Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
File: DbPDFk09jCZEzymzI2dhpXHuWLo.mft (raw, json)
Hash identifier: e54shfhS1KLLsWy2y6QgmViJT4WWIq4tGRZQwWTLsV0=
Subject key identifier: F5:72:A3:4D:92:82:2D:AA:A0:3B:4F:D6:73:57:8B:41:5A:09:1F:A9
Authority key identifier: 0D:B3:C3:16:4D:3D:8C:26:44:CF:29:B3:23:67:61:A5:71:EE:58:BA
Certificate issuer: /CN=0db3c3164d3d8c2644cf29b3236761a571ee58ba
Certificate serial: 0198D6CCF6D2E358B5FC1ABCCB6215AD33B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
Manifest number: 0C51
Signing time: Sat 23 Aug 2025 12:00:13 +0000
Manifest this update: Sat 23 Aug 2025 12:00:13 +0000
Manifest next update: Sun 24 Aug 2025 12:00:13 +0000
Files and hashes: 1: DbPDFk09jCZEzymzI2dhpXHuWLo.crl (hash: YBYsslxRn57jIW5anqsjgmJ8BFsCj5qOEjAaCFidENM=)
2: VCOPnV4kZuweFLb_llPPHRAXNUA.roa (hash: cRLhBmbu/yT6hrLfR7qsKhKnC8knJg7oOO9Ome0I9Gw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cc:f6:d2:e3:58:b5:fc:1a:bc:cb:62:15:ad:33:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db3c3164d3d8c2644cf29b3236761a571ee58ba
Validity
Not Before: Aug 23 12:00:13 2025 GMT
Not After : Aug 24 12:00:13 2025 GMT
Subject: CN=f572a34d92822daaa03b4fd673578b415a091fa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bf:76:d5:cd:32:1d:cf:c4:c7:41:a8:1d:37:
7c:ff:d0:19:70:4d:d1:1e:db:6e:82:72:8d:df:ac:
8c:58:4a:3f:92:46:a8:1f:5a:8b:2c:3c:d4:28:b0:
31:74:e4:11:9f:53:d8:b2:69:40:68:c6:66:b1:ec:
f4:22:47:3a:3b:89:16:a9:9a:05:bd:6d:96:f7:48:
51:17:f6:e9:95:4c:c4:9f:1d:94:a1:33:0a:20:fb:
4f:65:43:27:cc:df:63:a6:1b:04:28:fd:6f:ac:8b:
2a:33:e9:eb:f6:c4:1c:6a:8e:39:4c:1c:d9:31:f4:
64:37:af:00:ea:8e:83:9c:48:cf:11:8f:18:4a:0d:
11:3d:c8:d3:f1:52:30:c8:fb:23:1a:0a:b1:92:b6:
e3:51:43:47:8d:0c:73:65:31:2d:70:83:c6:55:7c:
ee:32:5d:3d:26:4a:83:f6:2b:b3:12:4c:4d:9a:80:
60:9a:26:41:e7:80:47:c4:2f:94:7f:e7:c8:65:02:
d2:7e:86:8c:d6:8a:ff:4e:98:90:fe:bf:c0:24:74:
37:12:b1:36:8c:0e:a9:73:16:ec:98:da:6c:f6:07:
a8:4e:8b:cb:60:2a:2a:84:ad:d3:4e:d7:24:87:91:
02:6b:e9:6a:54:79:d3:29:41:34:15:33:9a:0b:8e:
56:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:72:A3:4D:92:82:2D:AA:A0:3B:4F:D6:73:57:8B:41:5A:09:1F:A9
X509v3 Authority Key Identifier:
keyid:0D:B3:C3:16:4D:3D:8C:26:44:CF:29:B3:23:67:61:A5:71:EE:58:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbPDFk09jCZEzymzI2dhpXHuWLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/6cd366-3557-42b2-885b-3d46439aa41c/1/DbPDFk09jCZEzymzI2dhpXHuWLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:38:91:66:a1:e5:33:4c:56:b3:02:14:44:db:be:d5:8d:eb:
bc:52:0e:a7:6e:a9:b4:91:b3:5e:8b:4a:66:17:51:cb:c7:41:
0a:68:e6:72:be:33:50:99:68:0f:96:dd:01:ef:6f:13:11:91:
e3:d3:e5:04:e7:df:f8:ff:de:a8:55:4a:14:4d:91:ea:e1:c6:
c3:3d:89:fa:a7:a8:ab:2e:2e:7e:87:2e:70:3c:3a:37:ed:9c:
47:34:ee:24:e7:25:88:79:0e:bd:90:cd:b0:32:7e:38:f5:22:
5e:67:d6:0c:6d:df:15:ae:bd:10:9a:2a:f5:39:1d:9b:9a:a4:
c8:a3:98:4c:ba:db:be:a4:ed:3f:63:5f:b1:6b:a7:56:dc:43:
f1:e9:17:6b:a8:a4:f5:19:20:ab:1c:0f:bf:ed:10:87:5f:b9:
8f:57:bd:32:aa:fd:d0:22:f4:aa:63:28:ec:e2:c0:a1:d0:81:
9a:b7:b7:1d:f6:bc:5f:c5:c7:8c:04:46:c3:52:9a:08:f2:c0:
92:f0:81:17:b8:16:ca:03:39:a8:24:eb:43:ec:27:9d:c9:0b:
3a:97:ad:34:26:a7:e7:04:ec:ec:cb:be:3f:e2:cc:36:19:cd:
67:d4:30:61:2e:d0:94:74:e0:e8:fc:04:93:82:48:67:c1:00:
1e:f3:43:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:41:58 2025 by rpki-client