Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/79e61d-9afb-4d55-94a4-4e4a5065594a/1/DWisydbqg0IUE-TPWgc3-sMXNSo.mft
File: DWisydbqg0IUE-TPWgc3-sMXNSo.mft (raw, json)
Hash identifier: 2ts7lp6g2kY7HsQiBHAmOhd/EjVqVi9VJTf1r7lFDEE=
Subject key identifier: 73:07:82:89:7E:3D:ED:6D:A9:5D:53:60:7F:67:5E:B5:15:CE:5B:60
Authority key identifier: 0D:68:AC:C9:D6:EA:83:42:14:13:E4:CF:5A:07:37:FA:C3:17:35:2A
Certificate issuer: /CN=0d68acc9d6ea83421413e4cf5a0737fac317352a
Certificate serial: 0198D583DB921629BEDADE4ED90406520747
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DWisydbqg0IUE-TPWgc3-sMXNSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/79e61d-9afb-4d55-94a4-4e4a5065594a/1/DWisydbqg0IUE-TPWgc3-sMXNSo.mft
Manifest number: 037B
Signing time: Sat 23 Aug 2025 06:00:45 +0000
Manifest this update: Sat 23 Aug 2025 06:00:45 +0000
Manifest next update: Sun 24 Aug 2025 06:00:45 +0000
Files and hashes: 1: DWisydbqg0IUE-TPWgc3-sMXNSo.crl (hash: igvnSqRA7di2s5T0XUL25FMOq8RDlBWtd7UU/zA0sL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/79e61d-9afb-4d55-94a4-4e4a5065594a/1/DWisydbqg0IUE-TPWgc3-sMXNSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/79e61d-9afb-4d55-94a4-4e4a5065594a/1/DWisydbqg0IUE-TPWgc3-sMXNSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/DWisydbqg0IUE-TPWgc3-sMXNSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:db:92:16:29:be:da:de:4e:d9:04:06:52:07:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d68acc9d6ea83421413e4cf5a0737fac317352a
Validity
Not Before: Aug 23 06:00:45 2025 GMT
Not After : Aug 24 06:00:45 2025 GMT
Subject: CN=730782897e3ded6da95d53607f675eb515ce5b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0d:06:8b:30:c0:11:8f:7c:2e:48:20:fc:9e:
6c:e9:8f:04:80:e0:40:ac:04:8e:11:b6:d5:45:2f:
da:dc:c4:b7:47:1c:0f:fe:38:52:2e:ce:4a:03:d3:
b2:ac:c5:c4:4e:10:53:37:fd:da:07:fc:d1:4f:f3:
39:70:a9:8b:74:51:03:4c:96:2d:52:82:17:ad:f3:
ae:f6:85:3f:79:55:a7:38:aa:54:f5:ef:73:d4:25:
97:2c:ec:a7:58:e4:0b:e1:16:37:18:d5:6a:5e:4f:
78:8f:1d:7d:20:02:e2:ef:37:b0:cd:b3:2a:ae:d6:
00:f8:01:e1:11:ba:02:5d:c4:a1:0f:0f:a0:bc:99:
f0:b3:b0:14:cd:aa:94:5d:a7:b0:44:3f:fd:b3:06:
1e:26:ce:df:c5:85:c3:48:c5:c8:77:06:48:d3:85:
94:59:92:ac:63:03:7e:0c:95:4f:05:3c:61:fa:2a:
49:f2:0d:60:8b:7d:bd:bc:84:0e:ce:87:b0:df:09:
dd:af:b3:05:19:8c:a9:87:5f:ae:f8:05:97:b3:6e:
a5:46:e8:70:1e:18:96:19:1d:59:78:6a:8b:a2:cc:
f0:85:bd:3d:c1:50:93:c4:9f:42:11:c3:50:62:6a:
93:a3:dc:e6:0b:71:1e:6c:f1:14:aa:60:81:5c:05:
c5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:07:82:89:7E:3D:ED:6D:A9:5D:53:60:7F:67:5E:B5:15:CE:5B:60
X509v3 Authority Key Identifier:
keyid:0D:68:AC:C9:D6:EA:83:42:14:13:E4:CF:5A:07:37:FA:C3:17:35:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DWisydbqg0IUE-TPWgc3-sMXNSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/79e61d-9afb-4d55-94a4-4e4a5065594a/1/DWisydbqg0IUE-TPWgc3-sMXNSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/79e61d-9afb-4d55-94a4-4e4a5065594a/1/DWisydbqg0IUE-TPWgc3-sMXNSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:14:ed:08:89:54:f3:be:93:22:5e:0c:3c:63:cb:9c:e3:cd:
ee:6b:fa:21:6d:7d:30:6e:3b:6c:69:ed:b8:b8:ab:41:05:85:
69:35:f0:c6:3b:ac:0f:f4:d6:1b:62:57:db:1a:c6:db:d8:2b:
42:62:9a:43:24:99:7d:0d:a6:63:8a:c7:af:7a:50:8b:81:c9:
6d:01:46:82:2a:dd:1c:d6:d7:6e:e2:10:9b:8f:26:7e:2c:18:
30:e8:d2:e4:b1:ea:f4:7b:ea:1c:fd:ff:b0:70:16:65:e7:06:
34:c4:3a:57:c3:49:42:b9:dc:75:3a:16:86:c5:bb:f7:35:79:
83:e3:f5:4a:5a:cc:cd:1d:81:b4:d6:89:bf:4e:da:44:12:f6:
64:d3:9d:36:a0:71:4f:5a:a6:a1:d5:b2:61:9b:6b:6f:88:3c:
39:76:11:dd:48:5f:d1:6f:72:c0:68:a0:56:24:5e:e6:82:59:
86:ec:64:00:8b:d8:33:72:65:f3:06:c7:9f:c0:eb:d0:ca:59:
c3:f1:17:5d:30:17:52:21:5d:5f:35:7a:0d:7d:af:f5:46:b9:
9d:dd:33:de:e8:db:5a:80:1e:31:62:2e:f5:7a:49:24:11:49:
35:46:88:21:2d:3e:b1:c9:39:62:2b:27:2e:7f:fb:cf:61:f0:
23:8e:8d:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:42:42 2025 by rpki-client