Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: uoq5wtDSXNP30ISFNai86lotFyrkglPwuQSd0i9zVXk=
Subject key identifier: 70:AE:BD:AB:51:E3:61:8D:CF:5E:B1:F0:24:35:7D:BF:A3:AC:1B:21
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 019895FFD68FBEA55D9D3327B1C86E49585B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 0344
Signing time: Sun 10 Aug 2025 22:00:28 +0000
Manifest this update: Sun 10 Aug 2025 22:00:28 +0000
Manifest next update: Mon 11 Aug 2025 22:00:28 +0000
Files and hashes: 1: 9jS2v21J95xARBtQOtdTT0EtYBQ.roa (hash: BeiYvaVP67aUM+eVkzjpflxlaHwkNmiJmUTQZAVqkOQ=)
2: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: CERSpPLQ1kUSGwjo25Stp0aST8gTAOCeVNqt5H0TVW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 22:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:ff:d6:8f:be:a5:5d:9d:33:27:b1:c8:6e:49:58:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Aug 10 22:00:28 2025 GMT
Not After : Aug 11 22:00:28 2025 GMT
Subject: CN=70aebdab51e3618dcf5eb1f024357dbfa3ac1b21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:15:35:dc:6c:99:bc:bc:84:33:b7:dd:9d:e2:
5b:33:fa:61:8d:fb:96:c7:8d:0f:36:57:e7:e1:c9:
c4:e7:a5:64:2f:d7:51:74:83:69:be:c8:91:bb:ba:
1f:fe:bb:d6:c7:c1:d4:c9:83:06:3e:4b:09:7a:70:
72:dd:46:67:d6:dd:cd:5e:51:5f:3a:cb:ac:7a:fc:
bf:8c:2b:8d:be:a7:08:e8:23:48:5a:99:9f:5d:d4:
05:32:0c:e7:0b:4b:a1:18:cd:57:d8:49:98:2c:4d:
9c:1b:63:47:65:65:68:5f:d8:a4:2a:f2:16:c7:d9:
e4:73:85:05:03:de:d4:4f:d1:89:fa:62:72:ab:d5:
1d:32:31:bd:d3:1e:0a:17:b2:ad:c0:fe:51:8e:75:
28:88:d4:e0:af:38:53:57:f0:d4:77:31:c3:3b:48:
82:7b:2c:bf:6a:97:67:e1:1e:34:9b:44:1c:ee:5c:
45:59:32:20:59:e9:1e:15:18:85:40:9f:09:07:79:
07:53:f9:c2:34:1b:4e:b8:fa:7f:52:c7:81:d1:d0:
29:1f:63:2a:26:39:85:5b:34:7d:20:68:a4:b1:b9:
be:52:4c:56:f1:46:26:05:22:bd:ba:c9:72:7b:c8:
fe:47:2f:c5:f8:82:f2:80:8f:39:47:56:05:82:2a:
be:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:AE:BD:AB:51:E3:61:8D:CF:5E:B1:F0:24:35:7D:BF:A3:AC:1B:21
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:5f:61:ae:86:f1:18:2e:9a:05:4f:5b:c0:c6:fe:dd:5f:66:
2a:e9:3b:70:d9:8d:f4:8a:c3:c6:03:47:25:84:0c:9a:16:74:
5c:10:ac:dc:8e:18:dd:c8:e1:16:62:4c:94:16:c5:ff:25:ed:
8c:52:2b:74:89:e9:d7:3a:ae:f4:7c:a5:82:6b:46:9b:1e:75:
a8:f7:3d:33:4e:c5:e4:68:a4:08:cd:6d:93:1d:37:d0:2c:36:
a4:72:be:92:b1:69:5d:34:7d:ef:7c:57:2a:b0:ad:2c:3e:61:
a2:1b:d1:61:70:00:2b:ad:68:23:1a:c1:80:e1:6c:2d:33:87:
f8:8f:17:f3:57:aa:3d:98:55:49:eb:7b:f2:1a:36:f9:f5:c8:
b0:c4:88:75:07:34:4b:89:98:1a:ce:a3:f7:df:18:09:a8:f0:
5a:74:bc:01:82:55:04:39:ac:a0:92:c8:22:65:19:bc:e4:51:
30:88:94:13:07:52:89:43:1e:62:00:1a:76:48:ca:d3:b0:0a:
6e:a9:90:a2:97:19:6d:45:37:49:b8:14:bc:89:e3:2f:e0:e5:
0f:ea:09:c1:6c:d8:89:4a:ad:42:c2:1d:32:aa:7e:3f:54:9e:
1f:22:48:ee:ae:2d:81:d6:e9:9c:fe:36:ca:01:01:02:d4:ac:
a9:0b:ab:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:29:11 2025 by rpki-client