Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
File: Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft (raw, json)
Hash identifier: 52YVbCjGRM/GDOFjfGht9EHX/slmgA/56vMU56P+MH8=
Subject key identifier: E0:99:48:AE:54:F0:74:E3:3E:12:2E:5E:67:97:45:79:94:7D:F6:51
Authority key identifier: 0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
Certificate issuer: /CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Certificate serial: 01988167BC71B56384B0DC1FD8C8901E4D70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
Manifest number: 161D
Signing time: Wed 06 Aug 2025 22:01:55 +0000
Manifest this update: Wed 06 Aug 2025 22:01:55 +0000
Manifest next update: Thu 07 Aug 2025 22:01:55 +0000
Files and hashes: 1: 8GPy1nq-d8qyd5DzcEoD7_wmnRk.roa (hash: VU25KKsH1DHg8pytMPBtSMEdGMuo9BZsAecAtygfZnk=)
2: Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl (hash: YQnDFkBYj7Qw1QMxHT0htoOamfCjGzc0ZBpp2eYYP60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:67:bc:71:b5:63:84:b0:dc:1f:d8:c8:90:1e:4d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Validity
Not Before: Aug 6 22:01:55 2025 GMT
Not After : Aug 7 22:01:55 2025 GMT
Subject: CN=e09948ae54f074e33e122e5e67974579947df651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ae:65:fc:81:3a:35:4a:63:10:ae:46:71:0a:
85:16:55:d8:89:ee:a6:d6:0d:1c:aa:6a:57:ff:c3:
6d:d5:1b:5d:5e:48:d6:b4:29:01:2f:f3:72:6d:cb:
c9:8c:15:5d:f2:e1:ec:7d:a3:24:93:61:8a:96:9a:
d2:cb:d4:3d:7d:9f:e2:fa:e2:76:f1:c9:d1:bb:aa:
a7:d2:12:51:99:19:fb:48:3f:a0:67:fd:0d:c5:82:
33:78:8d:5d:15:4a:cf:3f:ee:90:09:c8:9b:42:7b:
64:7e:ba:8c:52:e0:e4:a8:7c:77:5f:a6:f4:d7:1e:
cc:f8:07:37:0e:da:9e:5e:dd:6d:b6:b2:1e:62:77:
55:68:ef:78:79:aa:d1:7f:c4:8d:e8:e8:ab:48:c2:
89:d2:fd:7e:63:76:bd:c1:c9:41:f9:9c:a5:ff:48:
62:72:2f:04:b7:58:60:be:db:00:ed:80:4b:a2:b4:
3c:ab:5d:b7:fe:da:82:64:f8:cb:74:bc:43:4d:c0:
f5:7b:6d:13:2e:8c:d0:54:87:13:d3:83:7b:46:de:
3d:77:91:94:86:4d:bf:49:94:25:a9:b4:d9:89:02:
48:c3:19:b6:de:42:c1:3d:fb:41:97:72:4c:c8:d8:
31:7a:3f:f2:2a:6c:4b:cb:c5:54:28:ef:8b:f9:04:
64:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:99:48:AE:54:F0:74:E3:3E:12:2E:5E:67:97:45:79:94:7D:F6:51
X509v3 Authority Key Identifier:
keyid:0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:37:20:c8:4a:c3:d2:a8:6f:d9:7f:7d:b1:a6:5c:88:c6:1c:
d1:c6:dd:66:cf:70:a2:3b:f2:d7:d7:9c:92:85:74:34:4f:38:
62:be:5c:fc:ba:59:9a:46:34:2b:2c:55:c0:6c:73:c8:a7:b7:
a2:08:23:d1:d3:7c:9d:a1:fd:c1:c4:43:c1:05:aa:56:d4:51:
9d:aa:97:be:f3:36:72:eb:79:66:c1:88:eb:1b:ef:a8:ed:bc:
70:b4:9a:4a:9f:e0:b7:57:52:f0:7f:a5:27:27:1a:3b:bb:5b:
e3:8b:c3:b0:88:33:ee:1d:d2:03:4c:ef:6c:35:43:af:36:b5:
02:4e:69:4a:84:cb:16:6b:58:ad:19:2b:20:57:21:0c:30:38:
fd:c2:db:b7:ff:2c:5e:c0:91:6f:23:4f:52:3b:b4:bd:1a:f3:
f9:5d:fb:91:0c:fc:0d:19:29:96:00:df:d3:c1:a8:9f:7b:90:
47:14:55:d9:40:54:64:66:22:c4:46:62:6c:b0:f9:c6:02:04:
ab:b9:69:96:a7:c0:ff:ca:99:d8:2a:95:57:f1:c7:ad:19:cf:
97:59:57:92:2d:ad:c2:cc:32:e5:88:2f:9d:18:d5:e5:ab:1b:
af:e1:16:a4:f8:ae:6e:ca:a9:74:c4:c7:d0:dc:57:ed:2f:c0:
7b:40:a5:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:16:16 2025 by rpki-client