Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
File: doZr5p83cHIKbcxHkuaA_H9zIaE.mft (raw, json)
Hash identifier: kcvc3guez32MUMNPUywhIxCMZhj0tu8ITskqfeYXGdk=
Subject key identifier: D5:4B:9C:D3:05:F4:CC:9C:E8:4C:AD:63:A5:5F:C5:86:AB:52:C7:3A
Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Certificate serial: 0198D404702414C699116375D08B1793D9BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
Manifest number: 164B
Signing time: Fri 22 Aug 2025 23:01:57 +0000
Manifest this update: Fri 22 Aug 2025 23:01:57 +0000
Manifest next update: Sat 23 Aug 2025 23:01:57 +0000
Files and hashes: 1: VGNUuwe-hqqAy7oOkHM2nEayK1o.roa (hash: PbhbER0ewQHcNx+5Jye/cmyEemdCt4HhzE4je62M8OM=)
2: doZr5p83cHIKbcxHkuaA_H9zIaE.crl (hash: g59AGiH59OOoosXgfaozThrEMv+QSpBTmzzyxGEHFFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:70:24:14:c6:99:11:63:75:d0:8b:17:93:d9:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Validity
Not Before: Aug 22 23:01:57 2025 GMT
Not After : Aug 23 23:01:57 2025 GMT
Subject: CN=d54b9cd305f4cc9ce84cad63a55fc586ab52c73a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:92:35:ef:9c:36:d4:97:50:f8:14:70:07:d5:
f8:43:6b:f9:cd:fb:9c:e3:40:04:d4:c6:09:2b:fc:
ea:e1:72:65:6d:d8:eb:e8:67:a0:ce:c8:5e:44:62:
ee:b7:f2:e6:dc:e7:b8:0b:45:a3:0a:aa:78:0a:1f:
2c:b2:26:45:e8:21:99:fa:32:e7:f7:fb:3e:81:61:
5a:bc:6d:69:ef:8f:89:e8:f9:2f:5b:06:7e:2f:97:
6c:b5:b9:70:71:8f:d2:80:ae:67:11:88:8b:f0:82:
2e:f5:63:3a:3e:e2:bf:b5:42:ba:99:02:c4:32:90:
ef:20:e4:6c:55:37:90:4c:55:88:74:74:aa:b4:af:
03:1e:3c:42:0c:c3:2e:83:b2:c2:8e:39:20:23:8e:
71:1c:01:f2:c9:f3:eb:12:61:c9:1a:7f:48:71:13:
c0:2c:09:82:db:30:9c:5c:56:26:4d:b9:9c:6f:ff:
c5:46:5b:38:20:74:52:2d:0c:84:23:f4:28:f2:5d:
20:b6:d8:ee:c2:58:eb:93:eb:6c:7b:27:e8:b7:17:
fe:dd:9a:95:4b:24:f6:21:ba:ae:83:58:82:22:1b:
a3:2c:12:4a:d0:4c:e4:1b:48:b3:e0:45:8e:7a:f8:
34:98:1f:db:6d:13:8c:26:b1:6e:9d:63:c3:db:93:
b8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:4B:9C:D3:05:F4:CC:9C:E8:4C:AD:63:A5:5F:C5:86:AB:52:C7:3A
X509v3 Authority Key Identifier:
keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:ca:5e:4b:3d:49:ee:b7:75:83:08:cc:cd:78:07:06:cc:32:
cd:01:90:9a:27:cb:7e:86:cb:ac:55:15:11:d6:16:78:7e:a0:
2a:45:d6:15:83:9b:a0:48:ca:2e:1c:e2:f4:ec:ce:fa:0e:a6:
b9:da:32:40:31:15:25:28:df:15:95:d7:97:b9:3d:25:b4:84:
b9:20:4c:25:28:8d:ab:ea:ad:27:d0:2a:11:b9:40:67:3b:d0:
54:0a:c8:e8:0e:ff:13:3d:b3:b1:8a:46:7a:10:a6:0b:00:62:
3c:91:86:a6:f4:3c:bf:e5:36:04:bc:1d:f3:34:97:01:ce:8e:
a1:ec:d9:69:03:46:6b:92:e5:4c:c6:74:41:71:65:23:11:3b:
56:b6:1d:6d:31:c7:77:6b:97:32:00:3c:54:c5:9d:53:79:e9:
52:b4:5a:19:6e:ae:66:5d:76:00:08:0c:ab:0c:22:15:f9:1b:
60:2e:0d:09:66:90:05:d5:58:d5:57:c6:7f:81:9e:3c:ff:51:
6b:f3:c4:8e:c2:4b:41:59:51:ea:2f:10:31:b9:22:84:b9:2f:
5c:be:6d:f8:0a:a8:7e:66:2c:00:92:e8:4a:d2:ca:14:00:c9:
2c:e4:a6:85:7a:26:ba:30:ae:4c:12:c0:5e:d4:7a:f4:63:d8:
7a:93:df:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:15:28 2025 by rpki-client