Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
File: dXFLWBraGW41UcCM52JDvgWLROs.mft (raw, json)
Hash identifier: 1RnD6djE5WZ2Y2o30jYUEFvfOmfSjhbukBH7ArndFRs=
Subject key identifier: D5:50:CF:3D:5F:7E:DF:47:13:26:32:36:03:30:C7:DE:00:90:F4:50
Authority key identifier: 75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
Certificate issuer: /CN=75714b581ada196e3551c08ce76243be058b44eb
Certificate serial: 0198D7736A5C5F71D664183EB12FEFBE9D2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 15:02:01 +0000
Manifest this update: Sat 23 Aug 2025 15:02:01 +0000
Manifest next update: Sun 24 Aug 2025 15:02:01 +0000
Files and hashes: 1: 0dwLJQRpdsuNfuiofPA4PjO0U8c.roa (hash: xvhwiBzc6sj9frR0O87jctOS5dj3sqKjh7OcpHO4MQo=)
2: dXFLWBraGW41UcCM52JDvgWLROs.crl (hash: cVL1D53kuPA0QyxhA8n6Klpzu/BLNyNzhBaUX0Ddrsg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:6a:5c:5f:71:d6:64:18:3e:b1:2f:ef:be:9d:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75714b581ada196e3551c08ce76243be058b44eb
Validity
Not Before: Aug 23 15:02:01 2025 GMT
Not After : Aug 24 15:02:01 2025 GMT
Subject: CN=d550cf3d5f7edf47132632360330c7de0090f450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4e:11:00:f0:f2:52:8c:b2:5b:89:dd:ec:96:
ae:f2:18:1c:67:9f:f8:f1:1d:88:40:85:77:6a:47:
76:21:95:67:88:9e:b6:7f:1b:f8:c0:22:32:84:ce:
50:76:db:b3:d2:18:47:68:a8:a2:10:3c:9f:5c:90:
0a:4a:10:24:26:07:22:82:2a:cd:26:25:45:40:0b:
46:c2:2f:41:7a:0d:fd:ef:0f:e8:fa:75:54:c7:3d:
c9:51:ab:fc:f1:80:1a:3e:67:21:d9:0e:33:e5:63:
b0:d1:59:49:24:8d:e3:9c:5f:f0:76:df:4e:1d:f0:
b0:8e:a5:2e:90:55:9e:40:80:fc:39:9a:af:86:bf:
f1:1a:61:62:23:0b:4d:2b:43:9e:31:04:8a:bc:c3:
b8:27:9e:f3:86:a9:03:a3:e2:46:d9:bf:29:46:14:
f8:13:35:a6:71:60:99:5f:a3:1c:53:99:3e:ab:38:
56:97:9a:cd:87:ea:a8:4b:c3:06:8e:2b:01:28:84:
fd:e1:66:41:87:89:8b:e6:10:23:5e:42:cc:05:ac:
e3:28:c2:85:a3:a2:e7:31:5b:7c:d0:f6:4e:49:f7:
06:2f:e9:7a:df:4b:5b:82:34:fe:4d:bd:3b:b4:5e:
39:6d:f1:9f:4c:d3:ca:4c:0e:1e:f8:6f:5b:8e:1c:
95:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:50:CF:3D:5F:7E:DF:47:13:26:32:36:03:30:C7:DE:00:90:F4:50
X509v3 Authority Key Identifier:
keyid:75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:d0:b7:21:c5:17:f8:94:0a:19:9a:f8:a9:2c:74:90:9c:62:
30:8e:6b:f3:88:20:ae:d0:e4:c7:13:7c:49:59:95:92:35:73:
f3:32:84:69:48:e8:54:a9:17:82:c1:40:96:e8:e7:38:4b:98:
e5:29:5b:fe:22:2b:5c:69:25:01:de:d0:e5:97:e2:04:81:3c:
a2:05:6c:14:ef:b0:54:bd:b6:46:2a:4f:7f:90:83:d9:7c:75:
88:4a:41:a5:30:f8:98:bb:e1:05:93:25:f9:97:b8:67:0d:40:
44:85:74:15:7b:bc:7b:72:2c:63:f9:53:be:26:8d:70:9f:b3:
e0:26:93:d4:7b:84:f6:b5:ab:81:a6:86:e1:e2:c3:af:c3:02:
45:2c:21:b7:be:9d:78:72:7d:27:e6:33:ec:72:73:cc:69:81:
c8:31:fe:73:20:32:7b:23:4c:fc:39:cd:03:6e:f1:0b:59:0c:
1c:76:ba:ee:f7:87:07:66:7b:13:b0:b6:23:76:f1:b2:20:67:
92:d4:2b:1a:62:e5:ae:a4:09:79:8d:2e:1b:9a:2e:42:ec:7c:
a6:15:25:3f:95:f9:5a:e2:99:01:0d:2e:65:45:95:1f:f2:20:
e7:2a:4b:69:4a:11:4b:62:16:45:d4:75:5a:36:e0:1d:47:67:
56:70:87:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:09:52 2025 by rpki-client