Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
File: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft (raw, json)
Hash identifier: FFzkNTWQQzcXl0Chr8aZY81lw9ENQmIURj1TN6WSIxA=
Subject key identifier: 33:69:44:53:30:69:1A:89:7F:B6:9F:93:E5:AB:C1:4E:95:96:99:CC
Authority key identifier: 03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
Certificate issuer: /CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Certificate serial: 0198D773C425FA9BC7F824A74B0F4A8F20B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
Manifest number: 05DB
Signing time: Sat 23 Aug 2025 15:02:24 +0000
Manifest this update: Sat 23 Aug 2025 15:02:24 +0000
Manifest next update: Sun 24 Aug 2025 15:02:24 +0000
Files and hashes: 1: 1ofY17NAwbyhAHFj_yBzaevRgc4.roa (hash: FPWNmGXZmy3JcSLxjIHQ6BJRP2baM9xmkXSCswGMYik=)
2: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl (hash: IcFUa5g+YHcRoO+JhJmGswLNY2w/x2GYzwcEiRnw3SM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:c4:25:fa:9b:c7:f8:24:a7:4b:0f:4a:8f:20:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Validity
Not Before: Aug 23 15:02:24 2025 GMT
Not After : Aug 24 15:02:24 2025 GMT
Subject: CN=3369445330691a897fb69f93e5abc14e959699cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:00:e6:29:b2:2a:4c:15:3e:1b:98:db:74:8f:
3d:93:68:1b:c3:90:6a:9d:86:3d:37:09:14:5c:7d:
5b:c9:74:53:3c:5e:c0:e5:b5:a1:45:5d:be:31:88:
fa:d9:c6:f7:52:13:18:04:23:d5:e6:75:d8:17:41:
2c:dd:5c:af:fe:18:4a:90:a9:a4:01:64:2f:11:6f:
de:84:e8:38:65:b6:3c:99:d3:c5:f7:07:8a:34:a0:
0a:87:4d:83:94:29:81:3f:63:d5:49:b1:04:3a:ba:
ff:fb:dd:d7:b7:12:50:6a:85:c7:2d:49:46:aa:28:
48:85:f6:d9:14:42:bd:5d:88:1d:60:b6:44:e4:1a:
8d:fa:98:84:d8:7e:28:11:50:69:83:9e:17:66:d4:
b9:c1:71:c3:f3:37:a2:5f:28:32:06:de:cd:f6:f4:
f3:08:d5:cb:c3:55:5e:f5:7e:4a:e4:b1:39:a1:2e:
67:10:f6:c4:de:07:92:50:6f:ac:d5:e0:a6:d1:c2:
d9:10:77:c1:5a:d6:c9:5f:eb:1e:37:5f:05:ca:a2:
39:78:d3:52:1f:47:92:4a:b2:4b:1e:dd:aa:dc:fa:
55:a3:1a:33:2b:c2:bd:d0:bc:1c:f2:b8:78:50:bc:
bc:cc:ae:52:a9:34:e0:c9:9b:f5:23:70:53:1c:1b:
4d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:69:44:53:30:69:1A:89:7F:B6:9F:93:E5:AB:C1:4E:95:96:99:CC
X509v3 Authority Key Identifier:
keyid:03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:9a:ac:e4:8a:c8:85:87:8e:b7:6b:0a:eb:4d:d4:9f:c4:1c:
3c:e2:2a:67:92:dc:20:5a:cd:32:8b:6d:00:0d:e4:ca:40:20:
81:16:23:ee:1b:0c:92:84:fc:7a:51:e4:3e:8a:a1:b5:5d:31:
83:07:53:a8:30:98:6b:0b:0a:10:04:c9:b5:84:9e:5d:6a:52:
7b:f6:92:db:1e:3c:11:2c:10:56:b0:18:66:80:31:47:79:71:
c3:f4:db:14:52:ef:fc:4c:f9:12:5e:88:d7:08:71:cd:38:b2:
48:00:bd:92:52:62:b0:f1:c6:46:eb:06:82:a7:b8:3c:fa:5a:
e4:20:84:24:20:e1:e5:31:39:6a:3a:d5:ef:95:54:70:90:02:
82:0b:4d:29:8d:13:2d:83:85:7f:09:80:7c:10:76:ba:a6:52:
4f:bf:98:4e:e0:f5:87:41:f8:51:66:ac:21:50:ef:d3:34:5b:
2b:a1:56:04:1e:9a:a2:a9:ee:01:56:d9:0c:46:ce:56:31:72:
e5:95:2d:05:88:7d:59:76:e1:a6:3b:7a:06:77:c5:bc:58:4b:
50:72:d7:e9:78:1d:0b:fc:5d:24:94:3a:cb:47:92:e7:0a:bf:
60:31:3c:e5:41:54:96:80:64:8e:4e:03:fa:c6:6c:39:4c:b5:
a6:2f:32:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:30:40 2025 by rpki-client