Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
File: dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft (raw, json)
Hash identifier: fWhnOle4Zgz20F92APINzaSZVoXEo/MDYORAi4zaRrc=
Subject key identifier: F0:AF:C7:C4:65:6E:A8:DB:F4:B2:E9:0B:0B:46:19:7D:BD:78:2B:97
Authority key identifier: 74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
Certificate issuer: /CN=74ae941a681c1586379e07247dcc19f3f41035d8
Certificate serial: 0198D7A8F049EDB0799FE9F6A6DBE59C3AD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
Manifest number: 0DE8
Signing time: Sat 23 Aug 2025 16:00:29 +0000
Manifest this update: Sat 23 Aug 2025 16:00:29 +0000
Manifest next update: Sun 24 Aug 2025 16:00:29 +0000
Files and hashes: 1: aRphps94ueev9_cb0Fbr1t6EWos.roa (hash: qY/6yr4D72wfd0je0UgbA5pXBnLSwy4IbEDXkYKHi6c=)
2: dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl (hash: SkCbf0pH3Mip2rwOZJirlol9OYmpqoxlTyrIY3ym7o8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a8:f0:49:ed:b0:79:9f:e9:f6:a6:db:e5:9c:3a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74ae941a681c1586379e07247dcc19f3f41035d8
Validity
Not Before: Aug 23 16:00:29 2025 GMT
Not After : Aug 24 16:00:29 2025 GMT
Subject: CN=f0afc7c4656ea8dbf4b2e90b0b46197dbd782b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b9:d4:cd:4b:73:bd:35:6b:9c:f4:53:38:2e:
02:3a:5d:c5:4d:7f:5e:ed:57:0d:51:61:28:d0:f0:
8a:e7:94:9f:05:ea:cd:66:6a:ef:24:39:7a:d8:a7:
20:92:44:71:bc:fa:f2:b8:a7:28:f6:9b:e1:e9:56:
44:be:b9:ee:86:a2:f9:7f:d8:16:89:40:d4:1a:63:
47:71:b2:6b:29:1a:3f:f2:03:55:00:5a:bf:16:df:
71:6e:a7:b1:6e:5e:a7:df:ba:0c:b4:72:6a:88:80:
6b:c2:85:0d:bb:7e:b1:b1:4c:9f:1f:2f:5e:b4:6d:
dd:3b:d3:72:13:74:7d:a8:61:b6:42:f4:19:13:bb:
05:39:0c:7f:21:93:a5:ff:64:91:ff:0f:e3:a4:28:
f0:50:24:c4:65:fd:a2:09:a3:a7:a3:6a:d7:cd:4f:
f5:16:70:d6:f4:d3:02:36:6b:3c:9b:38:4f:0d:c1:
a3:a5:76:36:b6:3b:95:e2:0b:76:fd:8d:bd:24:17:
4c:44:84:11:e9:85:13:90:19:16:5f:b0:2f:4a:e0:
8d:8e:9a:f4:48:fe:ca:af:65:c2:3b:29:6c:59:99:
1f:90:d5:f0:b6:e2:82:6a:d1:8d:8b:93:34:b3:60:
17:c7:52:bd:a9:ba:ed:eb:bf:0f:c6:8f:13:fe:f7:
6a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:AF:C7:C4:65:6E:A8:DB:F4:B2:E9:0B:0B:46:19:7D:BD:78:2B:97
X509v3 Authority Key Identifier:
keyid:74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:52:04:79:1d:a3:56:7d:fc:00:93:3e:9d:ab:41:7d:72:7f:
39:81:87:28:4f:5a:4a:80:b9:c6:3a:f7:28:8f:79:07:fa:93:
2d:51:87:20:7f:42:e8:77:8f:e6:58:b4:95:de:32:33:9b:3f:
a0:eb:26:aa:8c:c7:ab:e9:3d:3a:0b:d8:e5:94:19:eb:1a:56:
a4:b4:5d:06:20:a6:b2:9e:a8:0b:a4:38:bb:dd:02:14:af:da:
35:8e:6e:75:58:26:34:2d:20:7d:db:b3:e4:23:48:e1:cf:f6:
d9:fc:d8:c3:df:43:61:f5:60:d1:34:6e:f9:30:ec:08:84:12:
10:d4:fc:ea:ed:f7:f7:d8:9a:f6:ef:a4:f9:2c:ce:28:6e:4e:
ed:4f:6d:00:4f:66:b8:74:05:30:dc:27:c0:1f:6a:d5:ec:cc:
71:bb:b1:d8:5c:67:cb:52:76:4c:11:4c:6e:db:5c:0c:2e:89:
0e:98:51:0e:51:66:95:2d:08:7a:0f:e3:7c:f4:10:06:7d:9d:
12:df:a9:d3:bf:2a:1c:57:67:d3:aa:41:9f:1c:d4:b0:27:ce:
67:02:6d:22:6f:8b:dc:fd:2a:70:66:eb:83:26:49:f6:01:7b:
4c:75:95:14:1d:b3:61:fe:8f:6d:a4:b1:1c:a8:3e:94:fc:58:
a7:d7:64:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:24:52 2025 by rpki-client