Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
File: aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft (raw, json)
Hash identifier: DeTXs0Mdi1Gw/Hipx1ZZBRSrx+D8+GppxH3P7OtKE3w=
Subject key identifier: E9:F1:ED:2D:F5:76:24:5F:91:B0:C7:45:25:D2:8F:7F:D2:9B:E2:1A
Authority key identifier: 68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
Certificate issuer: /CN=683b33dc7218b3fe883c49505134cb39a664fd28
Certificate serial: 0198D660A7F882E64D613556D9B73D63F139
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
Manifest number: 0AB3
Signing time: Sat 23 Aug 2025 10:01:55 +0000
Manifest this update: Sat 23 Aug 2025 10:01:55 +0000
Manifest next update: Sun 24 Aug 2025 10:01:55 +0000
Files and hashes: 1: PecnHh8YFMYIBEgD1PQBC-sYFMY.roa (hash: G67Iyj0Q7isunYlJO9b465cfL0xQGyEo+TS/2SlDQcA=)
2: aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl (hash: kskokmIi4WhIoYUu3976q+stKsNErZxW6ic+mqFt+g4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:a7:f8:82:e6:4d:61:35:56:d9:b7:3d:63:f1:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=683b33dc7218b3fe883c49505134cb39a664fd28
Validity
Not Before: Aug 23 10:01:55 2025 GMT
Not After : Aug 24 10:01:55 2025 GMT
Subject: CN=e9f1ed2df576245f91b0c74525d28f7fd29be21a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c0:10:db:c1:c2:85:81:64:96:72:e3:23:34:
f2:1b:31:e6:37:7a:0d:3d:55:f4:c3:46:69:e5:29:
2d:6d:28:fd:6b:b6:18:9d:eb:b9:77:d6:6c:fa:91:
04:69:81:03:2d:45:30:d0:3a:80:d6:49:e2:6a:75:
68:8a:15:76:2a:a1:18:e4:63:af:33:96:69:31:da:
8e:a4:95:84:62:a0:72:30:94:cb:21:cd:96:be:d9:
58:83:09:34:1c:48:e9:a9:04:d8:e4:b9:8b:0c:c8:
00:01:ff:1f:77:83:9f:32:44:8f:09:f7:e1:78:63:
0f:ec:b7:a3:5f:bd:cc:97:65:42:10:91:b0:2f:13:
d7:7b:a7:3e:2d:7c:be:8b:af:5c:46:cc:f8:03:51:
0b:e6:68:bc:73:8b:3b:61:fb:dc:bc:e5:78:18:5e:
32:f0:b9:a5:33:08:d0:e3:8a:38:37:0f:30:22:92:
b3:d0:23:83:3c:0e:f8:4b:c7:85:27:5e:e8:21:6b:
cb:c8:fe:86:0b:97:93:32:b6:4e:db:fa:ca:00:90:
dc:f9:d1:0d:a3:db:26:ae:25:a9:56:6f:29:18:d8:
b3:69:c8:60:3c:cd:fd:c1:3e:c9:d2:21:be:d8:2a:
c5:0d:00:b3:23:2f:b1:09:cb:72:8f:77:21:17:cb:
1b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F1:ED:2D:F5:76:24:5F:91:B0:C7:45:25:D2:8F:7F:D2:9B:E2:1A
X509v3 Authority Key Identifier:
keyid:68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:33:96:55:7c:5a:35:4a:18:fc:1a:04:52:b4:c0:37:b8:7a:
86:02:45:a1:f5:26:9b:bf:0c:de:73:9a:85:5e:16:2f:82:c4:
3a:df:c8:d6:94:2d:ab:6c:c8:e7:ce:98:04:dd:58:00:0b:ef:
96:92:94:82:04:32:7d:cc:cc:ef:7c:a4:60:59:26:cc:59:ef:
d8:74:c2:86:b2:78:56:bb:52:30:61:36:f2:29:2e:f4:b8:74:
83:8b:e9:b3:ec:be:eb:09:52:19:66:e4:cf:c1:9b:4d:39:84:
32:ba:8c:11:07:c8:04:68:e4:ff:a0:ed:18:ff:56:36:7d:0b:
20:d8:39:59:e9:bf:b7:25:3e:61:4e:45:ca:d7:87:db:17:d4:
42:d0:18:40:76:82:dd:28:e9:7d:77:6e:1e:43:c2:6f:39:3b:
b2:89:29:e5:0f:9f:54:72:b2:6d:9a:8c:0e:7b:3c:d0:65:0c:
76:45:21:ca:49:83:d4:32:e3:ea:a5:dc:61:6e:fd:33:2c:93:
a0:d2:9a:cf:d9:4d:9b:01:c5:53:69:0b:71:79:6f:06:91:b3:
08:73:e9:e8:78:da:af:e3:b4:a4:97:9d:9c:42:b8:6a:af:42:
79:41:56:1a:e0:ce:a5:59:d5:53:23:58:40:28:00:0f:eb:00:
5e:34:b9:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:38:32 2025 by rpki-client