Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
File: 59aKnrhqgmTp3cMSKEm4DMNC9dw.mft (raw, json)
Hash identifier: fvfzwlQwk7SYUvOfkQdc70lrMzKQI2VdtacYT+7/8DY=
Subject key identifier: C8:BC:69:5F:49:7D:B0:2F:58:DD:C5:16:9D:24:39:06:03:DE:8C:65
Authority key identifier: E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC
Certificate issuer: /CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc
Certificate serial: 0198D583533303D6BAAEDF538028179B1213
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
Manifest number: 1363
Signing time: Sat 23 Aug 2025 06:00:10 +0000
Manifest this update: Sat 23 Aug 2025 06:00:10 +0000
Manifest next update: Sun 24 Aug 2025 06:00:10 +0000
Files and hashes: 1: 59aKnrhqgmTp3cMSKEm4DMNC9dw.crl (hash: PlEgpKxWsOHndA7zuiYunB7sA8CnqlKRT3RiRyfMqro=)
2: qetS73-OE2CSttiMvug0TDfkr54.roa (hash: f7CQ5AXCS66V7YOxpVoih8o6XmqrwIeswAWr26eRNls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:53:33:03:d6:ba:ae:df:53:80:28:17:9b:12:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc
Validity
Not Before: Aug 23 06:00:10 2025 GMT
Not After : Aug 24 06:00:10 2025 GMT
Subject: CN=c8bc695f497db02f58ddc5169d24390603de8c65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:57:ae:34:17:cd:52:7a:8e:ef:f2:31:dd:5d:
7f:f3:d1:43:2b:52:5b:26:4c:2f:28:f0:5e:c4:30:
1d:fb:d6:83:68:f8:a2:29:af:7d:5b:25:07:db:ba:
1f:80:32:6b:42:14:c5:97:07:d9:34:c6:ca:ef:a9:
88:7b:b8:30:9c:94:85:8d:a7:fe:10:70:3c:4a:99:
4f:c9:fc:a8:b8:68:10:1b:14:ab:87:bf:47:cd:cb:
5d:2a:ac:a1:b2:63:05:62:24:8c:82:45:a3:db:cf:
6a:eb:c9:eb:a2:1f:af:8f:7a:c1:c4:15:08:e7:7d:
2a:c3:9d:bf:7a:dc:7f:c4:2f:53:f2:36:77:35:c7:
70:12:ed:19:bb:1e:1e:8b:da:54:2c:fc:25:bd:fa:
b9:2b:46:b5:33:61:b6:77:34:c2:a8:f7:eb:91:e1:
38:a4:94:08:9f:aa:a9:38:eb:53:4a:ab:ba:9b:09:
ad:65:c8:7d:c0:4e:08:a3:05:92:a4:d3:dd:02:f3:
b7:68:e6:7d:ef:55:a5:1b:de:30:d6:4e:00:42:0c:
a0:da:85:ed:5b:5e:27:30:99:11:b1:50:61:f3:f2:
58:a3:53:ad:6d:59:fc:20:19:aa:78:01:46:aa:54:
37:a6:ef:dd:40:b0:b7:2f:3f:47:89:2c:56:dd:57:
d9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:BC:69:5F:49:7D:B0:2F:58:DD:C5:16:9D:24:39:06:03:DE:8C:65
X509v3 Authority Key Identifier:
keyid:E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:f7:92:a1:0d:72:66:8d:20:8a:fa:ca:ea:cd:d3:4a:9d:7b:
d5:4a:a2:2c:cf:e8:7c:59:76:11:05:3f:77:1b:fe:88:ff:02:
92:5c:ac:5d:d4:15:c2:7d:15:cd:42:81:2c:fe:03:dd:5e:ef:
ce:9b:74:49:0a:f8:f1:e3:b1:da:d3:5f:ad:f3:8c:69:af:31:
9e:7d:10:ec:1d:e5:66:c4:03:5f:a2:76:0d:26:17:42:74:05:
a2:3e:c6:ea:c9:c4:70:45:fa:70:f4:7b:bd:5d:79:4c:1f:ea:
da:08:53:b1:19:40:8a:79:d1:cb:26:3f:20:e3:ba:da:ce:b4:
8d:a7:d5:9e:66:de:f6:9c:9d:52:a5:92:1a:bf:72:a5:42:aa:
a3:be:ee:73:db:43:b9:92:d4:2d:a2:90:18:7d:45:06:c7:e9:
7a:71:16:b5:6f:93:bd:e4:98:61:30:51:38:44:fd:4b:5b:05:
64:89:c3:8f:47:e0:4c:54:ed:f5:da:3f:4e:88:64:a0:ee:10:
f0:ba:9c:57:ac:d7:95:38:ec:50:a4:5e:fa:10:f4:27:e8:9d:
1f:ff:62:95:34:0b:f0:fe:a4:74:84:11:c1:5b:34:57:c7:7a:
9d:03:f0:18:cb:b5:9f:5a:71:72:a8:81:07:c2:86:1f:e2:90:
13:09:b7:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:36 2025 by rpki-client