Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft
File: dIisPOfpHiQMr_IZy-OPzwI78rY.mft (raw, json)
Hash identifier: BDKRCTVUEmhYoxaiRP99/TmGoSTCCfuxVnsUGpqnmDU=
Subject key identifier: 3D:60:BB:F5:9E:5B:7B:18:B6:CD:8D:4A:49:D2:78:54:20:72:B2:6E
Authority key identifier: 74:88:AC:3C:E7:E9:1E:24:0C:AF:F2:19:CB:E3:8F:CF:02:3B:F2:B6
Certificate issuer: /CN=7488ac3ce7e91e240caff219cbe38fcf023bf2b6
Certificate serial: 019897B7A834655B56C3BCF1A78CA78021C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft
Manifest number: 0B46
Signing time: Mon 11 Aug 2025 06:00:52 +0000
Manifest this update: Mon 11 Aug 2025 06:00:52 +0000
Manifest next update: Tue 12 Aug 2025 06:00:52 +0000
Files and hashes: 1: WUxc8OaDvlLuIRaGhHw99-2pQV8.roa (hash: pHL2ka3zZ/EpxZTpD28h5nmQm9ygfk2G3CW5wJONDzE=)
2: dIisPOfpHiQMr_IZy-OPzwI78rY.crl (hash: 5rxZa4D1qrhXe34y6sM/SDi5Ju6o9joVBVq8RLOR7Oo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:b7:a8:34:65:5b:56:c3:bc:f1:a7:8c:a7:80:21:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7488ac3ce7e91e240caff219cbe38fcf023bf2b6
Validity
Not Before: Aug 11 06:00:52 2025 GMT
Not After : Aug 12 06:00:52 2025 GMT
Subject: CN=3d60bbf59e5b7b18b6cd8d4a49d278542072b26e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:43:35:3f:79:82:69:d1:a4:20:25:39:e4:04:
5e:19:48:ac:27:10:77:15:5d:e4:41:fc:c8:5a:c8:
97:91:af:eb:80:9d:48:67:92:a4:97:76:5b:05:11:
00:c4:86:eb:29:07:2c:d5:91:d9:4f:b6:88:1d:10:
ed:11:da:14:3a:ce:87:57:95:fd:ce:60:e0:65:28:
b9:62:d2:00:f2:51:d3:04:89:e5:19:1b:4c:bd:39:
fa:bd:46:96:47:c9:96:40:91:df:20:63:46:da:dc:
e6:5b:9f:f8:80:e1:03:f6:71:f4:02:24:2d:ae:84:
74:de:49:36:4f:2b:bd:2a:4c:58:28:7e:4d:8e:7e:
52:9d:dc:05:ff:94:74:eb:89:fd:38:7b:29:d6:f9:
4a:dd:b1:43:3c:45:cc:a6:7e:c3:86:2d:3d:9e:1e:
53:00:80:31:df:5b:fe:80:8c:42:2b:45:9b:49:bd:
9d:94:9e:d8:aa:a6:82:1c:7d:32:37:99:a2:0d:16:
52:0e:21:6b:a3:5e:a6:cc:53:c4:78:8d:b7:a5:fd:
6f:d7:a0:5d:59:9c:53:43:d3:4e:5d:42:fe:11:4e:
19:13:14:cd:85:1b:c1:7f:37:7c:9e:88:50:52:55:
61:a0:57:b6:6a:31:cd:36:76:70:39:da:b3:ae:e3:
21:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:60:BB:F5:9E:5B:7B:18:B6:CD:8D:4A:49:D2:78:54:20:72:B2:6E
X509v3 Authority Key Identifier:
keyid:74:88:AC:3C:E7:E9:1E:24:0C:AF:F2:19:CB:E3:8F:CF:02:3B:F2:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:ba:29:c4:72:93:0a:1a:34:a7:4d:05:41:8e:f7:ff:af:81:
57:1a:b6:9d:5f:04:65:64:3b:7c:36:75:ef:0d:a1:4d:1f:3f:
e1:04:77:6a:9b:a8:60:d0:17:4a:8b:f2:be:e1:70:c0:9e:d4:
f4:2f:e8:00:65:8e:86:4d:45:5d:2b:33:d2:e6:89:86:7c:04:
59:5b:85:01:d0:82:5e:7f:1c:14:5e:6a:2c:8c:4b:e5:a3:35:
ca:52:09:e7:ef:25:4d:88:60:c0:5f:14:b4:63:1f:ea:13:8c:
04:18:db:1d:53:58:e7:39:5a:85:c5:5b:fc:0c:37:ea:a4:85:
33:c3:d4:18:82:9c:06:29:ac:d9:27:82:77:14:a0:01:21:97:
20:fd:81:63:2c:72:0d:44:8b:80:38:49:f9:ce:ba:e0:15:b9:
43:6f:95:b7:b5:ae:81:83:f1:55:74:51:4d:17:8a:ac:a0:78:
bd:45:0b:2c:c2:f0:98:75:6b:77:1c:92:d3:7d:87:3f:63:ac:
df:2b:be:ee:db:4a:a9:9f:40:15:a7:66:52:f0:4c:c0:c8:31:
c8:d3:0c:7c:0d:40:28:5f:e2:cd:01:17:7c:66:e6:14:af:8d:
a6:2e:f3:fa:e0:80:a0:af:03:76:5b:97:20:cd:05:3d:f1:30:
40:a4:3e:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:24:28 2025 by rpki-client