Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
File: DLvQEU2XGWdQ1IxeElbtBVpeniw.mft (raw, json)
Hash identifier: j3jBJFyLZxYVXAQoeiUCquz68bmz6GKIIuap6fNdNUg=
Subject key identifier: CD:34:5D:1B:16:5A:03:56:BB:9F:B1:0B:BE:CE:19:F8:C0:CE:FF:86
Authority key identifier: 0C:BB:D0:11:4D:97:19:67:50:D4:8C:5E:12:56:ED:05:5A:5E:9E:2C
Certificate issuer: /CN=0cbbd0114d97196750d48c5e1256ed055a5e9e2c
Certificate serial: 0198D6984167E84120A5BF758A345D45E671
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
Manifest number: 0AA2
Signing time: Sat 23 Aug 2025 11:02:38 +0000
Manifest this update: Sat 23 Aug 2025 11:02:38 +0000
Manifest next update: Sun 24 Aug 2025 11:02:38 +0000
Files and hashes: 1: C1pdtFvgr0xoHUm63plkKuj-C_Y.roa (hash: b/y/wC9aBMLG4uCve6DdHlmgdXRsPrspZQT4HGYlIp0=)
2: DLvQEU2XGWdQ1IxeElbtBVpeniw.crl (hash: YL9099Pf/C0lIY9AGL7m42tXt559i8ippH9FOA9PkVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:41:67:e8:41:20:a5:bf:75:8a:34:5d:45:e6:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cbbd0114d97196750d48c5e1256ed055a5e9e2c
Validity
Not Before: Aug 23 11:02:38 2025 GMT
Not After : Aug 24 11:02:38 2025 GMT
Subject: CN=cd345d1b165a0356bb9fb10bbece19f8c0ceff86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d4:09:e0:80:5e:5e:b9:4d:c8:49:26:e8:85:
0a:2c:9e:f4:9a:82:d1:56:dc:8d:8d:87:c4:9f:06:
f1:35:86:60:3d:af:9e:26:70:b7:2d:4b:08:1c:6c:
ed:15:42:da:0b:f2:8a:b5:9e:1d:50:de:a2:e2:9c:
24:7c:72:7e:d1:2d:1b:05:ac:a1:69:86:b9:84:b9:
09:2a:58:7c:a6:8d:e4:3c:75:4a:69:10:09:6b:e3:
cf:0a:7d:69:80:cb:8c:1d:52:c1:f8:d7:0e:83:32:
93:8c:f6:dd:1f:ca:a1:af:34:f4:88:c4:38:b8:56:
8c:56:43:77:b8:b1:14:d0:f2:3f:02:25:42:ae:67:
0f:21:55:52:b6:f8:1a:7d:8e:ff:ef:40:d0:0b:a6:
20:b0:31:ce:65:d3:8c:73:ec:8a:be:37:1c:f0:21:
7d:93:a6:64:3e:1d:8b:fb:09:21:d6:b0:45:1c:66:
e8:23:8b:cd:49:ee:fb:34:93:a6:09:1d:32:d2:d2:
02:e4:1a:93:3a:6a:e4:62:e3:19:23:e9:e6:3f:96:
98:33:87:bd:11:d9:60:5e:57:e2:27:06:94:da:2f:
ab:98:96:cc:79:01:0d:cd:73:4d:c2:33:48:e5:c1:
fd:45:37:78:72:eb:0c:10:1e:3f:94:1d:81:ea:26:
3a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:34:5D:1B:16:5A:03:56:BB:9F:B1:0B:BE:CE:19:F8:C0:CE:FF:86
X509v3 Authority Key Identifier:
keyid:0C:BB:D0:11:4D:97:19:67:50:D4:8C:5E:12:56:ED:05:5A:5E:9E:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DLvQEU2XGWdQ1IxeElbtBVpeniw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2a1b4e-d754-443c-a360-afb566cdfac6/1/DLvQEU2XGWdQ1IxeElbtBVpeniw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:71:4b:02:c9:59:7d:cb:46:8e:b7:4c:18:79:49:0f:1c:10:
fd:01:07:51:86:71:d0:a3:8c:40:54:7b:6b:d9:29:ae:26:bf:
45:7e:a0:51:a3:45:c0:19:c7:22:2e:28:0c:90:fe:de:b9:51:
02:31:29:99:4d:1f:32:62:4d:a1:a2:0e:38:98:f7:fa:f4:e2:
09:56:94:23:89:eb:d5:2f:70:33:bf:fe:ff:ba:a3:e2:f1:67:
7a:8a:87:b6:e7:6f:de:ff:b0:63:d2:5e:57:80:6b:af:bc:1b:
01:a5:cd:04:b1:e1:63:e6:0d:52:28:75:0c:a7:39:d3:94:18:
44:69:a4:ca:f0:29:bb:c9:90:41:95:ce:62:30:38:c5:a7:7e:
34:cf:6a:eb:b8:23:0b:ab:cc:d1:9c:44:b5:8a:dd:ce:be:2a:
90:7c:8a:70:bb:45:ef:0a:a0:30:01:2d:ad:30:78:16:6d:88:
91:2d:d6:41:ac:c9:e0:d9:6c:a5:d5:c9:00:e4:fe:22:c5:04:
ba:1a:62:43:3f:89:81:b1:7f:8d:31:26:be:2a:a4:0d:ae:3e:
10:95:42:0a:bb:3d:ba:98:80:c9:36:3f:97:bf:8c:94:1c:24:
35:fc:48:30:f9:5b:2d:1d:cb:86:c2:02:09:23:ea:c7:00:c6:
c7:9a:07:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:57:32 2025 by rpki-client