Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: T+KfR+vVPq5W3WbLeHNmkE+/kJOwBIT8IMT46AGY60k=
Subject key identifier: BD:33:85:B0:C4:3C:81:94:D3:BC:04:72:17:A7:AF:57:D8:38:9A:CB
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 0198D69889E56273991673E733E1B68567D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 11:02:57 +0000
Manifest this update: Sat 23 Aug 2025 11:02:57 +0000
Manifest next update: Sun 24 Aug 2025 11:02:57 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: zOE483wKOBE32w/Y0K6Z8vZPwq7TithAOS9swYoDmYc=)
2: b7sNWlzHmaj36hpl7542OiFeLhk.roa (hash: r2LdfaqH2ThvketoRQBfUQ9ZRTad2+2P2sxQXJTCIiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:89:e5:62:73:99:16:73:e7:33:e1:b6:85:67:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Aug 23 11:02:57 2025 GMT
Not After : Aug 24 11:02:57 2025 GMT
Subject: CN=bd3385b0c43c8194d3bc047217a7af57d8389acb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b8:27:f4:86:f8:53:0d:0d:19:94:4b:6b:33:
15:1e:78:7c:d0:1d:8c:e0:f0:ff:4d:a9:52:cf:dc:
e8:fd:67:b8:ee:1b:75:e5:1a:9d:ee:7b:ac:66:f0:
64:e0:fe:c7:a6:24:63:0e:ae:03:53:30:1a:92:dc:
16:af:37:91:24:51:55:bc:8c:38:c3:b6:fe:0d:ed:
d9:56:fc:6d:95:29:45:54:64:42:55:13:4e:ac:28:
d3:4f:36:a5:d1:e0:b4:48:11:2b:7f:bf:89:a9:bc:
cc:26:f3:28:85:f1:55:8e:b7:a1:d7:9c:ac:cf:9a:
b2:61:3f:93:d1:22:07:ca:8d:c0:f8:01:0f:4e:ac:
e2:70:b7:87:1a:20:f7:be:0b:5a:3e:4e:dc:8c:cd:
08:9c:97:8f:6f:9e:32:89:e8:79:21:13:f2:23:09:
87:eb:a5:84:0e:4c:42:dd:53:75:00:77:af:df:77:
48:79:a9:4a:a1:1d:9b:29:e3:d2:39:24:fd:53:ff:
47:85:47:88:6f:86:78:e8:83:e9:32:82:f4:26:83:
14:44:db:ef:97:ee:70:a6:a7:8a:20:13:e8:ee:27:
d3:db:f7:7c:ae:2c:f6:43:d0:9b:5a:42:22:4b:7e:
8f:67:71:0a:f5:24:40:e5:ea:a9:a6:f4:a6:f2:29:
24:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:33:85:B0:C4:3C:81:94:D3:BC:04:72:17:A7:AF:57:D8:38:9A:CB
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:84:be:47:17:f6:9f:0f:96:db:c7:a0:53:36:c5:b5:ec:2d:
ac:6b:16:ee:ff:ad:95:c1:4c:c3:be:29:61:37:f9:bf:93:cd:
cf:f8:50:45:75:db:3c:c2:e9:c4:c0:7e:ab:b2:4a:0f:8a:86:
07:21:6e:ca:fd:3e:f7:3a:fa:aa:2a:a4:fe:5f:7b:e6:e0:09:
79:10:fb:e9:e5:62:ad:75:0a:e8:9f:2a:af:f1:ee:68:46:3c:
12:91:a1:68:68:fe:74:3e:93:20:cb:19:e7:4a:6e:2a:6a:14:
86:ec:63:bb:95:25:6d:37:f0:5e:d0:5f:11:ee:6f:b2:0f:4d:
d4:ce:f2:ed:d9:2e:99:df:11:ca:a2:0a:15:72:71:fc:e8:b7:
20:f9:81:26:6f:14:b7:ec:65:13:0c:9f:64:91:4b:2c:82:91:
d2:8c:93:df:ac:b8:ba:b6:95:3b:58:c1:6f:4e:86:17:ec:c0:
e7:af:f1:d9:85:db:ac:a2:c3:ae:67:6d:87:a6:2f:61:cc:77:
ba:38:8c:9f:99:63:c4:d5:f0:38:04:76:73:7f:6b:c1:29:5b:
9e:0f:b9:c6:28:18:b0:53:a8:7d:b9:9f:52:33:0c:a2:54:48:
05:91:3b:c7:64:a3:74:5c:ff:03:00:27:79:fc:fb:29:61:0b:
35:05:8f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:12:54 2025 by rpki-client