Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
File: 1ehYR8xEuGECJwu9do5MPOuhyYg.mft (raw, json)
Hash identifier: P2oTHlQ9Xs9NrkZGUBATwnQGcChB5o0avK15sDL2oPY=
Subject key identifier: C1:19:72:CA:FE:12:9D:32:48:71:2F:52:85:52:37:CE:CE:AE:13:F9
Authority key identifier: D5:E8:58:47:CC:44:B8:61:02:27:0B:BD:76:8E:4C:3C:EB:A1:C9:88
Certificate issuer: /CN=d5e85847cc44b86102270bbd768e4c3ceba1c988
Certificate serial: 019887D6D73C87FC584BCEA40D7F1A573C1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
Manifest number: 04B3
Signing time: Fri 08 Aug 2025 04:01:00 +0000
Manifest this update: Fri 08 Aug 2025 04:01:00 +0000
Manifest next update: Sat 09 Aug 2025 04:01:00 +0000
Files and hashes: 1: 1ehYR8xEuGECJwu9do5MPOuhyYg.crl (hash: z/7zNgFR7eeZkiuX92lvseh6y1LUagDqrvxU3b1nkQA=)
2: DTHy6RXAjA3WYCRRHO7XlxlNxP0.roa (hash: WIwE9zAwV90ldFttTq5+MPXhd1lbpoXmWHuG/jlZk1I=)
3: HP2XU4ErP340JMFJBkwhXt7RSkM.roa (hash: jqU/k+IA4J2nUGc2ePon/4S6+Kq7gFeDjcwyWdzFAK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 04:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:d6:d7:3c:87:fc:58:4b:ce:a4:0d:7f:1a:57:3c:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e85847cc44b86102270bbd768e4c3ceba1c988
Validity
Not Before: Aug 8 04:01:00 2025 GMT
Not After : Aug 9 04:01:00 2025 GMT
Subject: CN=c11972cafe129d3248712f52855237ceceae13f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1a:43:2b:4b:f2:97:c2:26:df:aa:b5:36:76:
05:36:43:a5:90:b2:57:dc:34:a1:a4:e2:bc:b9:a7:
cb:ff:c1:3c:59:e4:9e:89:3a:f0:f9:56:b8:39:84:
14:b2:b3:5d:3e:cf:71:b0:d0:cb:be:3a:47:89:c0:
45:f0:5b:21:04:8d:2c:bb:1f:93:1d:ea:f3:94:3b:
7f:f8:31:be:b6:75:93:49:d3:87:af:13:ed:60:45:
6f:40:f7:31:a7:a4:67:2c:f4:bc:1f:6e:46:75:08:
e5:77:82:55:dc:40:07:b2:70:0c:fd:b0:43:df:fa:
31:96:c3:8f:f6:42:d3:47:c5:0a:cd:ea:8c:73:e4:
99:f4:e5:2b:33:7c:2e:dd:34:c8:43:22:c0:31:dd:
3e:b1:02:ec:39:22:1e:b6:36:22:d1:2f:91:ca:7e:
d4:b7:86:a4:2c:2e:a8:01:80:9f:ea:91:75:a6:c8:
82:dd:83:09:4c:42:e0:b6:48:fe:45:75:80:cc:4d:
dc:49:7a:b0:a0:0a:ac:6f:b4:4c:09:da:41:e9:62:
a5:23:2c:09:4f:12:de:58:e5:1d:f6:ee:61:cd:fd:
2a:08:bf:ed:6a:ac:79:16:27:3d:bf:77:25:27:5c:
af:23:d6:77:e3:7d:52:e0:3e:94:ba:0a:07:26:c7:
48:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:19:72:CA:FE:12:9D:32:48:71:2F:52:85:52:37:CE:CE:AE:13:F9
X509v3 Authority Key Identifier:
keyid:D5:E8:58:47:CC:44:B8:61:02:27:0B:BD:76:8E:4C:3C:EB:A1:C9:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:d8:54:e9:9f:e1:fc:b4:ef:17:1e:fd:05:48:dc:07:c2:af:
2b:29:32:a0:be:17:b7:ad:26:cc:9b:1f:14:d7:be:5b:59:3d:
0d:94:2d:f1:c8:ec:1a:cb:fe:30:05:64:83:d4:1f:aa:7e:ea:
15:c6:3b:1d:e0:4c:ee:0c:5a:28:39:8f:de:1a:df:17:d2:49:
8e:45:00:c8:af:80:34:2b:c0:51:0e:0f:a0:32:ed:ab:d3:fd:
de:3b:e8:b3:4a:a6:46:ec:9d:5a:47:f1:8e:b6:be:03:30:7f:
ae:35:d9:55:24:8e:da:bb:1b:cd:e6:2a:00:87:86:e4:1a:4c:
64:ad:e1:c7:99:cb:77:8e:ec:37:07:f9:1c:25:85:2d:ae:ec:
e0:f9:ed:a4:0b:35:c0:db:c2:66:8a:e7:24:47:fd:3d:94:f0:
62:a2:d0:a8:9a:7b:0f:2c:ab:85:a7:da:7a:85:db:97:e5:7d:
22:2b:bf:09:f3:16:e0:70:c6:6b:cf:84:01:89:21:75:6c:60:
17:46:0e:2a:08:c7:77:69:ae:a8:2c:17:96:eb:21:4f:03:67:
0d:8c:e5:f4:53:12:5c:20:5f:a7:db:ff:f3:eb:6a:53:b5:2b:
f3:e5:f6:72:8b:a9:22:5f:1f:91:36:17:bc:8e:f0:15:9e:7e:
ba:e2:2c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 12:56:35 2025 by rpki-client