Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
File: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft (raw, json)
Hash identifier: BJKJQ3t0TCUrC7hf8KTTOO1pQq8ItCU076lTUv4HVPk=
Subject key identifier: 69:96:53:C1:24:D0:B5:49:02:4D:B8:5C:45:5F:91:91:2E:96:1B:7E
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 0198D5BB95ACBB9878C32BFEEA7B40692B20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
Manifest number: 1669
Signing time: Sat 23 Aug 2025 07:01:37 +0000
Manifest this update: Sat 23 Aug 2025 07:01:37 +0000
Manifest next update: Sun 24 Aug 2025 07:01:37 +0000
Files and hashes: 1: 22MFoiE6iwEXKG4ff-0g9Nk9e6k.roa (hash: 8ZAHeiN8JfpnEbf0xNsrPzSUL91MdaXwePhbLZYQBGY=)
2: 63R1CqkRJzCBTqXm_kqr_6UGOC4.roa (hash: QovmpL/thOh4yKhjTn4FNfnRr6OXEgupogya3Oy9KUE=)
3: AqlAoh2mHTGBQZiQ4Qu8bU198w8.roa (hash: QPQqaQ0W7/zxzqNuDuEf1YEVzGuiOziERZ9FXquvCOY=)
4: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl (hash: 7dYOSWx/T+fuexEgjqyIy5I5+Qq/bDgcUobONhcCcCU=)
5: JaRJ0VkgZY-pAOHUpfAksmRNPT4.roa (hash: uuAowSkk49o7aPUMDMEAR0rCVXNjJkNtV+Ttn8WfvGo=)
6: kGkGzImsb5Dv_nGgCWEXgWNc7do.roa (hash: x9SmJ5GmGF/t3I5NSMgnwkUR+oRC+nVpi/mDc40npw4=)
7: mpy8rjwhUPGfrwU4aNyK-9x9FBA.roa (hash: LExOCoVzbGwBygx3rcSIfApEZE8wTyOT0YOXpiy9v1U=)
8: qF-2BgBNvB9Rp0K_VFhuwpTNLrY.roa (hash: h4z+iViHaDAdXrYk5TZebHBt4+M5KGpzETHGgdp4Ztc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:95:ac:bb:98:78:c3:2b:fe:ea:7b:40:69:2b:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Aug 23 07:01:37 2025 GMT
Not After : Aug 24 07:01:37 2025 GMT
Subject: CN=699653c124d0b549024db85c455f91912e961b7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:79:58:90:60:4c:66:76:d2:4c:24:f5:c9:e7:
e0:f9:f8:9c:41:9d:60:79:f5:7d:15:76:7b:d1:d8:
4f:80:ec:e0:e0:c8:f0:f8:5d:16:ba:43:e5:75:e1:
c5:43:04:32:ac:1e:42:29:26:79:3f:6f:2f:93:df:
70:03:c9:f3:d4:af:d2:bb:ce:0a:65:78:1e:d5:b0:
29:28:82:49:0e:5e:e2:41:36:8b:d6:d1:94:12:25:
b0:fa:8e:41:39:6c:b0:3c:a2:17:02:2f:17:9b:58:
19:a2:36:c2:e6:8b:52:b3:0d:a0:0d:27:f5:20:13:
ae:22:66:72:19:b3:1a:83:f7:a7:57:3f:b8:ad:30:
f9:db:c8:58:0d:c9:83:37:d3:eb:99:ed:58:6c:b9:
62:5c:5c:90:59:1b:ce:17:86:fe:c2:9b:04:24:fb:
e2:72:6c:5b:56:d4:f5:74:7b:31:ea:6a:b2:6d:03:
77:51:b6:d7:57:85:f8:5b:95:20:6b:14:e2:00:e5:
2f:a8:27:aa:cb:11:54:4c:c4:ae:47:cc:49:92:24:
cf:b8:84:6e:04:9e:45:1f:b9:ad:66:64:8a:6c:65:
36:3c:a3:2d:c2:ef:a2:0b:c8:1b:87:be:6b:66:28:
45:f7:c9:35:ab:d7:61:a1:8d:35:00:8b:e0:b0:b9:
8b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:96:53:C1:24:D0:B5:49:02:4D:B8:5C:45:5F:91:91:2E:96:1B:7E
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:01:10:38:11:d6:58:20:9e:79:91:a9:70:a2:5b:d5:b9:8d:
b0:57:f5:c6:95:bd:35:f7:1e:ad:c8:46:85:a5:78:85:3d:5e:
2a:43:a9:9d:10:80:ec:6e:c7:98:f0:55:36:1c:e7:8f:04:ee:
8a:26:b0:95:94:2b:87:d2:02:a9:61:86:35:8a:29:d2:43:fe:
c7:d6:4a:ae:8b:5c:6e:bf:fb:60:45:78:8b:41:c3:7e:ab:8e:
11:05:8e:8a:d0:e5:c8:1f:95:3f:f2:c6:e5:7c:f3:a7:00:5d:
c1:fe:93:08:ac:6c:6d:fb:5f:bf:44:53:94:5d:ff:fe:6b:2a:
01:29:87:7f:46:0e:dd:f0:d8:4d:a7:ce:72:23:f9:08:60:77:
92:f4:39:49:40:67:2e:bb:70:69:9b:cd:a7:63:79:e1:ac:57:
8d:c4:98:02:96:86:19:09:3c:a2:e4:3f:6d:70:3b:28:35:ae:
57:83:f1:a8:26:d6:05:cd:69:71:5f:c5:cc:f8:07:b1:db:e8:
6b:8b:15:e4:be:53:56:ac:83:ae:69:e6:20:54:69:e3:02:af:
2e:aa:63:f6:97:b3:12:a2:1f:fa:77:56:9a:b3:61:8d:b4:e0:
85:c4:27:78:75:a0:ec:25:bf:b0:68:c6:fd:cf:ea:14:48:ec:
37:f6:e0:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:13:38 2025 by rpki-client