Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
File: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft (raw, json)
Hash identifier: GXM3vgBqpwMQI4r1UYqWtROsksvCS38+449jYS15wCk=
Subject key identifier: 2F:C7:AB:6D:D1:E6:2E:05:23:D8:90:E8:31:21:3E:F7:86:7E:AC:66
Authority key identifier: AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
Certificate issuer: /CN=ac328756dece8f29f97f41b81a087db524e159b7
Certificate serial: 0198D698781503813DE50C3C1E093301C131
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
Manifest number: 1295
Signing time: Sat 23 Aug 2025 11:02:53 +0000
Manifest this update: Sat 23 Aug 2025 11:02:53 +0000
Manifest next update: Sun 24 Aug 2025 11:02:53 +0000
Files and hashes: 1: KhThgn0FLgtxgLmV5WuQd88UjJs.roa (hash: UVyvP36EKpZylxYZtY94LC7cB1Xoy48Pim7visCwDUs=)
2: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl (hash: 7TrSfSH2OIHEY1aF3J3/2OniHJ4hF7fjnX97/7ufQk0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:78:15:03:81:3d:e5:0c:3c:1e:09:33:01:c1:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac328756dece8f29f97f41b81a087db524e159b7
Validity
Not Before: Aug 23 11:02:53 2025 GMT
Not After : Aug 24 11:02:53 2025 GMT
Subject: CN=2fc7ab6dd1e62e0523d890e831213ef7867eac66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:bb:54:aa:17:e0:9a:f3:9c:4c:f7:28:d5:c6:
20:d5:3b:63:6c:11:5a:1c:ea:67:64:d4:0b:b6:8f:
1a:0c:3f:ff:db:70:c8:25:5e:d2:86:0e:e5:09:7a:
b3:91:99:a9:6a:c2:39:61:28:8b:e0:4a:d4:53:e1:
f4:da:4f:30:01:2b:4f:7c:6f:a7:3f:bb:6f:25:e7:
66:cd:e1:eb:92:44:2a:1b:24:e3:b3:da:22:6b:37:
62:41:f4:63:52:57:6e:72:52:ce:9d:7a:bf:3a:f5:
7b:ac:e3:a4:3b:d8:f6:9f:0b:87:f6:2a:35:2d:fb:
8e:9f:9c:b9:52:1b:d8:ab:b9:45:40:de:c7:44:e5:
60:f6:0d:5f:04:03:0f:6a:db:ab:4d:3b:5a:e8:c7:
f0:62:16:48:02:75:0e:bd:33:83:02:ce:0e:e8:4d:
05:04:20:90:a6:a4:85:5b:cb:59:91:f2:cf:c2:c0:
cc:09:fc:fb:4f:a8:42:07:34:a9:8e:69:26:ae:f9:
c6:34:3a:8d:ea:18:3a:0a:c0:0a:cf:8c:f0:c4:31:
bd:2c:f6:0c:bd:28:bd:96:3a:92:53:70:af:ab:26:
05:72:bd:a9:9f:46:76:3d:a1:2f:de:51:47:83:c4:
8c:79:45:4b:89:32:ee:86:96:2e:6a:e5:26:de:c6:
40:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C7:AB:6D:D1:E6:2E:05:23:D8:90:E8:31:21:3E:F7:86:7E:AC:66
X509v3 Authority Key Identifier:
keyid:AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:f0:d3:c6:ca:4a:3b:42:b5:ab:22:03:22:bf:d2:46:da:13:
cb:75:4a:ab:b1:aa:d7:d8:03:a1:dc:91:22:7f:fc:b6:93:87:
88:18:e6:16:cd:09:ab:23:d5:8c:07:25:6a:70:a3:88:bb:87:
74:f4:bc:ea:be:6d:ae:1c:f1:4f:b4:c7:aa:63:19:b3:77:15:
2a:c1:6b:04:c8:2a:52:52:d7:83:40:6b:d7:52:5e:ce:83:4c:
29:81:69:d9:6d:9f:a5:86:6f:c3:b4:bc:1c:92:ff:05:40:01:
15:a1:1a:ac:30:e6:6e:ed:15:4c:de:ff:76:60:21:6e:9d:8b:
e3:93:ec:39:4a:fa:41:ae:1b:8f:18:05:af:cf:52:aa:a2:44:
06:e0:1e:c7:57:07:3c:ff:7c:47:d8:96:33:73:24:9e:91:81:
d0:6b:64:f4:5f:07:5c:f0:48:22:09:22:35:73:cb:98:35:1c:
8c:87:36:aa:69:73:b1:64:4c:ce:8a:4e:1b:a7:1e:8d:7b:5d:
f6:a8:55:69:f9:9b:dc:97:4a:8c:3a:a7:97:d1:ab:fb:1c:d0:
46:01:25:2e:82:21:11:d2:53:c8:e3:fb:06:00:88:f4:d1:82:
78:f1:8b:bd:0e:ff:68:fe:0a:e7:a9:e2:a3:48:c9:e2:82:5e:
c1:9c:eb:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:48:14 2025 by rpki-client