Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
File: drTT6JcTIsZNegRYurdFqJreTeU.mft (raw, json)
Hash identifier: HAa2zm5YhrcARtUef4LXPtMj9W1YkrLrpPOckU+z+mU=
Subject key identifier: 57:89:F0:13:41:D7:5C:CA:2B:6E:BD:5B:7C:D9:33:BD:F6:EC:66:4D
Authority key identifier: 76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5
Certificate issuer: /CN=76b4d3e8971322c64d7a0458bab745a89ade4de5
Certificate serial: 0198D850DD2838534328ABE6837455E3ADEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
Manifest number: 02CE
Signing time: Sat 23 Aug 2025 19:03:54 +0000
Manifest this update: Sat 23 Aug 2025 19:03:54 +0000
Manifest next update: Sun 24 Aug 2025 19:03:54 +0000
Files and hashes: 1: ZYX1Qhws2vdCl-u2QXbSsdG6zUs.roa (hash: 1Yas72g5IvT1A6G5CoyKopOr6adZNC8arOgG6BPNF2I=)
2: drTT6JcTIsZNegRYurdFqJreTeU.crl (hash: 7CGjL2Yzr5j3ag8Yvrzn/bF8IRb6uwbC8zDtI3ybvb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:50:dd:28:38:53:43:28:ab:e6:83:74:55:e3:ad:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76b4d3e8971322c64d7a0458bab745a89ade4de5
Validity
Not Before: Aug 23 19:03:54 2025 GMT
Not After : Aug 24 19:03:54 2025 GMT
Subject: CN=5789f01341d75cca2b6ebd5b7cd933bdf6ec664d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:02:ce:fb:d4:b3:56:83:0c:29:c2:cd:46:d4:
db:0e:3b:16:a5:42:62:6c:bd:76:26:0a:7a:f5:bf:
1b:d1:bb:82:6f:18:c9:e5:1f:26:de:23:7d:5a:bd:
7d:6d:5c:48:21:94:0a:c8:2e:71:47:fc:41:9e:7a:
b8:b5:eb:33:e0:18:47:0f:fe:ce:3f:2c:bf:8f:66:
2e:70:1d:b9:11:fc:d9:32:90:0e:1d:13:43:f0:39:
0a:21:7f:b7:f4:b2:30:6d:96:9d:57:33:35:47:7f:
f1:a2:6c:34:6d:92:33:2e:e3:5e:35:25:12:5e:11:
50:62:26:df:fc:10:53:e0:5d:7e:73:11:0e:ae:e3:
1c:70:b4:58:8f:b4:47:4c:f3:ca:33:36:54:12:2f:
43:84:4d:26:ec:a6:ec:9e:bc:ac:a3:f1:fa:9f:99:
51:54:cd:1b:27:b7:c1:d2:ad:ac:d4:65:58:c5:16:
e6:32:62:f0:25:14:d7:db:f9:78:85:ce:d3:b4:f8:
7d:57:e4:f4:67:e5:46:6e:66:49:88:9d:40:2f:88:
62:1b:d6:eb:09:4b:2a:0a:06:20:53:12:34:e9:9d:
23:fb:52:9a:3c:96:19:3c:4e:d5:3f:24:f3:51:19:
66:15:1d:37:d4:94:80:d6:b6:af:6e:5a:3c:9e:df:
ff:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:89:F0:13:41:D7:5C:CA:2B:6E:BD:5B:7C:D9:33:BD:F6:EC:66:4D
X509v3 Authority Key Identifier:
keyid:76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:54:98:37:46:fc:80:6b:05:3d:9a:54:0d:e8:93:8c:75:f1:
d7:6f:46:83:9b:13:10:b8:ea:e0:1d:85:ee:f6:97:4b:0b:3e:
4a:8f:29:47:f4:a3:56:b7:75:12:c1:de:cc:9e:6b:a9:ab:b8:
dd:9b:09:6c:9c:ab:53:69:0a:5f:fb:ec:6d:83:ef:e8:3a:e0:
4f:a5:17:0b:b3:27:de:59:ce:3e:56:fa:33:67:66:5c:a9:df:
be:82:d5:c2:43:db:e9:22:47:ca:75:4e:1e:a5:91:d9:40:1d:
dc:b2:f9:81:46:a5:04:37:c2:5b:f6:5d:b9:3c:31:6f:79:19:
1d:f4:ef:6e:43:19:89:13:ca:64:e0:8e:b7:4d:1e:a2:f8:da:
69:2a:f6:f5:4b:e6:0e:f0:01:43:b1:87:31:82:e6:bf:ee:7c:
97:12:8f:57:93:0c:8b:79:60:33:f7:bd:94:8c:a1:f5:50:64:
8f:9f:ce:8f:fc:b2:b9:58:b0:77:97:35:b2:95:7a:0a:11:c2:
a5:4e:6f:53:5c:7b:09:7c:f5:d2:7b:66:ca:f6:9e:67:fc:b2:
02:9d:13:9c:55:0b:d8:56:41:75:33:1c:a8:98:da:56:11:a1:
6b:61:af:98:48:f6:f2:0e:11:35:4a:49:40:2d:17:8e:01:56:
ac:f6:77:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:52:22 2025 by rpki-client