Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
File: ddl3qipMEMe0evKt2WgESH4idKk.mft (raw, json)
Hash identifier: 6a6lpXpg4v/UBj6V1FXZOhzGFkp9Kk6lhX+KyHvfOzQ=
Subject key identifier: D5:2D:81:60:B5:62:41:36:74:86:F7:91:81:33:65:25:A8:EA:52:5F
Authority key identifier: 75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
Certificate issuer: /CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Certificate serial: 0198D4E095C6A330E323C8D6D75F68F0D3E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 03:02:24 +0000
Manifest this update: Sat 23 Aug 2025 03:02:24 +0000
Manifest next update: Sun 24 Aug 2025 03:02:24 +0000
Files and hashes: 1: d1djO8IkOk-DAQF-B5CVMX1fEOA.roa (hash: ObQ/agHgncZ7LWNprlr11FO8JEBhRFid61XXKnLc8Hc=)
2: ddl3qipMEMe0evKt2WgESH4idKk.crl (hash: PZnBqkfD7XF7ttmsl5civ04qZ8wXsgfFugME3Ciis9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:95:c6:a3:30:e3:23:c8:d6:d7:5f:68:f0:d3:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Validity
Not Before: Aug 23 03:02:24 2025 GMT
Not After : Aug 24 03:02:24 2025 GMT
Subject: CN=d52d8160b56241367486f79181336525a8ea525f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:41:2a:11:33:48:be:a9:25:b4:f8:5c:f2:c9:
fd:fe:10:bf:e8:be:85:03:0f:42:1b:a0:cf:33:ac:
d9:78:41:4c:21:32:fb:25:8b:ae:31:be:33:03:20:
cb:40:0b:c7:96:2c:40:02:94:dc:d9:5f:a2:7b:d8:
7f:5f:e1:85:eb:c4:2b:43:b8:3f:03:02:2b:3e:14:
05:bc:6d:6a:f4:df:e4:ad:c1:7b:38:0b:c6:b4:63:
19:7c:7e:d6:d5:ae:81:b4:a0:cd:ca:83:01:ba:b0:
42:5c:e9:ac:a1:26:d2:83:ce:0b:0c:02:e7:42:61:
66:aa:3f:cd:b2:e1:0e:45:50:60:1d:95:8e:dd:0a:
14:05:88:df:3c:3b:f5:ec:b6:fa:6d:d6:2b:41:79:
97:06:25:9d:8a:c9:46:76:f2:72:4b:cd:dd:38:9a:
25:eb:21:44:ae:a9:bc:2d:46:d3:5c:70:8b:33:6b:
f0:3b:a6:47:c6:0c:78:98:06:0a:6e:8b:7f:78:57:
8d:32:3d:cc:c0:c8:9e:a4:c0:9b:6b:dd:18:17:d2:
fa:72:1d:21:e6:a3:a1:a6:10:ba:25:0e:23:78:09:
40:14:0b:56:43:29:0b:26:49:1c:f9:43:0c:7b:4a:
b7:2c:07:9f:7c:7e:72:62:17:aa:86:30:f8:1c:3e:
7e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:2D:81:60:B5:62:41:36:74:86:F7:91:81:33:65:25:A8:EA:52:5F
X509v3 Authority Key Identifier:
keyid:75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:d8:9f:0a:33:98:b5:ab:37:06:2a:d3:c9:8d:53:62:ff:04:
81:14:47:c4:54:b1:45:5d:70:a9:3e:aa:f8:f0:8a:43:99:bf:
f8:2b:b8:e4:d4:f5:7a:72:5c:ea:62:6d:af:f3:de:04:34:74:
f0:4f:e3:38:ac:c3:1e:b1:0c:c1:c1:e0:3c:c3:2f:7d:b5:4b:
29:2b:e2:9e:63:59:64:66:d7:b0:8a:09:68:87:e4:2b:49:84:
b7:0a:50:25:8b:19:cf:6d:34:82:53:36:03:6e:d5:b4:87:69:
ab:2c:e7:3c:6e:a5:47:7a:15:03:55:90:15:b1:60:23:7c:f0:
82:e7:a6:64:1f:48:d4:fb:d7:45:9a:e0:45:b5:ff:f2:8c:83:
b3:5d:f3:97:9a:a9:dc:6b:8f:fb:cd:71:33:64:6e:3f:6b:42:
ab:af:71:66:b1:67:27:b4:65:51:9b:89:12:4c:23:ed:8d:f7:
18:ed:bd:25:7f:dc:18:be:79:23:fd:6b:d0:dc:11:92:67:89:
6f:06:09:d1:e4:c6:d6:2c:89:10:d1:13:db:ca:ea:6f:8c:d7:
dc:71:8e:f8:c2:67:bc:09:a2:8e:e8:f0:c3:ec:85:c1:b0:34:
3c:b0:7c:fd:f0:cd:67:c9:ca:5d:34:59:13:d1:40:71:95:73:
7e:fc:33:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:36:01 2025 by rpki-client