Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
File: De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft (raw, json)
Hash identifier: qp2V6iazqOyEAgsLHoMclJC9Px0wf/Cx+sRr7G9WkXE=
Subject key identifier: EE:81:B7:B2:A1:8C:A3:DB:19:44:BF:6F:C8:C7:F1:A5:07:AC:8A:4F
Authority key identifier: 0D:ED:66:D2:C5:A4:93:A0:95:34:35:7E:5C:A2:6F:03:D1:A4:DD:D4
Certificate issuer: /CN=0ded66d2c5a493a09534357e5ca26f03d1a4ddd4
Certificate serial: 0198D65FCF867D514A43603267B929CC613E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
Manifest number: 0A37
Signing time: Sat 23 Aug 2025 10:00:59 +0000
Manifest this update: Sat 23 Aug 2025 10:00:59 +0000
Manifest next update: Sun 24 Aug 2025 10:00:59 +0000
Files and hashes: 1: 7XdSGfevcJJsevy7fOceWvja7nc.roa (hash: 738FMMf7Atyvq/JMYg2GIhaCbgWHQKUbxrDxkyANCA8=)
2: De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl (hash: 5Ioxpu9Uf5ZWjGMTwOYb0n5xAGGEaamcsZJSkvZSn7A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:cf:86:7d:51:4a:43:60:32:67:b9:29:cc:61:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ded66d2c5a493a09534357e5ca26f03d1a4ddd4
Validity
Not Before: Aug 23 10:00:59 2025 GMT
Not After : Aug 24 10:00:59 2025 GMT
Subject: CN=ee81b7b2a18ca3db1944bf6fc8c7f1a507ac8a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c9:16:f4:63:1e:da:24:80:08:41:42:a3:37:
ac:5c:60:8c:a7:b8:ab:85:70:5f:0a:d3:21:14:d8:
cf:3f:fe:8d:00:4e:d5:66:1d:6d:32:7f:c5:c2:bc:
f3:f0:ea:79:48:d0:c1:27:df:55:38:21:e9:57:35:
96:e3:35:4d:3c:d5:87:ac:48:6b:48:15:67:45:55:
4c:06:fc:32:44:ea:db:ee:4c:ca:b1:c9:cf:05:6e:
af:c0:24:e1:45:8f:09:01:87:2a:16:d4:2c:d5:e0:
3d:5d:8c:c6:64:77:65:85:6e:e3:b2:d0:54:e7:74:
4f:68:61:1d:96:96:ef:cc:a7:56:9d:1b:ce:ae:66:
50:45:36:44:b0:e5:35:24:b6:40:c1:d1:9a:e3:55:
05:6f:fc:72:cb:b1:6d:48:14:91:bb:67:25:8a:ec:
ab:f0:57:17:54:2a:10:46:40:5a:a4:38:00:1d:44:
f6:1a:46:3d:78:88:2c:b1:23:71:88:25:bf:2e:f3:
a4:73:50:d5:be:fa:29:aa:ff:50:70:35:bd:b7:9f:
2e:ec:f1:36:95:f0:f4:5e:95:c7:a9:06:78:1d:c4:
b4:05:9a:2b:57:28:ad:d9:b7:61:b2:9b:05:76:d1:
7d:77:5e:5f:e7:f8:01:c9:9f:c7:27:19:4d:8e:1a:
74:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:81:B7:B2:A1:8C:A3:DB:19:44:BF:6F:C8:C7:F1:A5:07:AC:8A:4F
X509v3 Authority Key Identifier:
keyid:0D:ED:66:D2:C5:A4:93:A0:95:34:35:7E:5C:A2:6F:03:D1:A4:DD:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:da:8a:0a:a9:86:79:65:09:13:08:69:a4:43:ef:e9:a8:04:
30:d2:14:9e:b0:92:f9:f2:e9:2a:08:c0:3d:d7:09:07:19:61:
6e:d7:e2:1d:53:7f:ef:55:53:9a:a7:c3:10:dd:67:89:9d:8e:
ea:39:2a:c7:14:4b:41:51:b7:85:cf:d9:b0:25:6c:f1:d0:62:
9d:b1:b9:f5:02:19:4a:31:35:63:ae:11:b3:88:b6:44:3d:d7:
71:cc:14:3f:d0:85:18:6e:65:33:3b:bf:8f:b3:41:1a:28:92:
74:29:64:08:ac:64:23:c7:a1:e7:11:8c:82:08:93:52:8f:dd:
22:60:64:b0:b8:b6:c1:4a:5b:ee:49:c6:4a:7e:f9:a0:0d:4f:
00:7e:ee:bf:6b:bf:69:77:54:94:14:c1:f7:58:e3:d4:77:0c:
8d:95:91:7d:8c:7a:40:86:fc:19:8e:45:44:7f:2a:69:5e:c2:
da:df:d2:74:59:cb:ae:4d:bc:2d:97:7b:1d:31:d0:5a:84:1c:
b5:64:6f:3c:b7:59:cc:c9:3c:7a:19:74:64:a5:ab:55:24:d0:
18:6b:b9:9f:23:07:f0:9c:58:6a:9e:7e:c2:bd:3b:fd:c6:b4:
36:9b:cb:7b:0b:52:33:74:11:64:ed:24:62:5e:de:08:d2:4e:
6d:38:e4:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:06:47 2025 by rpki-client