Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
File: dr5GHrn3AE8poX_d3-8uLqBeua8.mft (raw, json)
Hash identifier: xnRkPIlUU5DaS88QfIfNugP4JkUZxQyhDVj0qPmvsbE=
Subject key identifier: BA:6F:BF:8B:87:02:D6:E6:1D:62:48:F7:C5:A9:00:B6:ED:C4:04:A3
Authority key identifier: 76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF
Certificate issuer: /CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af
Certificate serial: 0198D583B4BE8B057A64840E3E2A30C384A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
Manifest number: 15DE
Signing time: Sat 23 Aug 2025 06:00:35 +0000
Manifest this update: Sat 23 Aug 2025 06:00:35 +0000
Manifest next update: Sun 24 Aug 2025 06:00:35 +0000
Files and hashes: 1: SmenFq2eO29wVInO8xQQnEozH4M.roa (hash: NLqfCsW+19ubwmofae6n/UEN1RfOh4ZI/s4/YAFk4k4=)
2: dr5GHrn3AE8poX_d3-8uLqBeua8.crl (hash: uazMWpIJRyYES+F2KPlW3v/pbShyZeWq48/+ZwRYfkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:b4:be:8b:05:7a:64:84:0e:3e:2a:30:c3:84:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af
Validity
Not Before: Aug 23 06:00:35 2025 GMT
Not After : Aug 24 06:00:35 2025 GMT
Subject: CN=ba6fbf8b8702d6e61d6248f7c5a900b6edc404a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8d:f7:09:d3:b2:24:a1:e8:de:3e:df:c6:7c:
e9:f7:df:b3:63:91:f6:02:e6:74:34:00:3b:73:64:
55:7b:6d:81:d1:c9:de:a2:9c:2b:cb:6f:57:68:63:
fe:b1:13:f0:c7:1a:0a:1f:3f:2a:0a:0f:c9:6e:90:
cf:f8:7c:dd:d2:8c:83:c4:c0:a0:49:d1:6d:3f:7c:
57:33:5a:fa:e1:73:5a:a7:9f:24:b3:6e:1c:6f:d4:
a0:d9:0f:10:64:2d:72:f7:63:43:b0:b5:86:c4:73:
97:f7:a9:d2:bc:e8:2b:d4:25:5b:8e:19:ef:27:5d:
cd:bc:ee:06:4a:05:e9:4c:13:f0:39:21:23:6e:ab:
b2:a8:d5:88:c8:a0:cb:e2:67:88:dd:19:ec:ca:a9:
de:19:a7:af:a2:9a:4d:7b:dc:85:db:11:83:9a:08:
b0:9f:ee:61:42:bb:98:da:eb:21:9c:fb:09:2b:dc:
de:ea:d0:42:e0:cc:b9:29:42:99:18:48:bc:00:42:
3a:54:84:0f:ed:94:2a:cf:08:c3:b9:93:a7:83:22:
c7:c1:b8:22:47:93:9f:93:05:fa:41:3c:d5:ff:d5:
0f:c5:07:5c:9d:6e:42:4f:81:52:b6:15:8b:c6:da:
3a:8f:77:e4:64:9c:e0:b2:e1:7d:e6:46:44:6b:b3:
e4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6F:BF:8B:87:02:D6:E6:1D:62:48:F7:C5:A9:00:B6:ED:C4:04:A3
X509v3 Authority Key Identifier:
keyid:76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:ee:a4:b0:94:49:74:3d:e3:43:a7:5f:2a:76:6b:e8:ed:86:
23:94:bd:22:b4:a8:b6:cc:69:bb:70:fa:40:c4:35:ef:17:c6:
b8:f6:09:55:39:fa:81:75:64:6c:bf:c7:af:98:41:ae:fe:4d:
dc:f5:c4:c9:ef:96:41:3d:f7:70:58:4c:75:1d:5f:ee:aa:72:
aa:da:5b:2a:b7:01:31:8a:09:54:11:34:49:3a:8c:a7:10:14:
e3:84:39:33:6e:08:99:ff:27:18:42:b8:7c:23:35:60:35:d0:
ee:e5:5c:94:31:75:4b:42:9f:9f:93:f0:e6:dd:67:92:1a:88:
a2:ee:86:f7:ba:32:7c:67:73:be:2e:57:ab:1b:41:d1:83:e0:
ba:b7:e2:99:44:cd:1c:ac:39:48:e9:a3:a0:13:0b:30:2b:a3:
e3:e1:64:17:50:1d:9e:b1:92:66:73:4c:2c:fd:3b:f9:fd:eb:
b1:89:44:44:67:9f:b5:ff:03:94:31:f6:1b:66:8d:17:78:bc:
22:af:81:c2:40:23:ed:97:8e:08:ea:39:82:5e:82:68:71:63:
8a:54:0a:0e:fe:70:06:d3:65:27:4e:a3:4f:4f:08:9a:85:60:
8a:90:9e:8c:42:84:bc:54:ae:67:15:67:22:5c:2c:f5:1a:32:
6d:27:95:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:09:29 2025 by rpki-client