Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
File: DkTxM_OHWTqvor6rOIhJBPrJvRk.mft (raw, json)
Hash identifier: eNUt5ngkq8k4HAqPe3Yc6btLeGMi9QlYNURCu0+snb8=
Subject key identifier: 92:B2:4F:74:26:2C:6E:E0:28:30:B0:26:86:17:36:2A:42:B7:DB:C3
Authority key identifier: 0E:44:F1:33:F3:87:59:3A:AF:A2:BE:AB:38:88:49:04:FA:C9:BD:19
Certificate issuer: /CN=0e44f133f387593aafa2beab38884904fac9bd19
Certificate serial: 0198D54E802DBFE541C44249599C1CAEE3DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
Manifest number: 02D5
Signing time: Sat 23 Aug 2025 05:02:28 +0000
Manifest this update: Sat 23 Aug 2025 05:02:28 +0000
Manifest next update: Sun 24 Aug 2025 05:02:28 +0000
Files and hashes: 1: DkTxM_OHWTqvor6rOIhJBPrJvRk.crl (hash: s0OuJ/R7zwcHA+VFg5e4I7qlseOHCON9ydppL1LHAxE=)
2: Wiv0DHdRF2zh8D5DY6J3_PLSV6Q.roa (hash: /xs5AGgsSlLOCnLD+1aaT+DfL+K36ivL9muQHygs7c4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:80:2d:bf:e5:41:c4:42:49:59:9c:1c:ae:e3:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e44f133f387593aafa2beab38884904fac9bd19
Validity
Not Before: Aug 23 05:02:28 2025 GMT
Not After : Aug 24 05:02:28 2025 GMT
Subject: CN=92b24f74262c6ee02830b0268617362a42b7dbc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:14:76:05:3d:42:17:5e:c3:d6:82:fd:6b:e7:
d9:3e:cf:60:10:60:d6:5f:91:94:a5:9e:5c:fd:e9:
51:ef:78:67:aa:22:a8:c1:b7:b6:71:8d:c4:41:5d:
82:e1:6d:6b:65:38:14:21:a4:fb:d9:91:bc:0f:9a:
c0:fa:30:2e:a2:f5:18:a3:ba:b2:3d:8b:db:f0:14:
1d:61:9b:94:c0:cd:9d:61:c0:cf:f6:1a:3c:69:d6:
98:0b:73:23:f8:82:1b:7a:e4:31:b8:36:6f:e6:82:
f8:83:8d:ed:7c:d5:95:ad:3e:d4:df:6c:4b:e9:6e:
e5:ce:ae:ef:53:b8:f5:2d:d9:e2:df:9e:89:46:ac:
8a:7d:18:b9:50:9f:93:65:1c:f1:1e:4a:76:60:17:
96:d3:67:91:72:3c:0e:ac:c1:78:0a:f3:cf:2f:3c:
ed:f3:80:03:3c:65:53:02:bb:64:df:dd:72:1d:68:
79:5c:a8:9f:da:ca:ff:d1:e4:10:4e:78:04:45:ac:
72:9f:59:26:ad:b1:3b:e0:48:2c:ef:b0:09:11:25:
ad:19:ba:ba:f8:71:48:95:8b:7e:8d:e4:9d:92:50:
a4:55:70:8e:56:41:cc:22:85:0b:6a:d3:4d:51:e0:
82:ab:cf:cb:88:93:81:cb:f5:00:04:53:dd:cf:cc:
7d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B2:4F:74:26:2C:6E:E0:28:30:B0:26:86:17:36:2A:42:B7:DB:C3
X509v3 Authority Key Identifier:
keyid:0E:44:F1:33:F3:87:59:3A:AF:A2:BE:AB:38:88:49:04:FA:C9:BD:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkTxM_OHWTqvor6rOIhJBPrJvRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0b68dc-c5c9-40dd-9d8f-dbff0ee1e09e/1/DkTxM_OHWTqvor6rOIhJBPrJvRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:ee:ba:c5:2a:7b:11:09:09:64:21:2e:8c:b8:db:96:60:d6:
f5:e9:8a:f8:09:d2:9b:42:68:d8:a5:4c:07:34:c4:1a:51:35:
b0:6c:d2:12:32:04:2b:6d:3f:78:d1:cb:8d:98:ef:92:c1:22:
d6:b6:8e:72:ae:64:86:03:2d:6f:37:3c:c3:17:9c:2e:d3:59:
f2:95:e2:2f:d6:14:01:0a:94:f3:95:8a:45:f9:60:39:b0:ec:
a4:9e:15:4b:52:e4:ab:b8:7a:95:dd:a3:78:0a:f4:f7:c9:2e:
38:be:3c:87:31:c8:43:b7:30:a6:f1:ce:f4:f5:69:07:e3:66:
9f:00:c5:f3:82:c2:c6:71:b6:92:a7:f7:0f:5b:33:a4:ce:c9:
19:2d:4a:dd:2f:84:3c:54:69:f9:cc:73:83:9c:b8:e5:32:99:
87:52:a3:d6:77:9b:29:9d:41:10:69:d3:a2:17:7a:ac:bc:c7:
1e:02:7e:88:39:c9:ed:f7:64:91:8d:bc:0b:6c:f1:55:f7:be:
25:b1:98:a0:ed:21:a9:d0:25:6e:91:2a:a4:b9:e4:3c:5a:a0:
31:c6:35:b0:ff:c6:ef:4c:bf:91:fe:ad:77:fa:63:19:15:62:
51:1b:44:6e:5c:17:fe:b6:d6:6b:df:13:c3:b8:b2:1f:aa:9e:
27:37:a5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:07:00 2025 by rpki-client