Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
File: 2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft (raw, json)
Hash identifier: 1sHfh5uDa4sRjXficKcihM87L4a05Hb+elTVntDOuxE=
Subject key identifier: 5A:73:4E:6D:D5:F9:0F:6E:B4:36:CB:81:96:2F:9D:96:36:20:C7:EE
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 0198D54E2EE0CE50732B31B156AC0D564FED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
Manifest number: 0D8C
Signing time: Sat 23 Aug 2025 05:02:07 +0000
Manifest this update: Sat 23 Aug 2025 05:02:07 +0000
Manifest next update: Sun 24 Aug 2025 05:02:07 +0000
Files and hashes: 1: 2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl (hash: am9fek5vrgWYEiwvvtFo1TudWP79PawJ/DkwhAmaMv4=)
2: 6MpCaf0UOBYn8TQkxejiZakptqM.roa (hash: ng/NGbK8yrrWtQu9zhuJZevZ0uFrzLg7FL/FvO6/2MU=)
3: KV03Rnxi6WRZwO1a4oGeC3HanlY.roa (hash: 7zq8HVJc+s32NHnBgUroFGKyISFlCLE015+0grkcycE=)
4: VEU2Xx_W7oXurM3BP9vIKZCMG4o.roa (hash: o9K/DHxqI5B4HDKoeQx+W7Rwvv3Sj+2t3qcauvi8Xig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:2e:e0:ce:50:73:2b:31:b1:56:ac:0d:56:4f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: Aug 23 05:02:07 2025 GMT
Not After : Aug 24 05:02:07 2025 GMT
Subject: CN=5a734e6dd5f90f6eb436cb81962f9d963620c7ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3a:1c:16:06:e9:72:55:62:c1:59:79:8c:1e:
e6:59:c0:d0:fe:19:12:b3:c0:9b:11:db:a9:c1:59:
f6:fe:e6:de:11:b1:f1:b4:14:67:5a:58:21:54:07:
58:39:0f:13:c8:4d:25:3a:97:fa:1d:01:cf:24:0f:
09:01:75:1d:50:bf:63:06:db:7c:15:1c:8e:f3:e1:
e6:0e:36:76:56:be:8e:59:66:7c:b4:9a:bd:7d:31:
6f:27:52:e5:bb:f2:88:f0:e1:c1:28:80:9f:b1:92:
47:24:4f:80:fb:20:73:6b:43:52:5c:eb:2c:5e:61:
b7:76:82:3d:f7:51:5d:44:28:cb:66:1e:28:eb:4f:
92:4b:21:d5:aa:0f:46:c7:90:c0:23:f8:74:e7:b0:
df:88:8d:f8:04:64:00:8d:f3:4f:ab:7e:9b:ff:7d:
c0:a7:aa:d7:22:c1:58:86:ff:ea:47:1a:07:fd:3b:
05:03:3a:85:38:65:6d:6f:0f:32:81:70:92:5c:7d:
15:fe:47:48:89:4a:e3:2a:f9:4f:6a:02:ce:f0:6f:
9a:47:a7:bc:7f:53:bb:51:a8:7a:7e:f4:da:6b:0e:
a5:22:8c:c6:d0:9e:c3:af:f8:85:56:ea:67:a3:98:
6f:07:17:3e:30:ae:dc:4c:57:88:39:1b:21:50:04:
26:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:73:4E:6D:D5:F9:0F:6E:B4:36:CB:81:96:2F:9D:96:36:20:C7:EE
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:32:b8:f1:86:31:a6:f3:3d:2c:06:fd:7c:73:3a:86:fc:d4:
93:70:cf:2d:39:a5:9c:b1:b1:63:47:7c:f0:c3:02:4d:17:ee:
85:83:80:76:fa:5b:7a:ec:57:d8:08:d0:65:39:63:04:34:64:
90:2b:98:87:0f:dc:a5:af:65:8b:e2:aa:76:f9:66:07:f0:86:
e9:62:a0:0d:32:f3:b6:bc:ff:6d:e1:f7:53:13:0d:5c:ba:76:
38:5f:21:b8:19:74:35:72:06:98:d5:75:b0:e5:df:e0:9a:0c:
b4:96:68:4f:dd:5b:49:23:87:55:3a:55:38:33:14:9c:d8:d2:
2b:cd:46:2f:86:d6:6a:24:29:24:52:c3:a0:c3:2e:4b:c4:d6:
e4:73:d6:20:ec:a8:42:e9:11:fd:0b:49:fb:bc:92:c8:a5:6a:
e1:4c:07:a2:88:b1:67:7e:40:f2:f0:d7:9d:a2:fc:95:64:2f:
2f:50:1d:28:42:11:85:d9:d3:3e:5f:4a:35:c1:23:62:13:ca:
8b:ba:e1:f7:7b:07:85:0b:ee:e7:50:03:98:4a:2c:42:42:49:
16:ec:71:f0:7d:a8:90:02:6f:15:3d:17:d8:3a:c5:bf:9a:df:
1c:8a:57:fd:1e:28:f5:e9:0b:ea:fc:01:ba:7b:ba:95:d8:ec:
75:8a:94:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:10:47 2025 by rpki-client