Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
File: 0nuHf4mTQSab7GfG46CoiLp66Y0.mft (raw, json)
Hash identifier: 0nZTOL+s+XdOQyIRmtxzMdMmrtYDI2gro7G1vGGE9Ck=
Subject key identifier: 17:6D:3C:54:B0:6F:52:76:A4:B7:1D:01:31:8F:70:F3:83:57:E1:5F
Authority key identifier: D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
Certificate issuer: /CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Certificate serial: 019916F6239D8416D6E72A080488661A1F34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
Manifest number: 0A70
Signing time: Thu 04 Sep 2025 23:00:53 +0000
Manifest this update: Thu 04 Sep 2025 23:00:53 +0000
Manifest next update: Fri 05 Sep 2025 23:00:53 +0000
Files and hashes: 1: 0nuHf4mTQSab7GfG46CoiLp66Y0.crl (hash: 8piYcJ1wAmmFXRKUwPj6aioEIbZIPLPigx+Y6lIlOEk=)
2: PdXLVimBA8zILWLashg1LUqBqm8.roa (hash: IrtzMysR6KSQR0SZiM1b2jUK5M57dKBFlK4qFH4B+Mo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 23:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:f6:23:9d:84:16:d6:e7:2a:08:04:88:66:1a:1f:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Validity
Not Before: Sep 4 23:00:53 2025 GMT
Not After : Sep 5 23:00:53 2025 GMT
Subject: CN=176d3c54b06f5276a4b71d01318f70f38357e15f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b0:a4:a7:f9:62:92:22:5d:c4:09:87:b5:84:
d3:b7:d9:3c:15:6c:e1:bc:bc:1d:ef:82:0f:d6:38:
cc:2e:3b:75:a5:96:1a:fd:f2:d9:20:cf:d4:55:f5:
cf:b3:7d:63:a8:ee:aa:c2:55:8a:b3:75:73:1a:8b:
51:dd:69:e2:37:12:aa:b1:c1:a7:ad:fa:af:38:2f:
84:62:b2:c4:06:f6:14:93:0e:b7:35:ba:58:cf:e7:
b9:7a:fa:c0:52:aa:8a:ba:cf:e0:9d:d8:d9:1e:84:
d4:28:0a:95:de:89:b5:59:cb:0b:62:56:8d:47:6d:
23:87:23:6d:fc:81:4d:45:f5:e4:50:c0:be:3e:a7:
e9:19:10:f4:81:6a:35:e8:86:b0:07:0f:26:9f:d0:
ef:80:6e:ae:e2:75:0e:99:7a:eb:c2:9f:ef:73:9a:
b0:d1:27:12:55:96:ce:5e:da:e8:e7:b7:a5:22:4b:
c1:04:bf:71:a3:c1:0c:54:12:4e:fe:f8:9f:7f:91:
e2:d1:c3:02:87:66:af:86:93:71:34:4b:32:e3:4b:
73:7f:05:1d:a0:07:6f:87:5d:05:83:57:cb:0e:7e:
3f:c0:2a:14:25:97:59:5a:25:7f:6c:6e:b9:d0:6f:
37:91:ce:ac:04:a7:78:b9:c9:20:d0:5b:23:a4:23:
48:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:6D:3C:54:B0:6F:52:76:A4:B7:1D:01:31:8F:70:F3:83:57:E1:5F
X509v3 Authority Key Identifier:
keyid:D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:68:5b:d8:37:01:c1:80:51:ec:f8:61:f2:09:8b:fa:c2:d4:
af:22:ea:72:ec:ee:90:57:ab:f0:e5:c4:06:e0:85:43:d5:84:
45:75:b7:9f:d7:c8:c9:19:00:bc:65:f9:4d:72:5a:9b:fd:df:
c8:15:49:c9:10:cd:32:87:71:6a:67:9f:7f:30:37:6b:c4:5b:
28:ff:f8:42:6a:68:b0:b8:63:55:dd:8c:97:84:0a:f2:c0:a8:
0e:06:d6:f5:de:52:7b:e7:f2:d8:a3:71:e6:a9:e8:a0:dc:88:
71:97:a6:e6:0d:a9:82:d8:a9:f4:2d:77:81:5e:a5:75:ce:5c:
9f:e9:bf:1d:25:a0:3c:d3:b6:87:81:47:18:d6:e6:f3:f1:8a:
5b:44:65:3b:9d:3d:14:d6:15:54:e9:87:47:48:db:ed:32:cc:
78:96:cb:14:ae:fb:74:78:e8:fd:16:d0:3b:1e:c9:23:50:7a:
88:21:11:8b:a7:bc:34:6f:d8:2b:77:98:74:98:54:35:99:96:
b7:75:0d:45:3e:6f:86:99:89:3a:7a:f9:99:ed:77:32:29:b0:
90:be:08:22:f6:45:aa:97:f9:57:02:05:1e:da:11:6f:f1:3a:
3c:bb:4c:a8:f9:85:b3:d1:4a:b3:8b:91:d6:01:fe:8d:27:eb:
5d:35:a7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:09:45 2025 by rpki-client