Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
File: DdIkCGSH7IZmumFcFdyPR532pI0.mft (raw, json)
Hash identifier: JDe61twDxB3ZsqLnUfrAGu/m5NZsQGXvwChYvKl+syI=
Subject key identifier: AE:2E:03:84:DC:EB:FB:59:F8:02:19:B3:2B:DC:CE:93:52:BC:0E:B1
Authority key identifier: 0D:D2:24:08:64:87:EC:86:66:BA:61:5C:15:DC:8F:47:9D:F6:A4:8D
Certificate issuer: /CN=0dd224086487ec8666ba615c15dc8f479df6a48d
Certificate serial: 0197B70EF876152267B0421EE10A86F23E0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
Manifest number: 03E8
Signing time: Sat 28 Jun 2025 15:01:41 +0000
Manifest this update: Sat 28 Jun 2025 15:01:41 +0000
Manifest next update: Sun 29 Jun 2025 15:01:41 +0000
Files and hashes: 1: DdIkCGSH7IZmumFcFdyPR532pI0.crl (hash: Ccwp8dAUgcBWIV6U2iB4SyLhqW93LC/eCmHOgyGO63g=)
2: DsQ3XuL18x6JXJPIAS7Bywor1FI.roa (hash: YgD4/obT5P1W7ZaQyQBLHDkI0d6d+gx0ix2vsYYOe7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:f8:76:15:22:67:b0:42:1e:e1:0a:86:f2:3e:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd224086487ec8666ba615c15dc8f479df6a48d
Validity
Not Before: Jun 28 15:01:41 2025 GMT
Not After : Jun 29 15:01:41 2025 GMT
Subject: CN=ae2e0384dcebfb59f80219b32bdcce9352bc0eb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:98:5c:67:6a:ef:37:d7:ad:10:03:f6:1c:68:
3f:80:53:2d:f0:39:72:21:b2:a2:58:d1:70:e4:fb:
f2:00:38:84:46:69:f3:ba:29:65:a7:b1:8f:29:5c:
72:91:6b:d0:5c:2a:bf:c6:38:86:b0:8b:7f:0a:b8:
e1:bd:e9:00:cc:7f:b0:41:34:d2:3e:59:5e:86:24:
c2:a6:80:56:77:bf:5e:b5:bd:6d:bd:4e:5b:fc:9f:
2a:21:7f:c3:8f:e3:6c:56:32:92:e9:32:bb:5a:0e:
02:a8:ad:57:84:9c:0b:7e:96:7f:4f:ae:8e:5f:70:
be:a1:a0:5f:b5:a3:11:8a:50:ba:8d:a8:24:3a:89:
b3:94:cd:26:35:95:93:4a:c5:94:c4:24:ca:b2:e4:
fe:77:a2:5c:42:40:21:fb:a7:23:04:29:28:2a:56:
23:32:d2:25:a4:58:97:22:77:e2:f1:56:63:e5:a3:
0c:c4:ac:d8:f4:20:68:20:75:72:d2:e0:0d:55:be:
03:a4:9d:bd:9c:a0:4e:9a:54:38:dd:e9:45:4f:db:
36:8c:70:d9:17:fe:e2:92:a3:d8:82:7b:4b:4f:3c:
c3:44:da:09:6d:b1:6b:9b:a2:89:94:9f:bc:75:69:
14:2c:b0:80:57:9a:03:90:5e:ed:2d:68:58:b6:f7:
86:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:2E:03:84:DC:EB:FB:59:F8:02:19:B3:2B:DC:CE:93:52:BC:0E:B1
X509v3 Authority Key Identifier:
keyid:0D:D2:24:08:64:87:EC:86:66:BA:61:5C:15:DC:8F:47:9D:F6:A4:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:ba:8f:1b:ba:95:76:22:f9:d8:85:64:60:27:93:9d:86:61:
46:c0:07:60:71:48:2a:39:1c:6c:47:5e:29:ad:e6:3c:d7:d7:
38:1e:25:94:80:0a:6b:16:77:fb:10:b8:8b:d2:d2:d1:75:11:
f2:0b:09:3e:c3:c3:f7:b8:e6:de:50:c2:c4:57:0e:c5:cb:f2:
46:57:db:57:85:21:30:09:94:e2:d6:3a:98:b5:14:e1:2a:4c:
65:a4:d6:46:73:63:a9:fb:dc:4d:06:ea:db:26:ea:f6:6c:a5:
6e:e3:c7:26:33:45:78:02:3c:b0:d6:ee:b2:4e:3e:20:e5:cc:
93:e4:cf:97:fa:93:5d:6a:b6:c4:a1:2d:84:ff:5c:6a:b8:2f:
72:e3:79:5f:0e:df:f9:42:c1:7f:63:57:a1:00:21:41:b3:d5:
4d:bd:7b:c4:c5:b1:e8:1d:07:e8:e7:fc:9e:80:db:07:fa:e9:
85:e6:cc:b0:cb:c9:cd:4c:7e:42:10:f6:bd:f0:4f:cd:d3:32:
f8:d4:04:8f:b2:34:01:cb:bb:c5:39:64:5e:18:fc:c5:5f:24:
26:fe:44:63:d9:18:a6:66:15:8c:ef:f9:b9:2b:fb:4c:17:4f:
a6:41:43:2f:5e:f3:05:9e:63:97:dc:be:06:13:c8:0c:23:ef:
1a:e0:cc:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:54:13 2025 by rpki-client