Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
File: D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft (raw, json)
Hash identifier: +jbJTRXviwJHPt7osZER9DEkvNj8ORj2IwunUiuqszU=
Subject key identifier: A4:38:BF:EA:02:79:A5:FB:7F:0D:A0:31:E2:F3:B1:08:98:6C:34:AA
Authority key identifier: 0F:67:1F:EC:38:F0:0C:40:2F:30:66:F1:3C:79:2E:1A:0E:D1:6D:B3
Certificate issuer: /CN=0f671fec38f00c402f3066f13c792e1a0ed16db3
Certificate serial: 0198D4739C2AE3D8F8CE67F4089F9F329651
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
Manifest number: 0EAF
Signing time: Sat 23 Aug 2025 01:03:22 +0000
Manifest this update: Sat 23 Aug 2025 01:03:22 +0000
Manifest next update: Sun 24 Aug 2025 01:03:22 +0000
Files and hashes: 1: D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl (hash: MkVJncMt4lXvVn4YdEf5ITlp7HtsoK77HBahw/ms2R8=)
2: FIHDrOZdPItJ1g7-VrAk_uoQnSo.roa (hash: 1BVoM3pIwN+Dth/AavDroFy4/aBiv0LMqKNh/mLZqqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:9c:2a:e3:d8:f8:ce:67:f4:08:9f:9f:32:96:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f671fec38f00c402f3066f13c792e1a0ed16db3
Validity
Not Before: Aug 23 01:03:22 2025 GMT
Not After : Aug 24 01:03:22 2025 GMT
Subject: CN=a438bfea0279a5fb7f0da031e2f3b108986c34aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a4:54:9c:de:48:62:30:3a:e2:71:18:7c:28:
87:1a:35:c3:7f:f8:5e:20:2e:0b:d2:0c:de:c7:c1:
95:8d:f6:5b:43:af:86:70:6c:7b:fd:cd:01:3c:bf:
46:63:ef:82:ac:87:93:93:bb:5a:12:9d:8f:5f:03:
e9:17:49:81:31:dc:ae:1a:1a:3c:b8:d6:b9:3b:72:
cb:8b:c8:95:43:10:5e:92:71:74:82:89:4b:df:e4:
b2:cd:54:73:0f:3b:4e:50:d1:23:a9:37:3b:c0:cc:
60:ab:b3:a1:3f:da:44:5b:79:24:e6:83:38:68:9e:
42:94:38:94:4c:a2:b9:06:a3:18:87:3e:23:13:8f:
10:27:b7:fd:60:6f:2c:3d:ab:40:5d:aa:0e:49:4f:
72:7d:d5:c6:d2:a3:3a:9c:c6:46:e4:20:5d:96:2c:
54:96:de:71:21:0f:bb:e8:a1:c9:db:c7:22:34:6d:
36:2e:5c:b7:01:30:5d:38:ab:88:b6:98:d5:20:39:
a6:8a:16:f7:42:6a:f8:a4:36:fc:dc:8c:f3:8d:40:
c5:42:8b:f9:32:4b:b5:82:69:8b:3d:b0:34:4f:60:
1e:b2:ea:c6:24:b0:94:18:9d:5b:06:60:57:69:00:
a6:9a:5a:4a:cd:1d:ab:68:38:a5:da:06:96:84:30:
83:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:38:BF:EA:02:79:A5:FB:7F:0D:A0:31:E2:F3:B1:08:98:6C:34:AA
X509v3 Authority Key Identifier:
keyid:0F:67:1F:EC:38:F0:0C:40:2F:30:66:F1:3C:79:2E:1A:0E:D1:6D:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:8c:1a:fe:24:a9:a4:7f:2a:25:cd:48:2e:7e:6c:09:f9:20:
62:16:de:e0:57:da:dd:38:68:4b:68:85:3f:ae:0c:58:c8:6e:
92:db:ef:9a:44:92:8c:70:8b:3d:6c:90:02:cf:2e:c6:c0:64:
6b:02:73:ba:d3:d1:97:6f:f9:a6:10:41:10:19:f4:3b:c7:84:
cd:50:79:ee:06:79:05:e2:f5:83:d4:4a:d2:c7:49:2e:d7:7b:
52:68:ad:6f:ff:2f:58:38:4f:75:f7:8b:44:cb:8a:c1:81:78:
4c:94:45:49:36:55:6b:0b:8f:52:41:ed:aa:f8:d2:f4:20:bc:
ba:5b:98:6f:19:b7:41:7a:03:98:b1:94:e7:22:d3:bc:ad:b8:
1b:6d:57:e2:0e:b0:3a:64:34:59:6c:cf:16:17:41:e3:87:69:
de:e3:32:a3:c2:9c:7d:d1:a4:b5:54:07:a9:14:00:8f:6d:e8:
24:38:af:c2:37:ce:68:25:f8:b2:2b:05:3a:d5:a3:a6:8b:4f:
e4:8b:6f:3a:90:e8:4c:29:a1:7b:65:8d:5e:e9:b3:b2:17:c7:
d6:2a:68:1c:e8:e9:07:1a:a5:9d:b6:c2:8b:cc:3e:9b:f1:4d:
b8:08:a9:8e:08:50:b3:8b:5e:72:71:2a:eb:34:31:da:0e:cc:
78:3a:c4:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:00 2025 by rpki-client