Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
File: cKdpKcviHO3ZTAErpYuwtvEpci4.mft (raw, json)
Hash identifier: UTzuXrXyq8624CbK3ZvRgUV6uNwmb+vOepoEPJVCip4=
Subject key identifier: DD:1C:7A:E5:65:0D:04:2A:D1:9F:F0:6A:63:C7:2D:70:F7:AD:C1:32
Authority key identifier: 70:A7:69:29:CB:E2:1C:ED:D9:4C:01:2B:A5:8B:B0:B6:F1:29:72:2E
Certificate issuer: /CN=70a76929cbe21cedd94c012ba58bb0b6f129722e
Certificate serial: 0198D54E17EECF2D2964C636E7AB623A73AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 05:02:01 +0000
Manifest this update: Sat 23 Aug 2025 05:02:01 +0000
Manifest next update: Sun 24 Aug 2025 05:02:01 +0000
Files and hashes: 1: cKdpKcviHO3ZTAErpYuwtvEpci4.crl (hash: pb7rHXfUSsItFcVE48fhTU+8kScl5xE7/OURJ+pe4DY=)
2: inuScwE1S9lEULUDFOPt0YYBMRU.roa (hash: hvD+jjYBAY5jZaJA8u8QgEl8M7kubkCEj9ntL0iNAX4=)
3: jP0oG4-lTwdPgvwQsai3xzsKBUA.roa (hash: cwxrU32A7FjEaD6Xb0+naWkVMI0iVDnV1C3ohgsG2Sc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:17:ee:cf:2d:29:64:c6:36:e7:ab:62:3a:73:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a76929cbe21cedd94c012ba58bb0b6f129722e
Validity
Not Before: Aug 23 05:02:01 2025 GMT
Not After : Aug 24 05:02:01 2025 GMT
Subject: CN=dd1c7ae5650d042ad19ff06a63c72d70f7adc132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:92:d7:f9:ef:9c:25:57:26:95:9a:ce:8b:54:
3d:22:a7:fb:70:f5:9b:7d:c7:a2:1a:94:6d:d1:33:
df:a9:01:07:ad:9b:b8:1b:d4:d2:fd:0a:e9:4f:c3:
88:96:7c:47:62:f5:ae:cd:75:45:92:61:ce:85:cc:
ac:02:ef:24:59:4b:b5:00:39:ba:94:83:84:f9:8b:
a7:3b:8e:4a:2e:11:4b:90:32:26:28:62:bd:ed:1a:
3c:d8:78:2a:69:69:53:0b:a6:27:24:e9:f7:38:bd:
d9:5e:1b:28:93:ab:59:07:49:c3:cf:bc:b0:7b:c5:
46:b7:70:3f:23:e2:e6:63:68:3e:20:af:c2:ff:12:
3b:93:1e:7a:01:dd:6b:6f:d6:b6:3c:0c:8b:a8:23:
c6:fd:86:ef:00:b3:da:b0:29:5b:52:1c:7d:7e:b4:
e8:9e:b7:e7:3b:51:c0:72:80:ba:81:e8:cd:d9:f2:
26:2c:cc:b2:a3:9d:b9:d5:7a:15:37:7b:65:02:e7:
cd:81:5b:34:73:cc:3f:a7:94:9b:6b:09:e9:2c:3d:
ad:9e:33:2b:95:78:fb:a8:be:0b:ba:5d:a5:58:42:
51:61:f0:36:68:8e:6f:d7:55:b8:94:5a:e9:2b:a9:
41:d5:fe:bd:8b:3c:49:3d:0b:67:e2:72:66:76:75:
5d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:1C:7A:E5:65:0D:04:2A:D1:9F:F0:6A:63:C7:2D:70:F7:AD:C1:32
X509v3 Authority Key Identifier:
keyid:70:A7:69:29:CB:E2:1C:ED:D9:4C:01:2B:A5:8B:B0:B6:F1:29:72:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:16:f6:26:ef:99:56:c8:7a:71:c9:e2:39:6f:bb:cf:cb:4e:
78:9e:6e:12:e3:93:83:c0:47:01:d6:6f:1a:5a:b9:40:ff:1f:
98:65:82:23:84:e8:99:8a:95:78:18:56:43:67:64:f1:a1:ad:
f1:90:d4:07:c2:44:80:04:94:4d:11:04:3d:e1:12:b0:63:49:
b4:72:8e:46:ed:54:50:da:a1:12:86:43:31:8c:b1:ca:77:14:
10:b3:ca:f2:8a:0a:1f:c9:42:01:e2:c4:07:41:75:6f:31:17:
07:d3:4b:a6:1d:2d:01:06:27:dc:d5:0f:71:7d:8b:e9:82:9a:
0a:39:32:71:c8:56:9a:ae:d4:e1:8d:68:63:7e:82:c9:1c:18:
8b:f3:7c:3c:96:ef:58:fc:fa:3e:55:86:40:7f:1c:4b:09:e7:
62:56:5d:e2:d8:c4:04:3c:99:8e:da:d1:2e:af:d4:3f:98:6b:
8a:dc:d7:8b:3f:e5:79:b2:3c:f8:76:42:e0:a1:2c:be:8a:4c:
4a:bb:7e:34:82:08:e7:e6:0f:19:f9:2d:65:21:cc:a2:08:5f:
80:73:48:71:eb:8d:48:10:4d:e8:72:cf:09:d6:68:a3:b2:1d:
ce:35:00:b7:86:37:3f:de:74:65:3b:dc:bc:a4:8e:23:df:8d:
03:79:c1:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:29:49 2025 by rpki-client