Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
File: wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft (raw, json)
Hash identifier: 0ZfoGl7K9aTeQclOeWFiPrSwSEsQUhurtRSEZBrIsnw=
Subject key identifier: 95:4F:CE:EF:A4:21:96:D8:60:E1:B5:56:8F:FE:74:63:B2:A2:0E:5C
Authority key identifier: C2:1E:32:D0:47:C5:D1:B9:E2:67:70:C3:84:03:04:CF:69:71:DE:1C
Certificate issuer: /CN=c21e32d047c5d1b9e26770c3840304cf6971de1c
Certificate serial: 0198D5BB8DE3787D2772B90E3BD7AFE937D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
Manifest number: 096C
Signing time: Sat 23 Aug 2025 07:01:35 +0000
Manifest this update: Sat 23 Aug 2025 07:01:35 +0000
Manifest next update: Sun 24 Aug 2025 07:01:35 +0000
Files and hashes: 1: 0YAlpXVId3LHx7bUr5xQcDkFv50.roa (hash: TFSQN0O8fIRBDFY4jZJFLp3OndkfiZIj1gXdcop7ZBU=)
2: wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl (hash: GuFq2EXXfGhROriMWQ7ka0Xo31YCPC4yGDugjtcR0q8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:8d:e3:78:7d:27:72:b9:0e:3b:d7:af:e9:37:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c21e32d047c5d1b9e26770c3840304cf6971de1c
Validity
Not Before: Aug 23 07:01:35 2025 GMT
Not After : Aug 24 07:01:35 2025 GMT
Subject: CN=954fceefa42196d860e1b5568ffe7463b2a20e5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f3:d3:00:a6:29:ec:68:c2:ab:36:1d:d0:54:
11:a1:b3:be:ee:45:35:f4:9f:1b:ba:eb:4b:44:6f:
78:fb:e8:e3:2e:6a:7e:b7:b0:dd:7e:0b:05:42:19:
64:68:56:7b:33:a4:41:21:3a:30:9b:f4:79:5b:70:
be:34:b9:a0:a7:f5:45:9e:fb:28:e0:73:fb:20:32:
21:01:78:09:48:60:07:33:5e:5b:08:a4:87:8e:73:
a1:d5:b4:f6:c2:05:6e:75:5e:77:a1:db:87:14:90:
5a:ae:79:35:ee:bf:b2:02:94:84:9f:7b:95:ca:ac:
9a:f9:f6:5e:c9:a4:fa:c4:0f:11:6c:3f:1b:4f:10:
82:04:93:97:db:a2:9b:a5:55:7d:0f:ea:f0:3b:1d:
58:32:a0:fc:12:aa:fb:bb:20:cb:27:4d:fc:bb:52:
bc:51:c5:f0:8b:d0:c3:b4:f7:ea:3f:a0:1f:bf:d5:
c1:64:f1:3b:67:23:2e:ce:d1:75:b1:aa:67:e4:0c:
18:b3:ef:49:de:e3:37:f9:ce:bc:8d:71:35:9a:c5:
17:de:2d:d0:64:2d:d0:c2:a3:69:43:18:98:3a:0d:
7f:6a:dd:2e:6b:6e:5c:29:9f:eb:cc:4e:b4:c5:0b:
38:f3:36:28:1c:5b:1e:fc:77:87:8d:fc:de:2b:8d:
5e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:4F:CE:EF:A4:21:96:D8:60:E1:B5:56:8F:FE:74:63:B2:A2:0E:5C
X509v3 Authority Key Identifier:
keyid:C2:1E:32:D0:47:C5:D1:B9:E2:67:70:C3:84:03:04:CF:69:71:DE:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:ed:35:9f:d0:3e:0d:62:5e:61:c3:fe:d0:95:d6:2b:5d:42:
2b:b0:8c:38:df:9f:1e:15:88:9a:e4:35:b6:f5:85:c1:86:3f:
40:82:50:4c:1a:68:65:9b:4d:22:2b:73:9e:9f:77:83:3b:25:
3a:9d:94:e0:28:13:39:4e:3a:02:ca:10:e6:50:9e:e1:9a:09:
f4:02:ed:38:6f:70:12:36:6d:42:a0:c8:3e:60:10:41:f8:a0:
68:73:aa:10:91:b6:4a:0a:0a:36:17:46:33:73:1e:44:9f:40:
e1:55:68:54:6e:fd:e1:aa:6d:a2:b6:00:6c:8d:f2:96:e1:73:
f7:46:d3:14:24:16:13:0f:59:85:67:2d:9e:d8:f4:67:03:e2:
73:f8:ed:c9:36:59:7b:09:7e:3c:60:4f:dc:87:1f:cc:95:f1:
4f:ee:45:67:af:7a:b1:b0:a5:47:3d:9b:e9:d0:4c:af:bd:6b:
bc:3e:81:c9:0d:6e:92:2e:74:9f:da:a5:f0:49:fa:c8:33:b7:
7a:c3:61:21:2a:76:e9:0b:fe:8a:e0:5a:31:0b:b6:fa:01:53:
70:d7:50:08:42:be:63:7b:e0:46:78:b9:69:00:d7:33:3c:91:
7d:20:8c:d7:80:49:0d:16:9b:ac:20:4e:34:07:db:f6:0b:50:
60:d0:49:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:48 2025 by rpki-client