41:
2d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:4F:5D:98:E7:12:7F:70:BD:70:96:B9:1F:8D:7F:F6:53:CD:B1:0C
X509v3 Authority Key Identifier:
keyid:D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:96:c6:f6:c4:fa:80:fe:17:e8:ea:83:8c:7b:bc:1d:bb:69:
93:f1:7b:29:7b:f5:59:89:dc:db:05:1d:9c:f9:2b:9f:55:01:
c6:b2:8c:42:67:bb:90:65:fa:91:6b:7e:22:24:40:ce:6e:a0:
a4:c8:04:9e:94:49:3f:f6:ca:b4:cb:c2:16:db:b4:37:f0:93:
01:eb:fa:bf:e0:92:74:43:98:de:29:3a:a1:87:a0:03:30:08:
0c:cf:cc:e6:1b:98:51:f0:68:6e:e9:96:7c:0b:bb:be:05:85:
c8:3c:92:5b:76:37:1c:d1:7c:f0:f7:0d:24:c3:b6:ee:28:83:
c3:11:17:9f:0a:c9:13:46:74:0c:2a:5c:53:fd:4b:d1:99:10:
79:07:c6:a1:82:8c:5b:2e:4d:49:5d:53:6a:e9:eb:dc:96:cc:
fc:b2:4a:20:2d:ea:90:8d:5d:fd:c4:08:e1:6f:29:24:04:2f:
52:0e:cd:c6:89:d8:f4:d0:d7:57:74:36:b9:ce:06:02:95:cd:
c1:10:72:f5:34:c1:9a:3b:9e:82:ad:84:ff:e4:0e:b6:c5:63:
5d:f6:1d:59:09:43:f9:0e:3c:72:5d:f4:b0:02:a2:a9:f8:c2:
05:da:99:ed:96:9b:d9:88:fb:bd:f0:23:d7:2c:06:6f:1d:bf:
c4:ce:b2:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 09:49:29 2025 by rpki-client