Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
File: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft (raw, json)
Hash identifier: iCqkgkpJGb1L0+uIX7uPnyPkNQcWe2l/ZZ8lLa7w+Eg=
Subject key identifier: 4B:8D:9D:DD:46:81:B5:52:10:0D:4F:10:1A:3D:43:B1:80:E9:80:7A
Authority key identifier: AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
Certificate issuer: /CN=ac328756dece8f29f97f41b81a087db524e159b7
Certificate serial: 0197B6D7380101E60E9B7F1886F6CBBCEA78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
Manifest number: 1200
Signing time: Sat 28 Jun 2025 14:00:47 +0000
Manifest this update: Sat 28 Jun 2025 14:00:47 +0000
Manifest next update: Sun 29 Jun 2025 14:00:47 +0000
Files and hashes: 1: KhThgn0FLgtxgLmV5WuQd88UjJs.roa (hash: UVyvP36EKpZylxYZtY94LC7cB1Xoy48Pim7visCwDUs=)
2: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl (hash: 5jBz7SsWbqDvel2ECo+jRNn2VvMj/ceSo3UbKMQWAzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:38:01:01:e6:0e:9b:7f:18:86:f6:cb:bc:ea:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac328756dece8f29f97f41b81a087db524e159b7
Validity
Not Before: Jun 28 14:00:47 2025 GMT
Not After : Jun 29 14:00:47 2025 GMT
Subject: CN=4b8d9ddd4681b552100d4f101a3d43b180e9807a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fe:0f:77:a9:01:85:c3:a1:74:5a:1c:48:6b:
b2:94:1f:1a:11:ab:2b:4b:f6:d2:65:c1:60:83:ef:
6a:8a:6b:38:24:5c:41:c5:8d:cf:f0:55:9b:34:a1:
cb:89:d3:1c:84:9f:a5:f4:72:3e:1b:80:d5:9a:98:
e5:5f:2f:e8:f2:0e:5c:ae:c2:bb:70:53:e1:66:e6:
32:83:ff:e8:50:40:6b:d1:78:13:b6:3b:f3:65:94:
7a:2c:68:22:65:78:9a:9e:ce:b3:42:69:50:86:d9:
f3:56:9e:23:42:5f:0f:1a:cb:12:32:99:0b:16:fb:
89:b2:68:03:01:49:f3:79:b7:68:87:f6:ec:3e:49:
a3:a9:d4:7e:ec:45:ad:94:04:a1:fd:c8:f9:b5:15:
30:41:b0:48:10:aa:3c:bc:7a:34:75:18:f7:24:45:
3e:04:c1:4d:2c:0b:a5:5a:05:6f:9e:69:f9:32:74:
b2:fe:05:74:4a:75:bc:2c:f4:00:f8:74:38:55:be:
a6:98:a1:7c:b8:f4:d2:f9:fa:8a:ed:18:5f:d5:dd:
98:8f:4e:38:b7:0b:b6:8d:7c:cb:7b:08:f3:2b:d4:
5a:77:e1:ba:6e:91:1d:8a:21:9b:a5:bc:c4:19:90:
8c:40:91:9f:d6:07:1f:65:9e:27:a1:ff:aa:6d:70:
3d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:8D:9D:DD:46:81:B5:52:10:0D:4F:10:1A:3D:43:B1:80:E9:80:7A
X509v3 Authority Key Identifier:
keyid:AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:19:a5:b4:37:92:b4:75:95:e8:94:7c:68:8e:79:72:df:d3:
e3:48:3f:9f:54:ad:37:1a:e1:23:b6:49:b3:cd:b7:52:00:98:
ca:c1:a0:bf:94:25:63:4b:82:42:bf:d8:05:a3:ef:75:0a:01:
4c:e5:a2:d5:1f:f8:d1:9f:af:7f:5a:ba:4e:30:82:41:f5:95:
88:c8:e1:44:b1:24:a7:7b:c9:45:52:30:91:76:74:bb:39:f2:
fd:da:d4:26:5d:18:21:a0:64:c9:85:67:ab:95:77:9a:31:fa:
d4:0e:03:30:32:d8:aa:b3:91:fe:7b:b5:1f:ef:4c:eb:1d:6b:
4e:5e:7c:72:95:6e:ef:b4:7e:c6:e2:9d:7a:08:4a:32:5f:ed:
dd:ea:a2:86:17:0e:ee:6f:28:b8:b9:45:c5:14:d6:6f:82:1c:
fb:53:3e:cd:7b:ee:5b:51:09:27:eb:a6:c4:4d:c4:a1:d7:c8:
d0:c3:af:ae:8f:6f:4f:b6:eb:d0:03:ef:bc:43:61:1a:a5:c3:
8b:36:18:f1:f4:71:ab:e0:8c:b6:50:8b:e3:5d:2a:f3:c3:9e:
fa:be:3b:ec:ae:ab:b1:78:0e:95:92:2b:f2:6c:15:88:ea:ae:
cc:73:4f:15:5d:c0:e1:23:f8:fe:5b:1f:7c:ef:8e:62:e2:48:
5e:df:af:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:45:22 2025 by rpki-client