Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
File: DpXDrONm20G83CVsXVs75JCk92E.mft (raw, json)
Hash identifier: KC+QxWN8XmPuSLkNz9YS75ThVn8+eq95VnL+a1o1FdI=
Subject key identifier: 8D:29:1B:B0:C8:67:AE:C5:58:E2:D4:61:F3:4E:DA:73:09:80:8D:4E
Authority key identifier: 0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
Certificate issuer: /CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Certificate serial: 019892FF7919378EFE6A017396A877C3E015
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
Manifest number: 0A7F
Signing time: Sun 10 Aug 2025 08:01:12 +0000
Manifest this update: Sun 10 Aug 2025 08:01:12 +0000
Manifest next update: Mon 11 Aug 2025 08:01:12 +0000
Files and hashes: 1: 1ILl-_jBl8vTjilNwWyLb_6kN84.roa (hash: ecF4kJW8L9z29VWA5l2Xp4iuCOJ3lYvBbDFUMxXyKfo=)
2: DpXDrONm20G83CVsXVs75JCk92E.crl (hash: dLSY3hCrt2FOYSSOKYareSDANszXBySqKS6OpZNbSr8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:ff:79:19:37:8e:fe:6a:01:73:96:a8:77:c3:e0:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Validity
Not Before: Aug 10 08:01:12 2025 GMT
Not After : Aug 11 08:01:12 2025 GMT
Subject: CN=8d291bb0c867aec558e2d461f34eda7309808d4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:39:c3:82:a3:17:e4:83:dc:d8:33:fb:4a:ce:
26:3c:c0:4f:14:8d:49:47:5d:b8:fa:11:26:d5:ee:
8e:cf:95:10:a2:94:f2:f3:1a:31:b0:0c:bf:c5:62:
ae:6a:e6:09:65:99:25:b2:6e:a6:83:2d:5b:32:40:
8b:e6:de:4e:73:b6:6d:c5:33:1f:2f:c7:17:bf:78:
2e:50:60:16:43:d0:2e:e4:27:1b:1e:86:db:cf:60:
c7:b2:08:2c:04:1b:03:e6:b1:d0:79:29:70:8c:8d:
40:77:da:28:01:c6:ed:38:b7:65:e9:8a:cc:38:34:
b4:cd:0b:1c:81:0e:6c:14:0a:22:28:89:91:72:f2:
be:13:9e:e3:eb:fa:9d:91:c6:0e:27:7e:00:5c:7c:
aa:46:22:3b:37:1c:65:cf:8d:79:c3:bb:9c:cc:76:
49:6b:12:53:61:1b:ae:56:39:ad:74:6f:6d:8e:58:
9a:eb:78:37:d2:19:1c:47:dd:c9:a6:50:b6:ae:9a:
3d:20:33:20:a4:19:5e:c8:47:c2:28:8c:47:25:63:
b3:7e:66:42:ea:97:79:90:58:93:54:bf:c6:3d:87:
9b:b1:fa:cf:fb:b1:3b:4d:83:b1:28:34:21:85:86:
ad:be:42:46:7a:5c:22:d9:02:08:aa:62:01:93:26:
1d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:29:1B:B0:C8:67:AE:C5:58:E2:D4:61:F3:4E:DA:73:09:80:8D:4E
X509v3 Authority Key Identifier:
keyid:0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:46:9b:22:da:c5:2f:f0:c1:f9:f2:25:86:de:64:ec:ba:7f:
91:e8:04:9b:21:41:ca:8f:b3:52:31:d2:38:06:03:d7:8e:92:
f3:b6:c4:eb:33:72:78:94:ba:4f:f3:d5:16:d7:b6:11:33:24:
e1:45:61:a7:c6:16:f2:11:c6:21:e6:4b:f8:2f:13:ed:32:69:
c8:08:75:43:79:41:4d:4c:f2:53:b9:55:f6:bb:1b:58:be:9a:
ca:82:68:f7:f0:f0:86:b1:ae:f5:07:e2:34:0f:a7:07:17:dc:
8d:8c:8c:ca:2d:19:19:33:63:4a:82:f9:7d:00:84:ad:e7:37:
87:6e:69:27:36:99:70:ef:2c:b8:d8:61:6f:1c:02:77:72:c4:
1d:ab:14:ee:2d:78:ab:01:bc:2b:be:51:49:71:ab:18:af:26:
a8:d0:1b:11:79:8f:b5:12:9d:9c:1b:ac:1c:2c:6f:9a:19:7a:
d4:de:1f:2b:3d:f9:5b:b9:5c:50:0d:41:72:41:83:ac:bc:b5:
52:00:f4:42:95:e5:cb:53:70:75:cb:c5:9c:08:86:6e:5d:0b:
ce:b1:c0:2a:53:2d:ba:b6:b4:9d:00:40:b2:65:df:fa:a8:b4:
c3:17:81:e6:34:0b:3a:0a:39:05:de:ab:44:1d:06:7b:11:91:
9a:40:e7:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:43:46 2025 by rpki-client