Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
File: DkOg3wWaUlGkALWh8TIboA0xINI.mft (raw, json)
Hash identifier: RrMiEg8+q698OWz5CpNebQIcQ399764d/WeUV0tueBg=
Subject key identifier: 12:37:7D:E2:EE:87:01:21:5E:EE:17:D3:61:4D:71:71:43:D3:9D:73
Authority key identifier: 0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
Certificate issuer: /CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Certificate serial: 01987A8950BE4ACA50168826CB11DF8FF937
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
Manifest number: 161C
Signing time: Tue 05 Aug 2025 14:01:15 +0000
Manifest this update: Tue 05 Aug 2025 14:01:15 +0000
Manifest next update: Wed 06 Aug 2025 14:01:15 +0000
Files and hashes: 1: DkOg3wWaUlGkALWh8TIboA0xINI.crl (hash: pFy+qrwaIfO0/pYENr134Yxfp5UNbcr8/rtgmmdTe00=)
2: meyQlZ2V2fFm7jP19tS1SnwZU8o.roa (hash: Rjzn7WIqlB0uqbC7++KFiY3Pm+Td1rmouk6fxkElj30=)
3: u8p2k1kowabt5V010HcHbUdny4A.roa (hash: +zIIZMzEVP0HgE88S7aeA3JokmowyYpTKNzs1+R3c2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:89:50:be:4a:ca:50:16:88:26:cb:11:df:8f:f9:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Validity
Not Before: Aug 5 14:01:15 2025 GMT
Not After : Aug 6 14:01:15 2025 GMT
Subject: CN=12377de2ee8701215eee17d3614d717143d39d73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d9:47:b0:19:b8:be:4d:cc:66:6e:93:32:6d:
da:56:6b:ac:4c:0e:74:ba:6b:f9:eb:32:2e:7b:ec:
08:87:90:0f:36:9d:04:e0:6e:a1:d0:a1:db:5c:09:
f7:6a:af:36:a1:57:11:73:4a:dc:63:3f:30:64:04:
74:c7:ef:24:ad:1f:f0:2f:4b:e9:1e:e9:2e:81:6e:
be:6f:3b:4f:f4:f2:f5:3c:16:e2:f5:92:0b:94:a8:
1e:d7:68:d0:d3:1e:2a:57:1d:7e:54:cd:81:cb:7e:
ca:e4:1f:1a:e8:7e:0f:04:15:c9:0a:cd:76:41:24:
92:1f:16:97:71:28:c1:99:0b:86:29:c9:88:4a:ad:
66:50:77:f1:c7:ad:fd:90:24:f1:60:30:77:de:1c:
9f:70:1a:c6:d6:90:94:a1:32:4c:95:c7:51:36:a9:
cf:59:45:33:aa:d8:8a:a9:09:75:d1:90:82:17:90:
36:bb:3f:9f:05:99:4e:45:e3:f2:f7:0d:f3:a4:61:
cb:ee:a4:af:99:8a:cf:44:a0:ee:8f:6d:7b:2c:6f:
dc:b7:4e:ac:8e:d1:ce:65:2c:1e:b1:bd:aa:2d:dd:
e0:89:96:63:9e:fc:c0:0b:f0:7c:55:62:47:d4:68:
d6:a9:d5:a0:60:54:0c:a4:44:9f:3b:29:21:3a:78:
45:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:37:7D:E2:EE:87:01:21:5E:EE:17:D3:61:4D:71:71:43:D3:9D:73
X509v3 Authority Key Identifier:
keyid:0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:dc:bb:40:e8:eb:a6:12:27:06:3d:b5:91:1d:ee:a0:68:fa:
75:b7:04:4d:1e:fc:dc:d8:f0:c0:b1:5d:b2:ce:f1:27:94:66:
4e:10:c3:eb:a5:44:18:02:30:f8:c2:43:8e:f0:66:83:f6:b6:
1c:e6:65:18:f8:9e:e0:33:8e:ad:b3:8c:44:28:f3:8a:f5:f2:
fb:65:13:c2:bb:36:86:ee:e0:93:26:21:5e:78:30:70:f8:07:
6b:46:ca:98:90:05:f7:29:e3:54:28:7a:cb:a1:fb:8e:64:31:
6b:c2:a6:d5:4e:4e:0b:b2:57:38:62:d6:4d:6f:91:87:2b:ff:
a8:1e:52:c1:31:b5:49:bb:a8:8c:95:93:7f:88:62:12:50:b9:
bb:ab:8e:d3:b3:d8:4b:45:ad:48:ff:20:4d:b5:88:ba:69:df:
86:31:30:ec:13:7d:d4:5c:6a:df:09:a3:79:fc:90:e6:63:16:
00:b2:92:88:a8:f0:d1:b5:75:22:41:cf:3a:48:e9:75:ae:fd:
a1:98:0f:83:80:4c:74:50:d6:c5:0e:a7:51:2b:a5:1f:2c:ac:
3a:fb:20:b3:56:e8:09:f7:7b:8e:3e:9c:af:5d:35:6d:d4:7e:
87:74:31:9a:90:6a:07:04:cc:59:b8:a0:86:b8:dc:93:7b:2b:
ca:d5:ac:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:11:30 2025 by rpki-client