Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
File: d53x3kOsymHuwDTOomi0ZUzBXKw.mft (raw, json)
Hash identifier: 1jrBx4zpsuLGuBhDlOqkLz88AEprMsuZU/ET2P0skuE=
Subject key identifier: 90:7A:A7:C1:A5:25:8F:E7:DD:8E:EF:53:FF:5C:9F:8D:42:12:C8:14
Authority key identifier: 77:9D:F1:DE:43:AC:CA:61:EE:C0:34:CE:A2:68:B4:65:4C:C1:5C:AC
Certificate issuer: /CN=779df1de43acca61eec034cea268b4654cc15cac
Certificate serial: 0198D5BC1770609CFA589679EAB0FF9E891B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 07:02:10 +0000
Manifest this update: Sat 23 Aug 2025 07:02:10 +0000
Manifest next update: Sun 24 Aug 2025 07:02:10 +0000
Files and hashes: 1: 0vZUeITqxhjYTZ09-IZPJQyJrFs.roa (hash: XWy8JIsvHPb13TWVq0G62lkPYB9FumkdweR7BRskWwI=)
2: d53x3kOsymHuwDTOomi0ZUzBXKw.crl (hash: JLCVn6In0stK6S+TeXdS2ZUIaDf0P6EpORRpKYHdXHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:17:70:60:9c:fa:58:96:79:ea:b0:ff:9e:89:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779df1de43acca61eec034cea268b4654cc15cac
Validity
Not Before: Aug 23 07:02:10 2025 GMT
Not After : Aug 24 07:02:10 2025 GMT
Subject: CN=907aa7c1a5258fe7dd8eef53ff5c9f8d4212c814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:e5:fe:58:0b:06:83:5f:b8:7a:d7:10:f4:81:
61:e9:1b:fa:99:6e:e7:f7:f4:ff:b0:b8:6e:ef:0a:
91:44:79:ff:d1:4f:d7:6f:46:5f:ba:fc:79:4f:97:
fb:3a:43:ce:8a:fe:e9:2f:a9:76:7c:34:db:01:23:
de:a3:e6:9d:94:70:c6:e3:4b:ea:65:5c:b5:90:02:
62:cb:05:99:ba:67:7b:50:44:09:92:5b:b6:78:2e:
db:59:bc:80:22:f1:74:04:6c:e7:43:2c:01:05:6d:
65:4e:c3:2a:5c:8b:4a:97:5b:2a:a7:a7:f2:20:6b:
f0:ad:4a:e0:23:48:05:fd:67:74:7b:63:06:7c:84:
49:ca:9e:12:ac:96:c6:7e:d4:ef:05:d7:31:0b:01:
2a:bb:4b:2f:d4:9e:ff:28:29:93:83:1c:e1:08:80:
88:12:3e:7e:45:24:5a:b9:b2:bb:71:13:31:34:88:
ba:6c:3b:24:d9:92:2c:f1:bf:a6:b7:4b:f2:3d:d8:
1c:5b:50:57:d2:ef:5b:b5:cb:c4:f4:82:19:2f:54:
bb:d5:fa:2b:5d:39:07:8d:b3:52:b0:ed:e9:65:b3:
9e:d7:f5:ca:ab:f1:5b:e7:ba:ef:ef:1b:fe:d0:54:
95:ad:d2:36:31:a2:73:0c:87:a8:7e:8a:e5:37:36:
4a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:7A:A7:C1:A5:25:8F:E7:DD:8E:EF:53:FF:5C:9F:8D:42:12:C8:14
X509v3 Authority Key Identifier:
keyid:77:9D:F1:DE:43:AC:CA:61:EE:C0:34:CE:A2:68:B4:65:4C:C1:5C:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:01:ea:19:4c:44:43:0a:76:77:dc:41:5b:c5:7c:16:6a:3c:
02:36:e2:6f:e3:56:4d:be:e0:8b:db:35:79:ba:77:22:18:47:
45:30:be:b5:29:c6:da:88:86:58:0b:e8:98:d3:d7:c1:80:c1:
e9:de:3d:68:b3:87:de:b6:07:0e:7f:3f:0b:44:6c:fd:ba:8d:
33:a5:b1:59:ae:14:71:09:6c:bf:ce:02:39:96:0a:96:78:ea:
ea:be:c8:e8:d4:a9:d8:2f:f8:da:58:c0:62:57:33:14:ce:bd:
23:a5:ff:64:e4:69:82:a9:17:04:87:19:d5:32:49:c4:84:10:
4f:2d:b3:f1:e3:0b:83:11:fc:53:8a:5e:c8:10:83:28:85:7b:
37:47:06:77:48:e6:be:9a:3b:53:f9:c0:df:2b:66:f1:47:b5:
95:2d:86:c0:06:e4:79:cb:84:f4:6b:3a:f1:c3:98:4d:97:fc:
22:1f:cf:4b:b7:d9:5c:20:7d:94:5e:bd:71:03:3c:37:40:c5:
29:43:c0:e8:c1:6c:9e:b6:6e:af:5d:24:7b:cc:00:2f:62:6c:
c4:56:5c:6c:5d:93:08:b2:57:0b:cb:66:44:97:62:bb:e7:71:
af:ce:84:fd:49:10:13:13:77:f2:83:0f:74:bf:b1:be:a1:2c:
ce:e4:01:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:34:50 2025 by rpki-client