Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: Iht3s2HTUBR20darw1vscMtl8chMejb7yqCux/OYK0o=
Subject key identifier: 56:18:19:2A:64:64:9D:A0:DE:5F:D6:88:AB:FC:39:FE:25:0F:BA:ED
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 0198D5BBA18A1ED8D8B63EF3C789938E799A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 0365
Signing time: Sat 23 Aug 2025 07:01:40 +0000
Manifest this update: Sat 23 Aug 2025 07:01:40 +0000
Manifest next update: Sun 24 Aug 2025 07:01:40 +0000
Files and hashes: 1: 9jS2v21J95xARBtQOtdTT0EtYBQ.roa (hash: BeiYvaVP67aUM+eVkzjpflxlaHwkNmiJmUTQZAVqkOQ=)
2: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: ifaQJ2jwtJm1MhswR2B/oMcZkNaXs8kD2Lx2CBZGm5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:a1:8a:1e:d8:d8:b6:3e:f3:c7:89:93:8e:79:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Aug 23 07:01:40 2025 GMT
Not After : Aug 24 07:01:40 2025 GMT
Subject: CN=5618192a64649da0de5fd688abfc39fe250fbaed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ed:30:78:cd:73:b0:af:bd:f3:5b:73:d6:5c:
5a:81:f9:61:a7:7f:43:a7:0f:2c:6e:4d:f9:39:35:
dc:f8:af:c7:46:19:e9:36:01:9d:53:2e:a6:21:9f:
58:f2:69:ed:6b:44:a5:25:b5:7e:34:d2:49:28:29:
13:43:3f:05:76:2d:3f:56:95:c1:26:27:ce:cc:a9:
32:c5:2c:11:bc:a3:53:68:94:14:c8:30:04:79:5b:
55:cb:c8:5e:15:cd:1d:f5:4b:03:ab:4b:88:d0:84:
07:3b:f7:c1:26:4d:16:d1:2d:78:bb:4d:52:2f:ca:
b9:65:f6:69:bc:a1:bb:aa:ec:4a:a9:ff:a8:88:76:
c7:12:a2:a8:08:c5:39:fc:a7:b8:86:5e:6d:7c:03:
ff:ce:9e:5a:36:f0:7d:7e:a0:06:41:c0:4f:ec:2f:
84:8b:14:26:5d:f8:83:ff:32:40:48:72:b4:35:8c:
c5:40:79:6f:fe:a9:f5:fc:72:dc:e1:ce:98:5b:73:
6c:68:bc:43:69:8e:9a:e9:fe:8e:d6:9b:2c:94:13:
ca:90:46:b0:bd:35:30:5d:df:1d:ba:7b:45:76:df:
df:67:5a:aa:67:7a:38:55:f5:42:d5:06:e0:ca:17:
29:05:9b:af:1b:6b:7f:dd:74:f4:97:78:21:f1:dd:
7a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:18:19:2A:64:64:9D:A0:DE:5F:D6:88:AB:FC:39:FE:25:0F:BA:ED
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:42:cf:eb:e2:50:59:78:ad:75:1e:2b:62:4d:25:d2:c0:4c:
bc:5d:52:0c:92:3d:52:3a:69:f5:1e:44:90:ef:54:8c:11:7f:
bb:bf:61:60:11:bd:b5:3c:b5:78:a3:52:67:43:2e:4f:c5:c1:
c8:b7:68:35:5a:0d:72:95:f2:31:39:ea:0b:1b:51:c4:d8:32:
d4:7e:55:a3:b3:1a:0f:c0:8e:8e:90:b4:a7:38:5d:de:da:d4:
ea:cf:79:ae:32:24:cb:d5:da:cd:d7:4c:f4:a6:f6:cb:6f:a6:
fa:fe:35:88:d7:17:79:87:b7:67:62:4a:27:9e:dd:1a:e2:4e:
d9:77:66:61:4b:b2:9e:24:8d:6a:80:b7:9c:86:88:33:84:5a:
d1:32:01:8b:f0:6e:df:33:c7:5a:02:2d:dd:83:1b:2b:43:b0:
2d:8a:53:2f:8d:1b:72:cf:02:21:f9:dc:a9:74:c1:f1:8a:46:
a4:71:49:08:e7:38:ea:57:5f:0d:f5:ec:17:d2:ae:42:b6:0a:
ff:5c:b8:d6:ef:4f:d7:e6:ee:2b:1a:21:09:0c:14:58:f4:7c:
03:4e:9f:d3:bf:20:af:be:f2:79:aa:1c:69:cc:09:0e:76:ae:
70:8d:2b:ee:a8:d6:ef:c2:82:26:32:fa:01:be:a2:1e:7c:38:
44:e9:d6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:45:57 2025 by rpki-client