Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
File: DxgybgAap_xW-DUxMVN2-equCYg.mft (raw, json)
Hash identifier: H+58yzvzwCsp5RnuuwMkNGGtP1h5UQYbyYO2llcp7tY=
Subject key identifier: 3E:36:16:3D:71:B1:B0:35:C8:02:2E:00:78:D2:14:72:52:30:34:3B
Authority key identifier: 0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
Certificate issuer: /CN=0f18326e001aa7fc56f83531315376f9eaae0988
Certificate serial: 01988BEA55C6FB3AAB411B51493E7E3C6164
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
Manifest number: 089A
Signing time: Fri 08 Aug 2025 23:00:47 +0000
Manifest this update: Fri 08 Aug 2025 23:00:47 +0000
Manifest next update: Sat 09 Aug 2025 23:00:47 +0000
Files and hashes: 1: DxgybgAap_xW-DUxMVN2-equCYg.crl (hash: toQk45zuRICdCx3DnAATvoC0rb3qIBfE/TXyQoVdJ4k=)
2: IAritswAhqNQe77s1GDg_ezpHck.roa (hash: ILdWDEHhnQvuxpeMgx2XCbjW7CQm2ybVgtMQih2P4NU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:ea:55:c6:fb:3a:ab:41:1b:51:49:3e:7e:3c:61:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f18326e001aa7fc56f83531315376f9eaae0988
Validity
Not Before: Aug 8 23:00:47 2025 GMT
Not After : Aug 9 23:00:47 2025 GMT
Subject: CN=3e36163d71b1b035c8022e0078d214725230343b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:17:b0:e5:dc:dc:da:10:73:ef:74:03:b9:4f:
4b:f2:21:74:07:04:5f:b7:c3:19:cc:f9:a4:65:c2:
47:ad:b9:a7:50:c1:8b:da:69:43:dd:a8:d0:0a:31:
2b:73:a9:a7:67:e8:00:4c:c3:5b:2b:4e:7d:7f:47:
cd:df:c2:f6:15:f9:12:e7:70:2a:c4:c4:ba:d2:be:
cb:25:d3:4a:14:53:28:76:12:7e:af:c3:c9:21:06:
45:00:eb:be:83:ed:63:6f:db:3b:2d:5f:fb:94:d1:
6a:71:18:50:c3:ba:78:4b:ae:47:1d:0c:77:c7:d3:
b5:0f:7f:17:9a:fb:75:33:20:e0:e7:2b:ab:8b:e7:
32:67:98:8f:51:48:4d:de:30:51:bd:fb:5f:16:fb:
e6:dd:eb:3a:7e:a8:a5:a1:81:8c:21:1c:c3:80:17:
c3:74:18:e7:2e:e1:79:24:c5:d5:cd:54:f5:4d:3b:
22:ce:04:ac:fa:6b:44:bb:0e:01:a0:f9:5c:88:d7:
9a:8f:dc:17:d1:9f:ac:a5:5a:26:72:b7:76:32:b9:
41:2d:92:eb:76:33:b1:ab:26:38:5f:fe:36:19:b2:
05:0a:4c:df:c4:76:5a:69:a3:72:bb:5a:cd:a1:8a:
d2:33:72:df:67:f4:54:fa:ae:63:37:7f:3d:35:93:
4c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:36:16:3D:71:B1:B0:35:C8:02:2E:00:78:D2:14:72:52:30:34:3B
X509v3 Authority Key Identifier:
keyid:0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:ee:19:0e:76:cb:33:7b:4c:a8:dc:ef:85:e5:e1:78:2f:8a:
e3:5c:4c:93:e5:36:84:78:e3:9f:33:06:2d:c2:0a:ea:ee:11:
24:27:20:5c:d3:e4:07:9a:c3:85:be:4f:22:74:82:0f:07:c2:
df:7d:b2:c5:b5:1d:01:56:7e:a6:fd:26:1b:f7:6a:9c:90:13:
4b:62:96:76:9f:ae:57:31:92:89:89:83:89:e4:01:1c:bc:a2:
2f:f9:b1:b0:ed:a1:0f:fb:39:c2:7c:77:af:2f:21:ac:bd:e7:
f6:4a:65:d7:c1:98:bb:54:88:1b:2e:03:d9:3b:f6:2f:af:9a:
e2:0b:50:6d:31:2f:50:30:d8:96:27:07:85:39:0c:d3:63:50:
00:56:34:63:1a:74:7d:82:19:7d:61:66:0e:d6:fb:b3:e7:26:
e3:32:d5:dd:a0:50:f8:e3:5b:42:0b:74:bf:92:47:41:d8:05:
c5:0c:9b:b7:8e:ee:68:52:88:e1:f7:b8:ab:6d:34:21:62:7f:
97:3d:e4:fe:bc:96:f8:2b:47:7c:37:68:c6:b6:ec:61:2a:63:
cd:27:b2:79:01:d6:c4:85:74:d4:e7:a2:b4:ad:bd:cd:49:ac:
99:1b:71:aa:eb:a3:74:a1:7e:00:46:9d:a9:d1:ef:5a:84:f7:
b4:53:48:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:26 2025 by rpki-client