Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
File: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft (raw, json)
Hash identifier: 7burWsb9nLA8+wxRB487DiTV5cEmDQGij+BQm0eX2uo=
Subject key identifier: D5:86:D7:73:73:16:B8:33:89:8F:80:CF:1E:4F:82:23:54:DA:9D:AD
Authority key identifier: D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
Certificate issuer: /CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Certificate serial: 019923311E6C242F54CE7B3A7D3BC38E73DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
Manifest number: 0BB9
Signing time: Sun 07 Sep 2025 08:00:45 +0000
Manifest this update: Sun 07 Sep 2025 08:00:45 +0000
Manifest next update: Mon 08 Sep 2025 08:00:45 +0000
Files and hashes: 1: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl (hash: Q6TXu0TBZ2O6thrLkE6qMW7l/3Esbx8bwpKrYEBJO3E=)
2: It-Yns2Nwvw18OgbQ81pWbtQZ7M.roa (hash: 7H+X0erT0owXhcTltBjLEsiIIl6BxhT41pVVMePz04w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:1e:6c:24:2f:54:ce:7b:3a:7d:3b:c3:8e:73:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Validity
Not Before: Sep 7 08:00:45 2025 GMT
Not After : Sep 8 08:00:45 2025 GMT
Subject: CN=d586d7737316b833898f80cf1e4f822354da9dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:55:05:1d:37:64:2d:98:2f:34:70:7a:9a:a5:
30:e9:94:0d:37:b9:3c:75:d4:98:fa:c4:2a:41:a3:
f6:c0:db:83:5e:d9:8c:8d:5a:84:ee:a7:6c:72:53:
ef:cb:a2:4e:52:52:68:68:79:5f:70:f8:d8:fd:32:
af:4c:f9:8a:ec:84:84:3b:02:6a:3a:61:69:37:45:
10:06:b4:69:46:84:fd:f2:e1:19:bc:08:5e:e0:f8:
e6:ca:77:86:a3:e6:63:a0:46:de:fc:ac:52:4e:b0:
79:c4:61:57:f9:1f:33:7a:c4:f9:42:93:44:7e:70:
04:a8:39:29:93:ef:4b:a6:99:6c:42:9b:ac:80:ae:
b2:41:02:a6:df:27:cc:81:be:72:20:cd:d8:4b:a0:
f8:4e:8b:f4:b1:cb:03:6e:b1:71:e2:b3:32:a4:a1:
95:9a:5f:1e:cb:86:12:b9:34:65:4b:21:4b:3e:ed:
1a:4a:67:1d:25:57:19:33:15:c7:30:1d:e5:ba:f3:
c6:19:78:ec:f5:b3:3d:2a:e4:83:fe:c0:5c:b3:6b:
5d:0c:dc:bf:ae:5a:8c:ba:ae:16:82:0c:25:3c:b7:
0a:1a:f2:55:95:19:7f:71:cb:f7:bc:a9:57:7a:85:
c6:49:fe:25:71:67:77:9e:f2:92:89:13:5d:da:9c:
d0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:86:D7:73:73:16:B8:33:89:8F:80:CF:1E:4F:82:23:54:DA:9D:AD
X509v3 Authority Key Identifier:
keyid:D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:de:24:c1:c6:f5:7f:87:55:c0:3f:de:e6:3d:e2:8b:47:b3:
20:8d:8d:fb:a1:01:03:e8:04:5e:33:46:a6:0b:d9:44:7e:36:
28:3d:05:73:04:a9:7f:8b:f0:50:7a:16:f9:ff:3c:51:62:f0:
46:81:3f:1a:2e:d8:62:f1:bd:27:97:80:b9:0e:40:a7:26:04:
7c:36:b8:56:56:fe:76:21:6e:e7:6e:cd:f2:c2:55:75:99:64:
c8:06:ad:59:9f:dc:6b:aa:f9:29:1e:f5:b0:74:4b:f7:c3:7d:
e5:5c:c9:4b:31:2b:98:14:99:e2:e8:ce:64:a2:6f:b5:fe:d8:
02:93:40:49:bd:3b:48:14:a2:58:fe:3b:6d:0b:fd:0f:a8:eb:
ec:7f:18:e2:0e:3e:b2:e0:30:bd:73:7d:a2:cc:cd:3d:81:e9:
08:15:86:bb:1a:6d:7f:94:d6:44:78:95:73:16:2f:96:50:1c:
b5:49:3e:49:56:4a:6b:ef:43:d3:24:5e:b3:44:38:9a:02:50:
de:ef:f3:ac:31:5c:e2:c9:92:d3:0b:35:dd:91:21:e0:6f:6d:
48:f7:f3:9d:e1:bc:00:87:53:89:b0:b0:35:29:d1:fc:cb:cc:
6c:1f:e2:e1:9a:fa:c7:b3:c2:cf:be:83:13:41:b8:b1:94:bf:
df:47:6b:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:33:49 2025 by rpki-client