Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
File: 25Kd7FwPI63Zuu7qe7OayHpykIM.mft (raw, json)
Hash identifier: yScuWtFtzxe+9bTYgaI0WuVKmEn0Bt9dih6t2sjy4Is=
Subject key identifier: C1:75:AD:E4:2D:72:4A:18:71:A6:DB:0C:62:A3:FD:3D:5A:8D:6A:E5
Authority key identifier: DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83
Certificate issuer: /CN=db929dec5c0f23add9baeeea7bb39ac87a729083
Certificate serial: 0198D84FED37E7236E72CA49BF85AF53C557
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
Manifest number: 164F
Signing time: Sat 23 Aug 2025 19:02:53 +0000
Manifest this update: Sat 23 Aug 2025 19:02:53 +0000
Manifest next update: Sun 24 Aug 2025 19:02:53 +0000
Files and hashes: 1: 25Kd7FwPI63Zuu7qe7OayHpykIM.crl (hash: kPR1dkSlFE0ovsTtgvjEbQuyvRR4lvQfq3UrP5irpl8=)
2: N4n5sfqwVKR0MtRKu60VkuVT8t8.roa (hash: 7oA83Z9SKqiyh1q+LTyv1yKzsMJNh3uvhrwtOfQSMtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:ed:37:e7:23:6e:72:ca:49:bf:85:af:53:c5:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db929dec5c0f23add9baeeea7bb39ac87a729083
Validity
Not Before: Aug 23 19:02:53 2025 GMT
Not After : Aug 24 19:02:53 2025 GMT
Subject: CN=c175ade42d724a1871a6db0c62a3fd3d5a8d6ae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bc:d0:65:ed:0c:cd:36:04:92:af:83:f4:33:
39:57:82:56:4e:8d:67:08:d9:1d:62:23:48:09:2e:
cf:29:6c:be:bd:53:93:05:3e:2c:b2:a7:c8:44:a7:
d3:1c:37:74:76:bc:2a:9f:32:a0:0a:50:b1:92:b0:
25:ad:50:a1:10:66:b0:c9:a6:2a:e1:fa:bb:9b:68:
77:44:57:a8:01:b9:67:d4:32:8d:99:81:17:d7:ed:
3f:30:c3:5b:f1:ed:01:68:14:7e:c1:c9:67:21:37:
a7:12:06:10:cc:df:e3:d5:ab:96:d5:b7:69:7e:9e:
7b:a1:fe:63:96:44:69:46:f6:8d:22:62:aa:b1:3d:
96:56:d9:33:80:d7:fe:45:47:4e:5c:41:26:89:ab:
e1:6a:3f:32:41:af:8d:9b:a4:ed:1d:85:c2:5a:f0:
5c:1b:32:64:33:f6:fd:a9:00:cf:d9:e1:b9:c1:11:
3d:69:49:e4:22:e9:c0:8a:e7:25:3c:ee:c9:76:2c:
2f:66:62:be:61:4c:7c:cc:ca:c2:91:46:59:b5:69:
58:fd:10:e6:dd:f0:b3:01:ac:9b:24:02:b2:90:c0:
10:d2:94:12:dc:d3:f6:25:2a:ab:85:98:de:02:10:
69:b2:9a:d2:3c:d0:b1:3b:7e:e9:7f:a7:c0:e5:80:
0e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:75:AD:E4:2D:72:4A:18:71:A6:DB:0C:62:A3:FD:3D:5A:8D:6A:E5
X509v3 Authority Key Identifier:
keyid:DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:31:d5:b7:d4:6b:0b:86:ee:aa:f2:5e:76:92:8a:b0:59:1d:
01:19:a0:84:e2:86:b8:f9:96:63:3b:e5:a1:0c:5a:a0:7d:77:
01:58:cc:47:17:69:64:50:a4:39:3c:ac:61:9f:72:18:52:c0:
ca:b1:59:aa:98:f7:b5:d4:ab:ac:47:78:51:8b:79:4e:e9:93:
f8:06:d6:7f:bd:3a:c8:35:8b:fc:66:7a:16:ae:7d:c3:70:b2:
4a:55:34:fa:ce:ec:96:5a:c8:f7:42:79:81:46:1d:03:4f:de:
66:b5:d0:f3:28:18:b1:6d:08:c9:de:9d:4d:ea:f1:a9:7c:83:
59:e0:10:ba:cc:26:12:d8:38:bf:7d:61:20:b4:88:72:cb:35:
ae:d0:70:14:2a:92:e2:66:1d:4d:0f:e5:8e:28:98:8c:4b:3a:
ee:f7:8a:a3:04:67:5c:e8:ea:56:e5:00:c5:a7:77:56:7b:60:
73:77:f0:0c:8a:23:bf:42:89:aa:7f:d0:1d:2f:e1:e9:51:58:
72:91:5c:82:b2:db:a6:96:83:35:53:fb:a1:da:5d:fe:98:37:
d7:6d:91:ed:67:c8:4e:8a:fb:39:29:cd:4c:5f:75:93:2f:3b:
0b:e3:11:86:77:37:be:38:1d:e5:18:e7:33:4d:80:07:d2:89:
b3:8a:2f:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:50:52 2025 by rpki-client