Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
File: ds5jfUe3gATQzPrjceaBh2isP6U.mft (raw, json)
Hash identifier: sq0pv9974611NK9x/StCsmj8wjvAqfkuoRrHzs/D6wU=
Subject key identifier: 40:25:59:4B:B1:A4:48:2E:CD:28:6C:B4:54:AD:2B:85:54:95:0B:DA
Authority key identifier: 76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
Certificate issuer: /CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Certificate serial: 01987E9D1BC99BC100C4BACF01075F028D7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
Manifest number: 143E
Signing time: Wed 06 Aug 2025 09:01:22 +0000
Manifest this update: Wed 06 Aug 2025 09:01:22 +0000
Manifest next update: Thu 07 Aug 2025 09:01:22 +0000
Files and hashes: 1: 2v9WLSFviNLhCEs3PI8ghWfG43g.roa (hash: s4HF4L3IMaVI3bReAfOPFKeWOp26BrTGFcFThVgszh4=)
2: ds5jfUe3gATQzPrjceaBh2isP6U.crl (hash: SoSBDId38DO5+Et9La1XyRM1tBqNasjMFOzJ7zpoMNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:9d:1b:c9:9b:c1:00:c4:ba:cf:01:07:5f:02:8d:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Validity
Not Before: Aug 6 09:01:22 2025 GMT
Not After : Aug 7 09:01:22 2025 GMT
Subject: CN=4025594bb1a4482ecd286cb454ad2b8554950bda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:59:18:9c:99:15:1e:96:c8:19:77:ba:31:68:
42:41:10:f7:36:7b:dd:97:cf:24:28:8e:5d:e0:62:
33:bf:75:6c:46:39:5e:90:10:38:f1:35:69:ca:66:
4c:88:5a:cb:89:9c:a1:0c:2c:df:35:5a:5b:39:df:
6a:a8:e1:0b:03:98:78:eb:f3:df:38:06:62:7c:5f:
3e:e4:1a:f4:39:40:81:e3:2e:f8:2f:6f:25:dc:70:
e6:aa:ae:98:7b:a2:15:00:3e:38:5a:e0:45:82:6d:
2c:33:00:11:1b:c5:94:5b:6b:42:8d:0d:0f:6d:75:
61:28:51:55:ff:42:f7:a2:08:fb:53:f9:5c:64:fa:
78:9a:c0:71:07:db:ff:6d:a5:96:46:d6:65:5c:88:
b3:5c:a9:06:3a:ba:a0:01:d6:a9:87:53:bd:4c:e4:
c5:52:6b:73:6e:46:92:67:4c:fe:ad:38:81:8a:58:
62:7c:26:c6:11:56:14:3a:8e:0d:3c:33:8f:95:24:
bf:5c:f2:f0:11:7d:b4:67:7a:9f:c9:7f:88:a7:8f:
9d:0e:7a:5c:a6:c8:69:be:f3:79:7f:03:24:95:31:
b7:63:82:1e:a4:2c:c6:97:5a:33:81:c7:f8:94:ee:
ff:7e:17:5c:c1:e8:68:4f:68:98:77:1f:ca:7a:df:
8e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:25:59:4B:B1:A4:48:2E:CD:28:6C:B4:54:AD:2B:85:54:95:0B:DA
X509v3 Authority Key Identifier:
keyid:76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:43:a6:7c:f2:bf:62:5a:55:70:68:14:af:2d:18:53:fe:c7:
65:e1:b5:e2:bf:00:d1:5f:42:eb:95:f4:60:b4:db:3e:05:9a:
15:8d:0c:30:fb:1b:6b:21:14:35:03:74:6b:76:0d:da:40:84:
84:55:d6:fb:e3:3a:10:48:38:cf:5d:6b:1f:f3:02:05:e0:7b:
e7:60:0c:83:53:15:26:35:2f:8b:14:4d:97:57:05:91:31:4d:
df:90:b0:0d:bb:11:2f:5c:7c:66:8c:21:2c:50:b1:84:f4:7b:
8d:15:56:a9:79:5c:aa:bc:7f:61:3b:56:a3:35:2e:a8:b3:5b:
ba:04:27:b6:cf:62:36:0f:52:bf:3f:88:d6:89:0d:00:19:b6:
9a:e2:3d:3b:13:82:c1:87:fc:af:ac:4e:a3:ec:58:d2:a9:81:
18:0d:1b:ab:e0:15:76:d5:36:d0:92:15:79:89:f6:11:1f:81:
08:04:8f:0b:6b:be:8f:b1:22:3b:51:77:1b:d5:25:58:da:5d:
de:60:70:37:57:3f:be:b5:1d:97:b2:f2:12:00:bb:dd:24:7e:
7c:e8:77:1c:97:a8:82:56:d8:b1:6b:6e:ad:ee:85:85:cb:d3:
9a:a1:e4:b5:70:e5:c7:62:fa:09:a3:48:09:eb:2d:f2:8b:36:
95:e6:89:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 14:18:48 2025 by rpki-client