Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
File: 2DLajUWISdX0C6bwuSCPhYXZ4j4.mft (raw, json)
Hash identifier: +FmH1BlskpIfWBVaCQXzxqUZtbYXpVNVU9DjkRRLfZA=
Subject key identifier: AA:90:D6:85:77:37:EC:50:41:4D:A0:62:38:F7:3A:5D:89:BE:0C:A5
Authority key identifier: D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
Certificate issuer: /CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Certificate serial: 0198733D46F9CB1AB2520A05A5431F90EBC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
Manifest number: 1616
Signing time: Mon 04 Aug 2025 04:00:52 +0000
Manifest this update: Mon 04 Aug 2025 04:00:52 +0000
Manifest next update: Tue 05 Aug 2025 04:00:52 +0000
Files and hashes: 1: 0LdCYiyoo_rQZDLAQK9EXmWdrLs.roa (hash: ii+DUPaWPj2PKPLgx9rgU4vJhM6MjQajOc4FBEHl1O8=)
2: 2DLajUWISdX0C6bwuSCPhYXZ4j4.crl (hash: Wx7lruezGKkRfrMpuwJDzxpUrKZHSZhbCrV4Y+6gK24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:46:f9:cb:1a:b2:52:0a:05:a5:43:1f:90:eb:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Validity
Not Before: Aug 4 04:00:52 2025 GMT
Not After : Aug 5 04:00:52 2025 GMT
Subject: CN=aa90d6857737ec50414da06238f73a5d89be0ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6f:2a:fe:fe:af:f6:17:a7:4f:30:de:44:02:
19:eb:83:88:dc:68:b0:33:0f:52:0b:63:93:09:76:
76:b2:04:f8:aa:7e:b1:47:e5:74:cb:8f:0f:9b:09:
96:ea:0b:26:99:1b:fb:30:28:57:b0:8e:20:00:bc:
2f:f1:58:21:2f:e2:c0:5d:fc:85:76:ed:0c:06:f1:
f7:37:48:f9:0e:3e:8b:93:5f:a2:98:6f:36:d6:cf:
69:bb:f2:70:11:1d:68:14:24:73:47:f2:94:99:3e:
b0:83:02:a8:d0:81:1e:25:34:53:e7:d5:f1:9a:85:
23:23:d6:47:bc:e3:2f:69:27:80:f8:01:86:1e:c3:
42:c4:2b:ea:c9:67:ae:a7:e8:d2:02:5b:f2:b5:20:
15:73:1c:c3:3a:0d:b7:e4:e2:3f:65:14:53:d8:8c:
c7:36:52:66:c8:c2:43:9d:f8:22:ea:0e:30:16:23:
c2:66:5a:ea:4e:49:c7:21:94:e2:04:db:19:85:03:
11:37:16:bd:87:b6:1f:8d:c0:89:b8:c8:ab:3d:64:
54:d2:b2:0d:be:68:e2:f0:bd:12:ba:59:1b:14:55:
e5:3b:0d:9e:f4:3d:d4:6b:27:d2:ac:00:47:8e:80:
eb:b8:f0:39:48:cf:87:18:75:72:35:50:08:72:50:
90:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:90:D6:85:77:37:EC:50:41:4D:A0:62:38:F7:3A:5D:89:BE:0C:A5
X509v3 Authority Key Identifier:
keyid:D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:62:6e:b6:13:9d:ab:40:45:30:a3:0a:37:49:25:46:c1:f3:
36:8a:11:12:c4:5f:89:c0:79:48:d1:68:72:df:11:ed:b2:6b:
55:d9:d9:4f:79:bd:c1:24:cb:61:a6:12:63:8d:31:da:e2:b3:
f1:7b:ed:fa:f8:8a:77:09:6b:97:5c:9d:a0:8c:7c:d5:ca:21:
99:fb:bc:c8:99:1f:51:4e:53:52:7b:1d:4a:e1:9e:07:ec:13:
c1:3b:4e:04:3c:d8:e9:06:3c:6f:bf:59:95:00:cf:1d:c1:de:
b3:73:3a:bd:93:31:80:c5:45:ef:81:55:8b:35:23:ae:e1:d2:
00:08:b6:26:7c:5c:13:60:ed:3d:e8:2d:ab:42:0a:87:95:d3:
fc:33:c1:b4:98:2c:cf:37:85:bd:46:c5:26:68:a7:3f:18:a8:
37:f6:02:55:80:ac:e8:74:a9:bc:a6:4e:6b:5e:fb:91:cc:a4:
ed:78:af:a7:8a:e2:e2:ea:14:6f:0d:ce:79:b2:88:fe:69:14:
8c:a8:11:10:be:ce:c4:ab:5c:16:0b:18:99:43:04:85:10:2f:
fe:b9:86:66:5c:10:55:20:d6:42:39:da:d2:61:d1:9e:85:79:
9a:cd:29:ea:b6:bb:73:4a:34:10:66:89:34:09:f9:2e:0d:0a:
45:0d:20:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:01:48 2025 by rpki-client