Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
File: dxLiD1ELIrghfN8NIRSWsbnB7bg.mft (raw, json)
Hash identifier: 9IKF0iG0mp9CyQGAuQNM0y1XOdDVy6dR76bkM+E7Csg=
Subject key identifier: C7:AC:CC:17:F8:E5:98:3E:63:DF:B5:5C:B7:1C:80:D3:C2:54:0C:C8
Authority key identifier: 77:12:E2:0F:51:0B:22:B8:21:7C:DF:0D:21:14:96:B1:B9:C1:ED:B8
Certificate issuer: /CN=7712e20f510b22b8217cdf0d211496b1b9c1edb8
Certificate serial: 0198D697E9ED9D55DE3AFDBD9B968ABA6BC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 11:02:16 +0000
Manifest this update: Sat 23 Aug 2025 11:02:16 +0000
Manifest next update: Sun 24 Aug 2025 11:02:16 +0000
Files and hashes: 1: 0bjBu50yRFSQQCpaSDnz4Da59n0.roa (hash: EpIJkfUrUz0ncMqveTDKjCXPCU3oKNIvzwGQlVcXpbY=)
2: dxLiD1ELIrghfN8NIRSWsbnB7bg.crl (hash: su9V5FUbHZypbnH6qBXZIe/ht0miMsM4YMCK0m//+pA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:97:e9:ed:9d:55:de:3a:fd:bd:9b:96:8a:ba:6b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7712e20f510b22b8217cdf0d211496b1b9c1edb8
Validity
Not Before: Aug 23 11:02:16 2025 GMT
Not After : Aug 24 11:02:16 2025 GMT
Subject: CN=c7accc17f8e5983e63dfb55cb71c80d3c2540cc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:40:9a:45:94:a6:b4:4d:fc:06:30:e5:76:70:
d4:b7:78:8e:eb:03:4c:80:6f:82:9f:0e:a3:ad:1f:
f1:80:e8:ff:dd:f2:24:52:01:2e:d0:e2:ba:6d:9c:
47:9e:e8:cf:46:0b:a8:b1:1c:71:a9:74:cc:76:da:
90:d7:fa:1d:fd:58:03:31:6e:c3:01:cd:e4:1c:01:
0d:86:9b:29:4c:0e:18:72:7a:65:3e:5d:3e:d0:7c:
59:a2:f1:48:37:8a:ec:78:69:c4:6a:0c:00:c1:57:
a0:dc:cf:c4:35:00:52:57:55:25:d9:c6:63:ef:95:
e4:ea:8c:d1:46:3d:c2:98:d5:82:0f:5a:c3:d9:d0:
a9:c9:ec:25:5a:1e:86:d7:6e:e9:1c:ae:fa:55:d4:
85:01:dd:5e:83:96:0a:92:0c:40:d9:a1:d4:42:33:
91:21:7b:0c:1f:89:54:98:7e:51:3d:c1:59:87:d2:
18:7d:c6:3b:29:6f:97:39:46:43:66:25:a8:77:f6:
6f:c3:75:31:52:fe:74:20:56:1e:3c:e6:f4:51:e6:
28:b6:b7:04:34:94:9f:de:bb:4b:0f:9d:cf:b4:03:
64:b9:88:de:92:57:47:4a:d1:5c:e9:02:c6:d3:58:
df:ef:ce:b0:ef:ea:95:b2:5c:95:de:7b:cb:18:e5:
ae:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:AC:CC:17:F8:E5:98:3E:63:DF:B5:5C:B7:1C:80:D3:C2:54:0C:C8
X509v3 Authority Key Identifier:
keyid:77:12:E2:0F:51:0B:22:B8:21:7C:DF:0D:21:14:96:B1:B9:C1:ED:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:83:dd:8e:8f:56:3c:d8:6c:e1:61:cf:b0:6b:f0:57:3f:6c:
e2:6c:88:7b:5d:2d:a8:d3:69:47:27:d2:b0:5b:44:f5:56:db:
54:2a:00:dc:00:e3:a5:55:00:45:58:02:15:97:70:46:61:4f:
76:62:a9:58:a3:2b:06:2a:60:d2:2e:a0:f6:6d:89:88:c5:ff:
5e:d7:8c:80:40:67:24:48:cd:71:03:ed:e7:a9:79:56:3d:6d:
82:b2:40:76:86:ab:63:4c:c3:21:61:0b:58:70:5b:67:80:42:
72:36:00:c0:8e:4a:2f:af:6b:18:b6:87:7b:dd:86:f4:f8:6a:
26:34:e1:51:f6:fe:4d:dc:16:a1:6e:39:af:e6:03:a3:8c:32:
56:a3:c8:0c:bf:96:4d:13:72:b9:7b:12:c5:c1:eb:a6:fb:ef:
90:56:99:7b:11:e3:2e:74:53:bc:31:45:d2:88:a0:f7:bc:bc:
e6:4d:f1:d7:c9:73:66:f0:b3:ed:8d:d7:78:fd:04:f5:35:27:
00:a3:4e:b3:4c:62:ff:08:5e:ae:27:73:c1:b0:75:53:92:88:
a2:3c:03:10:1e:3e:06:15:97:08:0b:e0:93:a8:3e:05:3d:d9:
4e:15:fe:12:9d:72:5c:d5:83:87:d2:3a:1d:13:1a:53:7d:30:
8a:33:3b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:09:20 2025 by rpki-client