Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
File: D5XJyafxmprXF-TapTDIXPmauXU.mft (raw, json)
Hash identifier: mV/fblkmi6o16Ntu1HP/W5iksGNxOx1pGkRG6UQev9M=
Subject key identifier: C3:04:8F:24:F2:4B:06:FA:7A:B2:EF:F8:F4:4F:8C:5B:A6:B8:EE:D3
Authority key identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
Certificate issuer: /CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Certificate serial: 019873E2AB7CABDD9D3594634BF367C4836E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
Manifest number: 0647
Signing time: Mon 04 Aug 2025 07:01:31 +0000
Manifest this update: Mon 04 Aug 2025 07:01:31 +0000
Manifest next update: Tue 05 Aug 2025 07:01:31 +0000
Files and hashes: 1: D5XJyafxmprXF-TapTDIXPmauXU.crl (hash: SM6EqgykC9Sqj7ex5BZKUVXHWEn5QkrdG4sTObKbRu0=)
2: dJjjOIsvcmwG1yw0BY5P71sFVUw.roa (hash: 71ssAltTmbpploHF43pU09n+JXavvKYPHb8mMd4Firs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:ab:7c:ab:dd:9d:35:94:63:4b:f3:67:c4:83:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Validity
Not Before: Aug 4 07:01:31 2025 GMT
Not After : Aug 5 07:01:31 2025 GMT
Subject: CN=c3048f24f24b06fa7ab2eff8f44f8c5ba6b8eed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:83:cc:d9:a9:8b:b2:3d:07:13:f7:37:89:94:
c4:92:6d:b6:2e:b9:6f:23:af:ff:4f:ba:2b:15:ae:
75:c8:a8:4b:1e:9a:a4:d4:c9:1c:b7:be:cc:7e:d2:
4c:b6:b8:97:88:59:eb:12:7f:4e:f2:c0:54:5a:bd:
05:37:79:04:a3:11:a1:c2:23:e2:e8:cb:3d:58:d6:
74:96:dc:71:0a:0f:da:b4:bd:70:63:a2:82:bc:e3:
64:80:6e:b3:5f:c8:46:cd:9f:d2:63:bd:55:4b:f7:
a9:c6:a8:68:69:dc:cf:0b:af:fa:5c:85:ce:df:19:
2c:f1:7e:ec:c6:50:cf:2e:f2:e3:31:6d:a6:bc:d8:
a2:a9:b1:29:2e:d3:63:85:f8:c8:b2:f2:ed:50:4b:
53:34:3e:7e:52:07:bf:96:d5:2f:55:55:e4:78:2a:
3f:fc:2f:14:62:10:87:46:e2:a8:b0:24:22:ef:f9:
0a:80:5c:e3:d3:8e:7c:e5:fe:d8:f1:8a:7a:41:07:
05:1a:dd:56:55:20:08:2a:e2:2d:99:fb:5a:29:44:
87:6d:e0:b8:6c:85:27:8f:34:4a:e6:51:35:0f:c9:
97:8f:f8:83:68:71:af:f7:a7:8b:f2:47:a9:68:d1:
ab:76:f3:e5:d5:04:2b:78:fa:a8:67:38:b3:f8:95:
95:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:04:8F:24:F2:4B:06:FA:7A:B2:EF:F8:F4:4F:8C:5B:A6:B8:EE:D3
X509v3 Authority Key Identifier:
keyid:0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:5b:0f:1a:39:20:da:9a:5a:c1:a1:c7:1b:be:48:ce:e5:3a:
d4:9e:f9:f5:4a:5c:1b:b9:3c:21:4e:48:2a:70:10:79:00:09:
fd:69:43:58:a6:80:30:43:9e:0b:ad:86:fe:51:e8:93:4f:09:
2b:5d:8b:a2:29:a2:91:ba:5d:48:dd:62:9b:6c:6d:89:ec:82:
de:56:fa:50:1e:f5:81:3c:04:b5:95:f9:d9:d6:3a:e0:bd:9c:
cf:20:0a:1e:f8:6f:6f:9a:51:6f:1d:fe:c3:f2:ff:7c:f9:9e:
81:7d:bc:c9:ac:76:b6:85:f8:4d:27:2a:8c:8a:9f:29:30:2f:
e2:e4:7c:42:af:86:d7:0c:3f:da:e2:7b:d6:a5:9b:2d:4f:61:
30:9c:ab:2e:9e:74:c1:97:ad:41:d4:8d:56:0f:1a:c3:76:01:
c2:1f:d6:d3:6c:37:2e:09:d8:bb:f9:4e:70:f6:71:56:b6:34:
26:d6:63:e9:fd:d4:75:3e:ef:fc:a8:f5:9d:59:98:6b:29:f2:
9a:4e:ca:71:4e:3d:13:85:95:f9:ce:d0:41:48:80:00:17:61:
e9:c5:a6:93:9e:04:a2:5f:89:16:17:7b:55:a4:ec:0e:1b:b4:
84:f0:ba:e2:ba:1f:7f:d6:88:3e:09:92:08:0c:6a:98:74:15:
5e:3a:ab:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:07:25 2025 by rpki-client