Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: 8uxF1UVFd2jgJ9xhQki/L8mT5cBooEyaPu/BYdWcOwc=
Subject key identifier: C6:5D:62:01:AB:DF:88:16:F0:37:2E:82:23:65:EE:6A:9D:E7:28:BA
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 0198D5BBF3703F1E92FB523F3A4589DF53D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: 0155
Signing time: Sat 23 Aug 2025 07:02:01 +0000
Manifest this update: Sat 23 Aug 2025 07:02:01 +0000
Manifest next update: Sun 24 Aug 2025 07:02:01 +0000
Files and hashes: 1: ZZ126kZc2Gs9amlt5Rc0VmUZOPw.roa (hash: laA9ImB0VtnpNlOC8RmvM5URSIvzaqpg8ewZvS5hOLw=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: xtHW2/+JViaL6Ru61Ca7dKHr0a0bCXYPMuE98OX2q0U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:f3:70:3f:1e:92:fb:52:3f:3a:45:89:df:53:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: Aug 23 07:02:01 2025 GMT
Not After : Aug 24 07:02:01 2025 GMT
Subject: CN=c65d6201abdf8816f0372e822365ee6a9de728ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6d:d7:c7:df:98:9a:a5:b3:23:c9:ff:07:13:
7f:90:ee:75:a1:25:24:ad:2b:d4:4a:e7:f1:8b:fe:
75:25:05:0c:7b:d3:1e:44:1f:dd:35:86:bd:ac:77:
1e:c0:94:3c:91:e2:c9:59:12:58:17:f7:cc:20:1e:
f6:97:b5:0b:1d:a0:d3:f2:97:81:37:fe:ca:5b:9b:
47:a7:fd:0d:80:77:81:1b:51:0c:1c:62:1d:32:85:
da:87:f7:c8:cf:3c:c1:c6:04:4a:86:a9:f4:62:b8:
84:53:a1:3b:20:49:f5:19:77:e2:bd:3b:b4:88:f3:
24:44:a0:7e:e9:9b:0f:2b:d1:33:be:8c:90:ba:71:
c3:fb:4a:36:0f:21:05:fe:50:73:1d:23:a4:88:70:
a7:67:bb:18:71:80:e3:50:d0:85:7b:3d:c3:a2:6c:
96:c6:79:ca:ba:58:e8:bd:83:c3:5d:e1:14:ca:6b:
ec:dd:ee:b4:c1:cc:f5:9c:0d:ae:7a:5a:a4:88:07:
a5:87:3b:9b:3c:b4:5f:e4:49:3d:27:ae:45:65:d3:
2c:73:78:3d:67:1f:69:be:d1:24:4a:03:8c:e7:49:
33:a4:7d:54:06:37:d6:81:0d:d6:e3:9e:6c:6a:d6:
ac:ae:ab:49:cd:a3:96:82:85:2a:9a:07:f2:13:a6:
87:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:5D:62:01:AB:DF:88:16:F0:37:2E:82:23:65:EE:6A:9D:E7:28:BA
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:cb:52:e6:bf:e4:0c:49:2a:fd:26:35:a2:86:9e:87:b9:8f:
6b:3a:46:13:a1:06:c0:fb:85:71:29:02:a8:bd:00:a9:6d:76:
81:90:91:5e:eb:44:eb:28:9e:92:82:2a:32:c7:de:af:36:b1:
70:75:1b:ed:4b:11:1f:33:af:e1:b2:2c:45:06:c1:77:fb:10:
85:0f:ed:86:52:8d:55:84:30:4d:94:01:49:d9:16:37:b4:2b:
24:2b:20:08:a1:33:4d:7c:50:48:b8:52:0d:16:44:1d:2f:8d:
2c:59:0c:fa:47:c3:a6:32:a9:d5:fc:3e:98:60:cc:35:38:62:
3b:c9:09:ff:f5:fd:25:61:5e:2d:b6:5c:8d:6f:f6:ea:2c:cf:
a7:bf:d1:d1:1b:22:99:c2:1e:27:92:10:23:a2:1d:fc:83:f7:
e6:4b:ca:bc:89:4e:12:f0:9c:bd:16:ea:8e:c7:e6:1d:f1:fe:
78:ab:e6:6b:9e:35:50:f8:39:89:a9:ad:3c:94:cb:fe:7b:1f:
ee:c1:c9:d8:d9:04:9c:c9:60:ec:d5:7e:2f:e3:80:97:ac:5c:
a2:20:96:f2:d7:2b:dc:c0:e9:ee:88:5b:47:e0:24:d3:c0:ca:
18:72:8e:3a:65:ea:78:d7:ea:4b:b7:58:07:24:ae:d7:48:1f:
42:74:45:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:51:18 2025 by rpki-client