Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft
File: 2D73FCmY5OZWYFPixjpwgIxuojc.mft (raw, json)
Hash identifier: W42zrD58prOd6LIgIhYGrJtC8YPEnyYM3xV80DHFwXI=
Subject key identifier: A4:57:28:08:64:49:EE:2A:0B:CC:D9:CD:57:F4:2B:94:D4:77:CB:7E
Authority key identifier: D8:3E:F7:14:29:98:E4:E6:56:60:53:E2:C6:3A:70:80:8C:6E:A2:37
Certificate issuer: /CN=d83ef7142998e4e6566053e2c63a70808c6ea237
Certificate serial: 0198D583DCB4C04B8A19511CF6616A031DB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2D73FCmY5OZWYFPixjpwgIxuojc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft
Manifest number: 01C9
Signing time: Sat 23 Aug 2025 06:00:45 +0000
Manifest this update: Sat 23 Aug 2025 06:00:45 +0000
Manifest next update: Sun 24 Aug 2025 06:00:45 +0000
Files and hashes: 1: 2D73FCmY5OZWYFPixjpwgIxuojc.crl (hash: RgjaLq92tAI3YLiR20eQhFkMDzO+LQxA7Lh7AokfX5E=)
2: EWAO3dXqj4k_Zc24k1Bzcpcwlew.roa (hash: fG2UBrX6DjIKV9kptyQGomVTDY864OWJshOwmuCJfno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2D73FCmY5OZWYFPixjpwgIxuojc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:dc:b4:c0:4b:8a:19:51:1c:f6:61:6a:03:1d:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d83ef7142998e4e6566053e2c63a70808c6ea237
Validity
Not Before: Aug 23 06:00:45 2025 GMT
Not After : Aug 24 06:00:45 2025 GMT
Subject: CN=a45728086449ee2a0bccd9cd57f42b94d477cb7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:56:c9:dd:d4:2b:64:43:9a:66:13:0f:d9:c4:
33:df:26:48:59:6c:0e:aa:04:76:6a:44:c2:67:af:
d2:9e:1a:de:98:30:99:d9:6d:eb:d4:80:f6:7d:76:
50:d0:32:a4:55:23:f0:b8:0f:08:9e:b4:f8:0b:25:
d8:82:da:98:29:5d:92:40:63:46:9e:90:85:cb:54:
92:71:3d:ab:65:b8:77:b8:d7:0b:b8:f2:ef:ee:61:
f6:ce:79:cb:07:39:67:c4:5e:64:75:93:ed:67:bc:
df:86:7e:0d:e4:e6:57:af:2a:63:87:39:1c:87:19:
ee:fc:fc:c2:48:33:b1:a8:4e:5d:b5:e2:12:04:ec:
7d:db:51:58:10:e1:22:54:2a:2f:c1:be:bf:ff:a3:
61:88:64:11:31:1e:f9:ee:3d:be:ca:a0:7f:11:70:
c0:3f:dd:a3:ce:9c:c4:d7:46:0c:a7:8b:d2:ca:07:
f0:b1:9e:a4:78:68:8a:91:b6:d9:fa:0e:f1:86:43:
8b:16:04:35:17:32:53:b4:6d:a6:26:4f:4f:ad:e3:
cf:0b:3b:0e:4d:5e:f1:c8:96:ad:ed:b7:5b:56:cd:
84:c6:4e:e6:53:c5:83:d5:e1:56:71:b0:c9:a1:4f:
3b:d4:84:04:0a:15:0b:09:43:4e:bb:9e:7c:fa:4c:
41:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:57:28:08:64:49:EE:2A:0B:CC:D9:CD:57:F4:2B:94:D4:77:CB:7E
X509v3 Authority Key Identifier:
keyid:D8:3E:F7:14:29:98:E4:E6:56:60:53:E2:C6:3A:70:80:8C:6E:A2:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2D73FCmY5OZWYFPixjpwgIxuojc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/7fcb35-4408-4218-9862-7f75a1b10ec3/1/2D73FCmY5OZWYFPixjpwgIxuojc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:be:0a:f4:30:a7:a7:e2:c2:2c:68:0e:7a:e3:3b:3c:4d:14:
d1:d4:0a:74:30:87:60:93:5d:92:48:e1:4b:b2:cd:3a:5b:6f:
f1:6f:6c:3e:00:3f:64:93:08:7a:21:ff:24:67:9d:d0:48:ce:
8e:5e:fd:bc:ab:d2:59:c7:8a:22:7e:d6:ff:cb:43:70:7c:06:
02:d9:8f:d7:c2:bc:44:9d:0d:7f:c8:e0:d7:fa:4f:5e:e7:a8:
e1:a3:f9:c7:78:67:72:0a:ef:c4:59:6c:c2:d7:7a:57:5f:4a:
f1:97:52:53:b3:60:56:d1:43:7e:12:af:20:cd:5c:73:64:2b:
e2:87:c1:fd:48:78:bd:bf:b8:f5:99:16:c0:94:ce:5a:74:31:
b3:09:18:e2:08:fa:1a:66:11:ae:48:ef:09:d0:69:b4:2a:ad:
fb:c6:7f:ff:bf:a8:36:83:b0:b1:68:ec:22:76:54:a8:a5:ae:
80:c0:a3:52:96:25:52:e2:bb:a2:d5:bc:e4:3c:f2:26:3e:c6:
3f:50:d6:1e:fc:bc:32:20:2d:43:40:6c:65:c7:df:51:d0:c5:
d5:59:9a:fe:58:70:fa:60:14:41:8c:5d:e8:82:7b:bf:24:fb:
c6:21:91:b4:c3:eb:12:32:ed:fa:6d:26:81:21:9c:f5:bc:1e:
be:38:08:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:25:08 2025 by rpki-client