Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
File: DdIkCGSH7IZmumFcFdyPR532pI0.mft (raw, json)
Hash identifier: Pk6y8V6HbgzJ6GikaqwY3TnC1E0h1v1zEe5xeN6DkFQ=
Subject key identifier: 3C:E9:46:5D:45:76:A6:A2:C1:15:D8:A1:1B:69:63:25:78:65:F8:A8
Authority key identifier: 0D:D2:24:08:64:87:EC:86:66:BA:61:5C:15:DC:8F:47:9D:F6:A4:8D
Certificate issuer: /CN=0dd224086487ec8666ba615c15dc8f479df6a48d
Certificate serial: 0198D4E0E2DF03CA1312F9AFD0C9A44F8B73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
Manifest number: 047C
Signing time: Sat 23 Aug 2025 03:02:44 +0000
Manifest this update: Sat 23 Aug 2025 03:02:44 +0000
Manifest next update: Sun 24 Aug 2025 03:02:44 +0000
Files and hashes: 1: DdIkCGSH7IZmumFcFdyPR532pI0.crl (hash: EJlSKLNgwsUfsSQEISvAu3Zv7zhHlwgNrEiMXVgEbhg=)
2: DsQ3XuL18x6JXJPIAS7Bywor1FI.roa (hash: YgD4/obT5P1W7ZaQyQBLHDkI0d6d+gx0ix2vsYYOe7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:e2:df:03:ca:13:12:f9:af:d0:c9:a4:4f:8b:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd224086487ec8666ba615c15dc8f479df6a48d
Validity
Not Before: Aug 23 03:02:44 2025 GMT
Not After : Aug 24 03:02:44 2025 GMT
Subject: CN=3ce9465d4576a6a2c115d8a11b6963257865f8a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a1:fe:32:df:ea:eb:cc:b9:4e:03:c2:ff:c9:
1e:77:77:32:04:56:42:d1:2d:d1:04:dd:f5:e1:41:
7a:a1:4c:b7:19:c3:09:43:c4:eb:76:3c:95:d9:77:
b8:03:2c:ab:54:59:d5:79:52:10:69:be:e1:49:8d:
91:81:cf:e2:4c:5c:eb:ad:49:e1:24:2e:3f:14:56:
f1:0f:67:36:51:db:c1:bf:5f:c0:1d:34:80:89:ed:
74:5c:db:1d:ff:f8:04:e0:5a:06:8c:66:08:9c:14:
be:43:96:78:5a:f7:b4:61:50:53:ff:e5:d9:c7:e0:
a7:f2:56:96:b0:52:b4:3b:f6:e4:00:20:57:f9:82:
93:f3:8d:3b:6b:5b:64:44:8e:94:e6:67:a3:a2:5e:
6f:c5:2a:7b:7b:39:e0:3c:8b:d2:86:37:c9:67:64:
40:ee:65:81:26:89:38:e9:8e:ea:cf:f6:b4:3b:48:
7c:90:2f:20:7c:54:03:f7:4d:82:ab:de:ae:a8:0f:
d2:bd:d4:c8:45:4f:fe:54:95:e0:22:0e:41:4b:9f:
61:2a:12:12:79:95:c7:45:79:59:c4:65:0f:8d:0c:
37:05:b6:77:2c:69:24:73:df:b2:c8:88:87:7f:eb:
b3:e4:5b:72:0e:81:70:f1:9a:7d:8a:2e:19:4a:b2:
cd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:E9:46:5D:45:76:A6:A2:C1:15:D8:A1:1B:69:63:25:78:65:F8:A8
X509v3 Authority Key Identifier:
keyid:0D:D2:24:08:64:87:EC:86:66:BA:61:5C:15:DC:8F:47:9D:F6:A4:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:49:45:70:01:f0:09:9c:c8:fb:f2:12:67:2f:9f:f2:d5:f4:
a4:bf:dc:bd:de:aa:ac:1a:ba:1e:28:c9:a8:18:47:e7:b5:77:
e8:e9:c5:69:18:80:e7:08:66:32:a5:07:ac:d2:e0:8f:72:3f:
91:21:25:23:69:21:6e:fa:a1:bb:39:07:46:49:bb:85:c7:d9:
fb:8e:50:d1:6c:ef:a4:6e:03:44:01:82:7a:9c:58:89:2a:44:
a7:b7:30:80:cd:8a:95:4c:ff:0b:b7:6b:81:8b:c6:b9:ce:fb:
50:9e:bf:a3:9a:4e:8d:94:f3:0c:64:4f:fe:42:0d:2c:24:a8:
02:16:3a:01:f7:00:f7:a7:d1:92:ed:73:fe:0e:3a:6a:7e:4c:
ef:05:63:d7:72:b1:32:4e:87:6d:e4:52:48:4d:05:eb:fc:e8:
14:96:eb:b7:e8:f7:75:b7:8c:14:db:a9:d8:e0:f8:68:65:ae:
2c:cb:a1:71:9d:58:15:2a:85:85:0d:75:83:3c:8b:f5:b0:07:
75:ea:0f:44:0f:e5:44:14:c3:24:e0:01:84:6b:ba:83:0b:a5:
e5:ae:93:d9:84:03:d1:f0:c5:03:a0:c7:85:ed:1f:8d:ad:62:
c8:ce:35:ff:da:7f:2a:90:ed:a2:c9:49:85:36:95:6e:e7:75:
c5:d6:05:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:21 2025 by rpki-client