Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
File: DoMf1wxr03oqddeg6sAxyS2o4YU.mft (raw, json)
Hash identifier: fgqyuq2VrJgW+QBKlkjn70ohBN/XDGTEtuGoQgEXiAk=
Subject key identifier: E1:07:25:9E:27:C8:62:7D:C3:1C:E9:AA:52:D4:F8:08:26:BA:53:0D
Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Certificate serial: 0198D4741F3393F42FEE00D7B4CE0015B947
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
Manifest number: 12CB
Signing time: Sat 23 Aug 2025 01:03:56 +0000
Manifest this update: Sat 23 Aug 2025 01:03:56 +0000
Manifest next update: Sun 24 Aug 2025 01:03:56 +0000
Files and hashes: 1: AbAz97rI6RXbeaGg0ju1UGvv4xM.roa (hash: 6SJubAUNhK59Bg5EEa587Nx4giyrDXi2DFXXzhtFznQ=)
2: DoMf1wxr03oqddeg6sAxyS2o4YU.crl (hash: dyMQ0h8f7sG24dhRShvB+/poE0m42YCLSFH24TfSdOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:1f:33:93:f4:2f:ee:00:d7:b4:ce:00:15:b9:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Validity
Not Before: Aug 23 01:03:56 2025 GMT
Not After : Aug 24 01:03:56 2025 GMT
Subject: CN=e107259e27c8627dc31ce9aa52d4f80826ba530d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:57:2a:7c:8c:ac:51:0c:c4:e5:c4:87:e3:56:
44:c4:a6:e9:f4:99:31:f9:99:38:14:38:d7:fc:a5:
32:16:66:42:c6:d8:bf:86:27:20:b4:2a:3c:55:d0:
ce:9a:7e:d2:cd:d3:45:d6:d3:01:de:b2:83:45:14:
a2:62:c7:04:06:28:e2:23:0f:2c:be:fb:34:46:d2:
79:42:65:af:19:cb:fc:29:7f:5b:a5:6f:22:82:16:
61:5a:9f:a0:53:bd:01:54:65:41:0a:55:d3:21:cc:
8b:fc:65:03:b5:9b:f8:e2:86:44:d9:8c:85:85:06:
44:85:15:90:df:8e:ca:77:f6:75:a9:c2:2a:3e:af:
30:b9:54:96:9d:b5:ce:28:61:99:39:a7:e8:a1:13:
01:47:ea:d5:e1:8e:28:06:94:ee:a3:08:a3:28:c6:
68:10:ea:39:56:ff:58:4a:09:f7:88:83:f5:26:b8:
23:09:e1:18:d3:94:7f:a4:73:38:6c:c0:31:65:63:
17:3a:d4:31:85:2a:cd:64:51:77:94:a4:da:87:02:
3c:a1:84:3a:a4:f5:b7:06:71:ef:a6:9f:70:9c:9c:
d4:3d:63:3a:13:15:fc:2e:df:cd:29:02:65:d9:64:
66:ee:56:51:a2:fa:b8:e6:93:30:a6:21:9c:31:ca:
35:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:07:25:9E:27:C8:62:7D:C3:1C:E9:AA:52:D4:F8:08:26:BA:53:0D
X509v3 Authority Key Identifier:
keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:61:0f:a3:17:ab:05:24:d0:9d:f7:f2:4a:ce:07:cf:84:3f:
4a:96:49:0b:de:a1:f5:29:30:1e:09:10:ff:aa:f1:bb:13:10:
38:a1:9f:08:2e:8c:b7:82:6b:10:28:af:b4:ca:9f:9a:fb:f0:
52:6d:ba:12:1a:3e:43:a0:c8:dd:96:4a:ac:90:f6:38:fa:a0:
d0:09:3a:a4:b5:58:33:6d:29:f5:6e:0f:d1:cf:57:ee:34:1d:
af:14:50:5e:6d:c1:88:d6:1a:cd:e5:d0:0e:3f:ed:d3:bc:67:
ad:83:1d:95:12:24:52:20:1b:bd:1c:c6:71:f1:9c:63:3b:01:
15:92:69:ac:77:c5:15:3a:5f:45:48:05:60:b1:6b:04:4e:3d:
1f:ad:e0:5a:e5:8e:a0:80:91:85:82:c4:56:ba:0d:84:34:ca:
e4:4e:b4:1e:93:09:de:ec:f8:c1:60:21:ac:12:df:21:65:ed:
72:9d:69:0d:b0:f9:0a:57:e7:77:d4:26:18:f6:11:9f:ab:2e:
4f:6b:22:34:a9:8b:e9:7f:92:f6:7b:2e:f1:e6:4b:83:a9:bb:
b1:3b:62:36:ff:ee:89:80:ee:60:0e:00:ef:d0:99:cb:c6:81:
88:8e:61:a9:61:14:8c:1b:13:7a:3b:d8:05:b0:24:17:73:23:
e8:38:7d:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:43:29 2025 by rpki-client