Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.mft
File: d8Bx2YnlMJrDyzwLCNOsslIRErY.mft (raw, json)
Hash identifier: GAUK0O5Ue+2UKbMivTOJ/tNdDMm6wqwZYlnBlDCZnWo=
Subject key identifier: 6A:E8:48:D1:E1:D9:DA:B3:AD:17:91:E2:A7:BE:08:EB:71:54:20:0D
Authority key identifier: 77:C0:71:D9:89:E5:30:9A:C3:CB:3C:0B:08:D3:AC:B2:52:11:12:B6
Certificate issuer: /CN=77c071d989e5309ac3cb3c0b08d3acb2521112b6
Certificate serial: 0198D73BE2AE0BE199A6F026AEF872218C75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8Bx2YnlMJrDyzwLCNOsslIRErY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.mft
Manifest number: 1271
Signing time: Sat 23 Aug 2025 14:01:22 +0000
Manifest this update: Sat 23 Aug 2025 14:01:22 +0000
Manifest next update: Sun 24 Aug 2025 14:01:22 +0000
Files and hashes: 1: Le5vpyY48HdbIpkDIdpXFhjYz0Q.roa (hash: Myyoy3T8AQaNeHj3CEH6lMEU7kAImPu/7Rglv2KrnL4=)
2: d8Bx2YnlMJrDyzwLCNOsslIRErY.crl (hash: Yj2LG7MtYuk1C1+MTE5Y0dSxe9jGDJ0ZD0z5dRK3GnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d8Bx2YnlMJrDyzwLCNOsslIRErY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:e2:ae:0b:e1:99:a6:f0:26:ae:f8:72:21:8c:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c071d989e5309ac3cb3c0b08d3acb2521112b6
Validity
Not Before: Aug 23 14:01:22 2025 GMT
Not After : Aug 24 14:01:22 2025 GMT
Subject: CN=6ae848d1e1d9dab3ad1791e2a7be08eb7154200d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:48:85:bf:9a:9b:b2:b0:47:6d:4a:8b:6b:4d:
cb:94:e0:59:55:db:88:0e:fb:fb:d1:3b:6a:39:32:
65:66:4a:6c:4c:fa:5f:0d:6d:e0:71:82:3d:8e:eb:
97:b3:85:04:ad:19:e9:d6:cd:14:e4:42:76:26:8d:
e6:44:99:65:74:e6:b2:4e:35:ad:fd:86:2e:c6:d7:
d5:22:a8:66:3b:34:4e:63:e8:d5:ea:e7:db:8b:b8:
62:45:d5:0a:09:db:c0:39:ea:fc:91:6e:87:af:b9:
a9:e0:bc:e5:fb:03:17:92:2c:da:8e:6b:1a:93:c1:
12:76:48:4e:44:8f:ce:4a:bd:41:d6:ef:8e:de:85:
32:51:d1:13:96:96:50:0f:8c:0c:e2:88:44:0b:be:
28:a3:12:ca:cc:3c:59:32:26:91:e2:91:00:08:ed:
15:2b:03:3e:25:ba:3e:54:c7:dc:56:c8:86:ca:64:
13:71:53:b7:1b:d4:5a:98:4b:5b:1f:3b:30:d3:bb:
76:ef:96:3a:6c:9c:4a:17:5c:e8:80:86:48:e6:a6:
9b:c5:1b:2f:a7:04:69:4d:42:d1:f9:ba:39:67:49:
de:43:73:c3:a0:90:ca:08:e4:d9:01:2c:62:ef:f5:
90:3c:2c:93:19:10:c0:68:11:71:07:43:75:77:ed:
6e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E8:48:D1:E1:D9:DA:B3:AD:17:91:E2:A7:BE:08:EB:71:54:20:0D
X509v3 Authority Key Identifier:
keyid:77:C0:71:D9:89:E5:30:9A:C3:CB:3C:0B:08:D3:AC:B2:52:11:12:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8Bx2YnlMJrDyzwLCNOsslIRErY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:97:01:d3:dc:1f:f5:fa:f9:0b:21:50:d8:e8:81:92:8c:b0:
c2:c3:71:32:d6:05:4e:ea:be:d8:42:1e:9c:d5:df:f6:6d:dc:
57:a3:a0:d5:86:16:fc:f2:3d:eb:04:de:f9:93:46:9b:f7:b7:
1f:01:57:a3:de:cb:f9:68:44:22:69:1c:55:aa:1a:57:68:4a:
b0:dd:9d:cf:59:bb:7b:ff:02:27:74:83:24:bc:cc:3b:43:69:
59:e1:b2:51:b0:49:af:57:94:eb:a5:28:c2:04:84:11:84:f0:
77:fa:0d:1b:94:31:21:50:36:0e:05:cc:68:0d:f9:23:cf:40:
8a:8a:d8:b1:62:9c:26:85:30:59:6c:91:0f:71:fc:49:72:a1:
f1:81:2d:57:e1:44:c7:54:7f:e3:59:ca:73:87:13:88:d4:8f:
58:c4:6e:20:6f:01:0b:89:15:b5:f7:55:02:62:cf:d6:1b:53:
b3:aa:0d:3c:dd:ac:20:79:c5:c5:8f:8a:d9:c8:f5:96:2b:a3:
2c:97:2b:b9:76:a4:8c:f0:3d:7d:ab:de:b2:fd:b9:ef:83:bf:
b8:c6:d6:08:a8:18:4b:2a:f0:80:40:8e:51:6b:58:d5:2e:f8:
b4:11:38:fc:df:fb:8f:e8:47:ba:19:24:b6:83:4b:78:fd:e6:
bc:f7:6b:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:11:17 2025 by rpki-client