Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
File: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft (raw, json)
Hash identifier: OB4HKZo81bYFPlqiGshYIjCX/WxsEqPYJGzU25B81Mc=
Subject key identifier: 9F:ED:0D:18:00:0C:03:14:C1:42:74:4E:1A:A7:A4:09:02:7B:55:DE
Authority key identifier: D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40
Certificate issuer: /CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40
Certificate serial: 019930116A98FC33DDC717D79ED1487AAEA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
Manifest number: 060D
Signing time: Tue 09 Sep 2025 20:01:11 +0000
Manifest this update: Tue 09 Sep 2025 20:01:11 +0000
Manifest next update: Wed 10 Sep 2025 20:01:11 +0000
Files and hashes: 1: 0i_jhQqN2iNg5AEP50J1N6ocU14.roa (hash: dte6GhHBF0dhj/nHMGGQvO/MzVf6vGP1TT8x/x47jYs=)
2: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl (hash: OFE78AyY4oh5S9wBxglqRDDHbrr65H0NF5h/9wVuwLo=)
3: wH2BXhQbp4RbWEqazf0ETM0OAOI.roa (hash: WPj1rnPevOFK6Wz2Mo2etzdEIyu2IX1IvghxSjU5v1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 20:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:30:11:6a:98:fc:33:dd:c7:17:d7:9e:d1:48:7a:ae:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40
Validity
Not Before: Sep 9 20:01:11 2025 GMT
Not After : Sep 10 20:01:11 2025 GMT
Subject: CN=9fed0d18000c0314c142744e1aa7a409027b55de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:80:0c:ec:d3:8e:b7:65:b8:29:df:9a:b7:ab:
7f:2b:69:e7:d3:a9:7a:25:94:c9:05:71:82:1a:7b:
3d:c0:94:e9:0e:e3:e3:41:ae:e5:06:9a:3b:47:00:
4c:b3:81:d3:76:a6:47:72:eb:e6:5e:7f:27:79:6b:
99:e8:62:0a:96:c7:1f:31:7a:87:55:cd:80:5c:ff:
80:45:ec:49:ba:2d:01:72:22:9d:3f:32:04:da:b9:
90:ae:4c:13:f1:95:7c:e1:3c:68:3f:a0:95:df:62:
fa:1d:bf:4e:e6:5f:0c:e5:11:6a:a2:3e:63:1e:a9:
5d:ac:98:cf:1e:17:1f:30:b4:be:24:06:ef:32:26:
1c:50:a5:d7:72:e6:41:ca:0c:0a:03:16:b0:d7:ac:
47:00:89:04:28:28:7f:5b:7e:da:ba:43:0f:9f:8d:
a8:35:c2:8c:28:44:50:84:92:6b:50:db:40:7c:17:
be:4a:cd:cd:2b:7c:ac:8d:55:30:5a:38:09:17:e9:
7e:17:50:96:39:81:78:66:ce:84:d9:99:9f:58:3f:
63:be:55:4c:33:2b:92:9e:8a:65:2a:ff:d6:8c:86:
cc:63:e3:73:63:4d:af:f0:cf:b2:0f:fe:01:cf:1b:
18:18:96:2d:6d:71:99:bb:57:6b:14:11:81:25:73:
a5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:ED:0D:18:00:0C:03:14:C1:42:74:4E:1A:A7:A4:09:02:7B:55:DE
X509v3 Authority Key Identifier:
keyid:D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:53:c0:bf:37:12:38:3c:1b:eb:61:ec:39:b1:13:85:1f:55:
f1:2e:27:03:ea:89:ed:13:52:b9:b1:ef:ef:06:d7:22:91:81:
41:fc:e6:9d:6c:54:0f:c2:a2:4e:d3:65:e7:3d:d7:69:fd:46:
f6:04:bb:6e:c1:df:2f:20:59:6b:93:61:fe:83:fe:cd:81:a6:
e6:2d:4b:5d:6b:ec:26:ed:64:90:e1:b6:fa:8c:f0:e7:07:ad:
6b:79:19:03:0c:81:a5:ee:0d:09:dd:00:8e:b0:f0:82:51:c3:
db:a7:48:b1:0c:fb:81:93:b9:9d:70:da:ed:06:84:e4:93:28:
75:da:7c:0e:4e:c4:d6:57:9e:16:6c:ec:fb:f9:d7:6d:dd:dd:
75:6f:2d:58:5e:b6:b0:34:e5:5b:23:5f:b7:ee:0f:65:5c:00:
02:c1:01:c9:a5:02:88:13:c8:55:59:66:47:72:14:d6:76:9f:
ee:6b:1a:2b:f5:17:7f:3e:c1:54:70:57:23:a2:a1:78:6a:b6:
f6:aa:29:88:a5:63:ac:f4:96:d7:dc:37:51:84:4c:c7:70:78:
82:26:61:b1:f2:3a:ef:08:c6:c6:fb:db:8f:b5:e7:6d:3d:d9:
90:b1:54:3f:28:63:ae:cf:1a:15:32:de:ae:81:01:93:d6:f9:
7f:e4:53:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:41:01 2025 by rpki-client