Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
File: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft (raw, json)
Hash identifier: 7fjr+Rpk0w8tlPETZvbNlsGfUZfHfi1gybwt8XRbiLA=
Subject key identifier: 96:BE:F6:54:4E:D9:87:63:22:97:61:89:62:5C:C4:C4:4C:43:E1:30
Authority key identifier: 0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
Certificate issuer: /CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Certificate serial: 0198D7E18A76DB028BA971742ABF53462072
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
Manifest number: 0DAE
Signing time: Sat 23 Aug 2025 17:02:19 +0000
Manifest this update: Sat 23 Aug 2025 17:02:19 +0000
Manifest next update: Sun 24 Aug 2025 17:02:19 +0000
Files and hashes: 1: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl (hash: ArzBO98cjCBjKYSBQNBGoVpZJzl+s2Urx9XXkbS3Wes=)
2: zo9Y2aPXtg0v5rw18Mi_WOQc36Y.roa (hash: v9STSvD6P0pmUA0gxCp1HPZofea00hykboqUh1BCCCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e1:8a:76:db:02:8b:a9:71:74:2a:bf:53:46:20:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Validity
Not Before: Aug 23 17:02:19 2025 GMT
Not After : Aug 24 17:02:19 2025 GMT
Subject: CN=96bef6544ed9876322976189625cc4c44c43e130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b5:1b:cc:c7:db:d2:e8:03:b4:9e:4f:14:6e:
39:9e:14:6f:ab:65:30:4a:0b:27:71:00:5f:cf:98:
7f:6e:83:e3:5f:36:e5:5b:c7:4a:0a:c0:62:2d:ab:
6a:42:67:a2:15:fe:8b:02:40:f4:c4:d6:82:ce:3d:
66:5b:2e:f5:31:00:92:02:ec:9d:cf:66:4c:cc:15:
39:93:40:95:c8:7b:66:4d:86:81:6c:b6:3a:a7:bb:
95:77:8f:1e:d4:9a:4a:2a:af:0a:17:aa:d3:e7:8b:
d7:4b:56:9e:a8:7b:d3:e8:1b:69:ff:c6:ac:0a:1e:
2e:1b:8f:33:a7:5c:ad:5d:01:22:24:a9:87:0a:a6:
0b:62:11:9d:2a:65:7c:71:0b:fd:94:c1:42:9e:a5:
53:e2:81:5c:02:5c:99:51:72:47:10:03:b2:3d:15:
99:15:90:b1:ef:35:01:5d:44:5e:c6:b0:6d:ec:5b:
0d:48:71:83:16:d2:c8:40:3c:f7:16:4a:b8:28:a7:
09:f1:6c:ea:ba:b9:90:e7:4a:ae:b2:4c:e2:1b:c2:
34:bc:24:96:73:74:11:f3:3d:a8:ea:0e:17:22:d7:
09:d8:fb:d6:0b:b9:ec:79:b3:55:6f:3d:9b:ac:28:
52:34:f9:9a:75:aa:4e:4c:d3:74:5e:c5:1b:d5:bf:
39:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BE:F6:54:4E:D9:87:63:22:97:61:89:62:5C:C4:C4:4C:43:E1:30
X509v3 Authority Key Identifier:
keyid:0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:70:ee:e5:fa:87:23:ff:44:c3:c7:ea:e2:5b:a1:b9:d1:80:
8e:b1:21:81:02:ff:b7:9f:6f:f5:67:e8:8d:60:ea:f8:08:88:
4c:11:f8:5e:a9:50:54:05:ff:4e:ca:c3:7c:24:9a:2a:9c:ba:
39:f6:d7:e2:bf:57:23:91:7c:d2:c8:a7:23:7d:a3:fb:6a:a7:
ed:cc:4f:cd:14:b6:7d:9f:e2:66:d6:26:3b:46:30:a5:67:17:
f7:e1:ce:c8:77:fe:41:c6:53:95:00:c3:8e:a3:b0:6f:30:7e:
47:2e:11:c7:83:61:d2:04:ce:e9:3e:18:88:69:7e:8d:d1:5a:
38:fc:e6:d0:d5:c4:77:8d:7d:89:d4:7a:61:72:f0:e4:7a:86:
14:c7:05:03:9e:47:96:db:a7:41:da:2f:f0:88:3c:75:db:b8:
2e:4c:f1:c7:89:c4:9e:d8:1a:7f:1b:89:af:b9:ea:d7:83:3b:
3d:2e:a8:ea:26:10:eb:f8:72:78:ca:15:b9:f2:d9:34:bb:ac:
12:f9:f6:df:25:ff:b4:b5:ec:b8:f5:93:82:83:15:63:b2:af:
8d:d0:1f:b5:ad:78:3c:b0:ac:96:4d:4c:07:8e:26:bf:3f:da:
58:ef:f9:cf:05:4a:7c:5d:a7:e6:3e:86:26:ae:b7:eb:26:a8:
11:7e:df:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:22:31 2025 by rpki-client