Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
File: DxgybgAap_xW-DUxMVN2-equCYg.mft (raw, json)
Hash identifier: Jjl9aGsndsziOgUA6yXDXT/o9Z5jCcTm9R0EFThHpmY=
Subject key identifier: 1D:CD:39:34:58:12:33:DA:D1:46:AC:5A:56:A9:88:F7:C2:17:73:DF
Authority key identifier: 0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
Certificate issuer: /CN=0f18326e001aa7fc56f83531315376f9eaae0988
Certificate serial: 0198D54E4730A46A471FD41891A9957DBBE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
Manifest number: 08C0
Signing time: Sat 23 Aug 2025 05:02:13 +0000
Manifest this update: Sat 23 Aug 2025 05:02:13 +0000
Manifest next update: Sun 24 Aug 2025 05:02:13 +0000
Files and hashes: 1: DxgybgAap_xW-DUxMVN2-equCYg.crl (hash: o3ziX49g5FSHUg0To/yuMPzdT2RVuntmfPlsCVChrCc=)
2: IAritswAhqNQe77s1GDg_ezpHck.roa (hash: ILdWDEHhnQvuxpeMgx2XCbjW7CQm2ybVgtMQih2P4NU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:47:30:a4:6a:47:1f:d4:18:91:a9:95:7d:bb:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f18326e001aa7fc56f83531315376f9eaae0988
Validity
Not Before: Aug 23 05:02:13 2025 GMT
Not After : Aug 24 05:02:13 2025 GMT
Subject: CN=1dcd3934581233dad146ac5a56a988f7c21773df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:73:36:bc:98:78:c1:53:f8:63:9b:a4:78:8b:
55:e2:d1:cf:ef:f7:83:9f:14:4b:4a:90:26:a6:f9:
0c:6f:0f:18:a8:27:c9:7b:29:12:ed:0b:f7:54:89:
3e:e2:b3:e6:c4:9d:1f:84:51:24:55:56:c8:a7:f7:
2c:ea:11:68:b1:1b:08:b6:5f:ff:05:8b:a1:69:73:
25:5c:c8:6d:cf:28:08:e0:c5:d7:56:4e:ca:1b:2e:
5d:64:46:6b:81:c9:84:8b:b1:f6:76:32:df:e2:71:
93:1a:65:09:e9:10:1a:2b:d4:42:1e:10:c8:75:bc:
17:b4:ce:ff:2f:31:60:a5:48:95:a7:ed:92:6a:da:
ae:7a:b3:0f:e4:77:ac:c9:5c:29:35:b1:18:e0:06:
5a:fd:56:0c:35:9d:09:fb:ae:da:24:43:29:a5:1c:
07:9f:49:67:6d:45:89:85:2f:98:fa:0a:5f:b7:35:
30:4b:b8:e2:cd:70:10:b2:87:df:5c:8a:c7:50:94:
76:8b:ef:fc:e0:53:4e:16:c5:04:ba:94:b5:e8:1e:
a6:da:48:a3:d9:4e:b6:47:ff:94:40:58:8b:eb:9a:
c6:5a:1f:8c:df:0e:0f:c8:a8:76:70:69:42:e1:78:
c9:d9:2b:e8:57:81:2d:eb:7e:f5:42:9f:10:1f:89:
9f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CD:39:34:58:12:33:DA:D1:46:AC:5A:56:A9:88:F7:C2:17:73:DF
X509v3 Authority Key Identifier:
keyid:0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:48:ca:39:cb:fe:d7:fe:be:bf:1b:28:33:27:ac:5e:63:e5:
49:0a:ff:e2:1b:1c:42:07:81:2c:0c:27:5d:73:34:fe:7c:57:
a6:58:46:b2:06:8c:85:28:d8:39:0f:18:74:38:b4:dd:82:38:
e2:56:bd:2b:cd:ef:10:10:28:b0:62:51:98:65:0a:68:26:70:
0b:90:2e:55:16:6b:84:fc:5a:33:88:b2:e7:ca:db:7e:88:1f:
fb:41:2f:84:00:15:d0:9b:bf:f6:75:b3:e7:42:13:65:e0:8e:
9f:9b:e5:d4:e8:cb:b8:a2:03:59:d2:12:92:a9:ad:50:e6:5f:
38:6c:5c:03:f8:1b:8c:ff:a9:00:4f:ed:a8:e0:29:db:71:7f:
cd:5a:ac:2e:04:f8:21:23:7c:44:70:fb:8b:47:29:c8:5a:a1:
88:c8:c2:9a:56:2c:23:5a:b2:02:96:7d:be:3e:3b:af:55:bb:
fb:fb:42:74:b2:fb:6e:00:ad:7e:5f:d6:bf:f7:bd:cf:e6:b2:
0c:97:d0:34:2e:09:fb:ce:df:fa:d7:8f:66:5d:30:d7:30:8e:
53:87:0a:5b:6b:6e:1c:4d:54:f4:64:26:6d:76:99:d5:2f:ba:
4d:95:e6:65:5e:57:48:17:f9:83:fe:f5:5b:2f:5d:43:27:41:
66:65:e2:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:12:07 2025 by rpki-client