Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json)
Hash identifier: V//d1qiOVDsexElDoSq1+dYlr+GIuy4nhocQH5CkWDU=
Subject key identifier: 44:42:27:98:54:AC:F3:79:5A:66:08:B3:2E:C6:11:0A:BE:D2:7B:D1
Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc
Certificate serial: 0198D66043F8F6DCBEE70E94815175D8EE06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
Manifest number: 0467
Signing time: Sat 23 Aug 2025 10:01:29 +0000
Manifest this update: Sat 23 Aug 2025 10:01:29 +0000
Manifest next update: Sun 24 Aug 2025 10:01:29 +0000
Files and hashes: 1: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: p4wyraLokR7mTJNx2egdzw+VZR4utS/vaZMDe/EGQYc=)
2: ynJSD2xc-CykfYa79BP9jQj40kM.roa (hash: fMb/laTqYN39Vwte4hGLXjRHIufJPIqxfdcZimxGcGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:43:f8:f6:dc:be:e7:0e:94:81:51:75:d8:ee:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc
Validity
Not Before: Aug 23 10:01:29 2025 GMT
Not After : Aug 24 10:01:29 2025 GMT
Subject: CN=4442279854acf3795a6608b32ec6110abed27bd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5b:9d:2d:76:40:19:1a:e3:c1:24:2b:d5:83:
6c:b0:79:4a:71:8d:3e:a0:f0:0f:31:e0:6c:18:2c:
b3:28:69:b6:67:d2:e4:ab:33:69:f4:24:ff:1a:ce:
39:50:91:ed:6c:a3:1e:47:5c:27:c9:f6:04:18:76:
fb:f1:e6:10:14:53:29:9f:b2:f8:dc:38:b1:f7:88:
d5:da:16:1a:2f:7b:5d:0a:74:20:f3:be:b8:0d:21:
a9:67:2f:29:e7:85:fe:9b:b4:ba:4b:4f:e9:85:65:
a0:f3:f5:d9:31:1d:b6:94:c0:4d:b3:41:43:9f:2a:
67:1f:be:94:54:61:02:82:74:75:f0:9c:ed:39:8d:
59:33:43:b9:16:81:fa:cb:a4:fe:00:e9:34:45:3c:
2d:5e:a5:e4:13:2b:40:4e:4d:67:9a:6e:3a:2e:a3:
d0:09:b8:00:84:60:e3:52:19:94:ef:14:07:89:55:
b8:d7:ed:51:4c:c0:27:af:31:5f:19:90:1e:d1:95:
ee:71:36:26:f8:c1:f1:f9:14:65:34:33:02:3f:6b:
60:33:3f:08:45:51:70:8c:e6:a1:38:a5:d3:90:8c:
de:c5:4f:f4:78:e3:a9:60:7c:0c:8d:65:35:65:31:
3b:a4:43:5a:eb:ee:b4:10:2c:7d:d4:3e:cd:90:34:
69:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:42:27:98:54:AC:F3:79:5A:66:08:B3:2E:C6:11:0A:BE:D2:7B:D1
X509v3 Authority Key Identifier:
keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:94:9f:c1:f4:46:08:83:2d:a3:04:60:cb:8d:36:0b:ab:8b:
15:dc:b0:99:bd:cc:a4:91:34:d2:7f:8e:3f:5d:a3:78:93:a4:
2c:88:4b:a5:99:fa:71:20:e6:51:ef:b0:f8:30:e1:c9:21:86:
98:87:9a:e2:18:31:2a:15:f9:2b:80:f7:cc:96:f3:2e:0d:9b:
f7:a3:df:0a:f1:a4:2e:5c:0e:1a:19:fa:3d:f7:13:dc:e5:2b:
2f:c1:c1:94:c7:77:b7:8b:eb:4a:7e:8b:3a:5f:18:ed:85:45:
5e:27:19:8e:8c:bf:b5:8c:e7:24:a1:1a:aa:ea:e5:1d:78:ad:
f3:3e:2a:0a:4b:cc:b2:d0:25:36:5c:09:d7:c5:92:a6:b9:9e:
38:a3:84:2b:1e:8d:2e:1b:88:ee:02:8a:ae:1c:1d:10:01:af:
52:6d:c3:78:3e:18:32:2c:7b:57:05:83:54:09:64:79:73:b7:
3b:bf:1f:3d:48:82:b7:fb:56:b1:c2:af:06:19:ae:c4:47:bb:
0b:1d:51:85:b0:25:45:37:8c:cf:55:be:4d:71:49:66:62:24:
73:54:4d:c5:06:2e:10:4d:01:28:24:75:43:0d:0a:7e:da:11:
e0:8c:9c:c2:0d:bb:86:9c:ed:c2:0f:32:94:b6:a3:44:2e:20:
fe:78:7f:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:20:52 2025 by rpki-client