Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
File: wb80sZClHOUwAleRGvMEBPSVH7Y.mft (raw, json)
Hash identifier: fNtlD2E5nY/2xOpdoN2XU2gUKvddp8rRA3R7rDmG3so=
Subject key identifier: 33:DB:AF:10:0D:D5:24:6A:CB:42:C3:CE:D1:2C:D4:9B:E5:5D:3B:09
Authority key identifier: C1:BF:34:B1:90:A5:1C:E5:30:02:57:91:1A:F3:04:04:F4:95:1F:B6
Certificate issuer: /CN=c1bf34b190a51ce5300257911af30404f4951fb6
Certificate serial: 0198D4741DAC032C89C0A0823E3F9684B184
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 01:03:56 +0000
Manifest this update: Sat 23 Aug 2025 01:03:56 +0000
Manifest next update: Sun 24 Aug 2025 01:03:56 +0000
Files and hashes: 1: 0tyV27ZaRKIuc5h8kTDsBiv4BZI.roa (hash: 1dyOdZnQpGVWWsvnKswgEprRwbXy0vsePve+ulQremU=)
2: wb80sZClHOUwAleRGvMEBPSVH7Y.crl (hash: pKxEmxNOw+cuozcGz+9q7W8BCF4ucUPz1Tfb2pG+R2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:1d:ac:03:2c:89:c0:a0:82:3e:3f:96:84:b1:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf34b190a51ce5300257911af30404f4951fb6
Validity
Not Before: Aug 23 01:03:56 2025 GMT
Not After : Aug 24 01:03:56 2025 GMT
Subject: CN=33dbaf100dd5246acb42c3ced12cd49be55d3b09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4e:6e:15:6a:37:2a:0a:63:07:76:a6:9a:ab:
e1:d1:4d:90:7b:29:9d:f1:90:6b:09:df:e9:1a:7b:
14:55:a9:43:96:74:a3:cc:cc:fb:cd:5f:66:a2:53:
b2:31:66:31:7f:54:9a:4b:1e:dd:7d:16:12:3f:a7:
94:7b:ce:94:c2:38:58:c6:d8:43:18:b8:29:75:3d:
48:40:d1:55:1a:90:6a:d2:79:9d:a2:ad:73:e6:2b:
ce:ef:e6:dd:19:3a:d4:91:b2:7e:90:b7:fe:8c:6b:
31:6d:27:a2:6e:43:6f:0c:f7:a2:4e:2c:68:31:25:
14:38:46:a3:81:a1:86:d8:a0:42:81:bf:94:d4:f1:
cc:3e:40:d4:c8:76:5e:55:cb:f5:21:12:ae:57:bf:
4e:0b:07:34:15:a0:2f:04:d2:ac:a6:5a:cf:a4:df:
68:ed:57:fc:06:a4:ea:b6:da:03:be:81:0e:4d:9c:
71:7d:c1:a0:b1:19:ee:cb:5a:89:80:64:4b:b5:1c:
33:5c:9a:c2:d9:3c:00:0a:7d:e7:8a:b9:c3:10:1c:
ca:e3:d2:54:fb:ba:41:05:0f:74:dc:08:6f:e9:b7:
68:3e:dc:25:fb:a9:2d:2d:4a:99:6d:d1:0d:76:57:
c2:06:3d:f9:ec:a0:71:76:d3:66:da:c1:5f:31:a6:
c8:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DB:AF:10:0D:D5:24:6A:CB:42:C3:CE:D1:2C:D4:9B:E5:5D:3B:09
X509v3 Authority Key Identifier:
keyid:C1:BF:34:B1:90:A5:1C:E5:30:02:57:91:1A:F3:04:04:F4:95:1F:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:29:cf:97:7d:0a:ea:c8:46:25:c3:43:38:28:d0:db:31:92:
40:87:78:cb:c7:d6:75:e1:5c:16:51:59:5e:f0:24:af:e2:cc:
89:39:5b:3b:df:c6:00:9d:1e:04:32:4d:de:86:0f:bc:55:c2:
cc:e2:7c:23:27:18:5f:90:1c:3f:79:a1:5f:26:bf:f8:24:31:
b0:1c:aa:cb:c6:b1:0e:b4:8e:6c:2b:5d:5a:e3:6e:b9:79:b1:
94:9d:bf:5c:3d:33:60:6b:a4:36:e2:a1:8e:97:c9:ea:6f:cd:
b8:5d:02:02:d9:a6:9c:84:48:aa:a8:33:bf:dc:46:77:6e:14:
bd:ee:02:9a:2b:98:4b:c4:7e:72:f7:b1:6c:9a:95:4c:18:2f:
d9:96:03:44:0c:af:6f:e8:f7:f4:68:23:97:3e:31:ff:2f:69:
6c:62:b3:fc:57:2f:54:a9:6d:ee:ff:a9:de:6e:a8:fe:37:00:
58:54:28:11:48:09:3a:c5:d6:d5:52:79:a4:f6:94:46:cd:38:
48:97:60:cf:62:83:e5:e3:44:87:78:76:83:33:05:1d:e0:61:
8e:1f:bd:8b:69:c4:22:78:75:d3:f8:39:25:a7:0e:64:a3:69:
05:3c:c2:7a:53:b4:05:8f:c8:3c:31:9c:ed:e6:1a:5f:d2:fb:
cb:ed:2e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:49:04 2025 by rpki-client