Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
File: dr5GHrn3AE8poX_d3-8uLqBeua8.mft (raw, json)
Hash identifier: /NCddAif9N0JniEu+QXatFTY2bqRZktA7rOyE5xB1Fw=
Subject key identifier: 3B:DA:CD:8D:57:D6:54:8A:50:4E:76:85:2C:F5:CF:AE:4E:65:17:EB
Authority key identifier: 76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF
Certificate issuer: /CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af
Certificate serial: 0199FEEBD00810D3EBBA0FC2EC21A6F17846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
Manifest number: 1678
Signing time: Mon 20 Oct 2025 00:01:31 +0000
Manifest this update: Mon 20 Oct 2025 00:01:31 +0000
Manifest next update: Tue 21 Oct 2025 00:01:31 +0000
Files and hashes: 1: SmenFq2eO29wVInO8xQQnEozH4M.roa (hash: NLqfCsW+19ubwmofae6n/UEN1RfOh4ZI/s4/YAFk4k4=)
2: dr5GHrn3AE8poX_d3-8uLqBeua8.crl (hash: 6IllBDlKWYalyWvYgwyZCAdH/MPC7IF6r9CNPA2E8JU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:d0:08:10:d3:eb:ba:0f:c2:ec:21:a6:f1:78:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af
Validity
Not Before: Oct 20 00:01:31 2025 GMT
Not After : Oct 21 00:01:31 2025 GMT
Subject: CN=3bdacd8d57d6548a504e76852cf5cfae4e6517eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3e:15:fe:25:f8:eb:d5:35:5b:50:2b:ed:bf:
e1:96:78:2f:f9:5f:3d:1e:e9:25:b3:fd:2c:fc:80:
27:9e:53:70:f2:75:cd:7e:57:3e:b0:6c:6e:21:fe:
35:8e:9f:5a:d3:4d:7f:a2:c0:59:ff:6e:ae:7d:e0:
eb:43:bc:d2:04:13:47:e2:99:fe:e1:95:8a:99:c4:
75:bf:32:11:3a:3d:19:1a:7e:13:1a:fd:ec:8c:92:
e7:c7:dd:6e:64:f0:e6:7e:ef:c6:9d:61:77:20:48:
62:40:e8:20:2e:b3:41:f2:3d:14:18:48:90:85:ff:
e8:e7:aa:62:fd:6d:80:9b:af:89:d8:52:2d:c8:af:
fb:14:ef:45:af:f9:f2:07:90:04:91:af:26:c9:39:
ce:9c:86:22:a8:8c:d6:ed:be:b6:b9:f3:63:5b:3c:
31:db:6e:41:fa:94:2f:9e:95:ce:45:4e:a5:a6:9b:
65:e7:3f:e9:8c:ba:68:83:65:45:7a:66:ff:6e:62:
b1:28:f5:89:da:2b:04:01:15:fc:5a:93:a4:d3:06:
e8:59:eb:61:d8:85:e7:db:b4:3a:9f:fd:16:6d:45:
1f:a8:73:20:2c:5b:52:53:0c:da:c1:4a:e1:ec:6e:
04:43:42:28:68:b9:1b:56:da:18:a9:6a:d5:ea:d2:
2f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:DA:CD:8D:57:D6:54:8A:50:4E:76:85:2C:F5:CF:AE:4E:65:17:EB
X509v3 Authority Key Identifier:
keyid:76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:d0:01:c1:27:f8:92:ec:07:0a:b4:57:a3:cd:50:14:84:bb:
93:5b:b4:9c:e1:c9:a7:57:b8:b3:88:9a:da:69:1d:d5:60:0b:
00:bc:1b:a5:a2:27:48:89:e2:6d:27:7d:64:6e:24:ad:4d:a1:
57:4c:b7:27:2e:ab:ed:af:9b:0a:d9:26:63:89:1c:da:0e:2f:
6b:18:77:24:b1:20:94:ab:0f:71:0b:64:5c:88:56:93:c9:2c:
f7:76:e3:f9:fc:05:5c:d7:ad:b4:c4:89:99:a7:3b:57:48:2f:
a4:03:47:19:f7:b1:95:bd:c2:9f:34:3f:a8:81:11:67:74:54:
a4:0b:eb:8e:00:b1:b9:18:4d:20:10:2b:0e:cc:0f:90:1b:b3:
e1:19:84:30:1a:52:b3:0f:f3:97:ba:8f:72:48:79:b8:98:27:
13:67:66:63:0f:c7:35:46:ba:62:37:bc:bf:fd:5c:f8:81:68:
dc:8d:f5:bf:18:02:03:5c:19:ed:f6:3f:85:93:6e:43:bc:e1:
0a:bf:06:3e:16:a7:89:c6:d7:26:ec:51:34:af:99:be:e0:d1:
95:b3:dd:59:ea:24:ae:35:ed:d2:6b:85:36:91:b9:f2:a2:30:
b9:77:7f:84:17:0d:6d:77:2f:5c:a2:9e:44:d3:1f:27:4e:2b:
af:0e:53:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 06:20:45 2025 by rpki-client