Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.mft
File: D-qK4ZBhrMVImsJxkIKs6lovxdM.mft (raw, json)
Hash identifier: ixRL08vFSnix5CGulyQRdHJXE63vdKHO4e30PAvdx6U=
Subject key identifier: DC:78:D0:CB:77:3B:21:F6:57:96:70:97:5A:A8:3A:B7:B4:B9:A8:78
Authority key identifier: 0F:EA:8A:E1:90:61:AC:C5:48:9A:C2:71:90:82:AC:EA:5A:2F:C5:D3
Certificate issuer: /CN=0fea8ae19061acc5489ac2719082acea5a2fc5d3
Certificate serial: 019877C03C3A2D95986E84C7BAEEF131DAAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-qK4ZBhrMVImsJxkIKs6lovxdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.mft
Manifest number: 08E2
Signing time: Tue 05 Aug 2025 01:02:23 +0000
Manifest this update: Tue 05 Aug 2025 01:02:23 +0000
Manifest next update: Wed 06 Aug 2025 01:02:23 +0000
Files and hashes: 1: D-qK4ZBhrMVImsJxkIKs6lovxdM.crl (hash: S8Hjnne4PSEuFFJP0t6yL1bkzNFuHilyCCLkkwXz6Ko=)
2: M10vf4QxH5-zWTvsa4ILhkuyN0k.roa (hash: ddpmJOxtLixoYeVKM1qcWIIFhN7ghewh8wxesIUHdzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/D-qK4ZBhrMVImsJxkIKs6lovxdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 00:46:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:77:c0:3c:3a:2d:95:98:6e:84:c7:ba:ee:f1:31:da:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fea8ae19061acc5489ac2719082acea5a2fc5d3
Validity
Not Before: Aug 5 01:02:23 2025 GMT
Not After : Aug 6 01:02:23 2025 GMT
Subject: CN=dc78d0cb773b21f6579670975aa83ab7b4b9a878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ed:80:24:ef:20:27:84:26:9a:72:60:60:a0:
e9:48:78:ab:fa:6a:17:7a:9e:68:a4:7e:7e:7d:47:
eb:09:76:f5:52:5d:35:6e:60:50:ad:07:1a:9b:a7:
3c:4d:5d:aa:d6:eb:24:a7:4e:d9:00:73:22:07:89:
22:0e:bc:72:f0:b7:14:86:63:4d:81:a2:ba:ed:90:
a8:e0:e3:d9:d5:9e:d3:6b:01:0e:11:3d:eb:15:4e:
78:14:f5:39:6a:f7:64:09:0f:31:be:5e:23:bc:ac:
70:55:34:c0:9e:ff:ce:64:38:49:51:2a:f1:ca:aa:
3f:54:71:d1:1f:9a:de:53:77:59:dd:34:4a:94:ce:
5e:fa:41:c0:76:ff:09:31:19:95:03:51:2c:77:15:
90:9f:21:4d:26:47:41:0c:d6:0c:fa:ff:95:fb:d4:
4b:b1:63:37:64:94:58:f0:ed:e9:d3:e4:e6:74:20:
37:79:81:e8:9b:c5:60:2f:48:99:dd:9a:df:db:0d:
73:ea:d0:8f:64:df:ad:d7:65:f6:99:78:10:d1:a0:
8c:10:16:92:94:24:7d:c1:32:10:8b:32:fd:af:d5:
68:5c:48:87:a3:e1:cf:c0:85:08:68:e7:77:b0:cc:
7a:c9:fe:13:72:1d:56:2e:e3:67:bf:8e:b7:80:d1:
cc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:78:D0:CB:77:3B:21:F6:57:96:70:97:5A:A8:3A:B7:B4:B9:A8:78
X509v3 Authority Key Identifier:
keyid:0F:EA:8A:E1:90:61:AC:C5:48:9A:C2:71:90:82:AC:EA:5A:2F:C5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-qK4ZBhrMVImsJxkIKs6lovxdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:d0:f2:67:d1:f4:01:59:0d:6a:1e:62:b8:a6:ba:d3:12:fb:
be:53:da:41:33:86:72:37:f5:70:77:b8:50:50:c0:f2:47:db:
cb:93:e9:2d:07:62:de:f3:ea:3d:e0:c5:e3:86:32:3f:79:a5:
81:c9:11:22:41:49:5d:b5:d7:8d:3a:ca:c3:0a:95:e9:9e:45:
60:d6:4a:92:83:4c:0d:04:04:4c:0b:00:6f:73:96:3a:0c:3d:
a3:bc:cf:14:df:26:a1:ea:f3:e4:19:a1:1e:f8:38:e1:7a:49:
eb:7e:2c:7c:af:26:bd:6d:9e:3b:61:8c:0b:f5:e6:e2:c1:91:
62:2b:77:d2:44:c6:b3:ef:b3:6c:9c:c7:67:ee:4f:80:83:73:
b5:44:2a:b5:39:d5:9f:1a:d7:f3:87:4d:30:f1:61:d8:0a:0a:
05:2a:35:bf:86:26:4d:dc:0f:37:30:8a:60:fc:0f:b3:eb:54:
57:42:d0:16:9a:3e:35:e1:10:c2:f9:1a:3c:50:be:93:13:03:
b7:c0:74:b4:d1:4a:37:88:d7:34:9f:9f:7f:3e:f6:49:b9:34:
15:b4:71:97:66:8c:f5:5f:3d:dc:66:fd:6d:90:be:a7:3b:7a:
e3:49:29:2c:39:50:1c:0d:e2:49:17:2b:01:e9:9f:d0:17:2a:
89:7a:17:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 08:18:21 2025 by rpki-client