Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
File: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft (raw, json)
Hash identifier: TlfNmvs62BQCLR/YsBmZ65yBQMWza9nHt2cpKMFQO/w=
Subject key identifier: 2D:14:2A:FC:7A:EB:11:6A:60:21:0F:40:A8:7D:28:BD:EB:8E:03:05
Authority key identifier: 0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
Certificate issuer: /CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Certificate serial: 01988AA07E9C85A146F14426FE47FD189359
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
Manifest number: 0D86
Signing time: Fri 08 Aug 2025 17:00:30 +0000
Manifest this update: Fri 08 Aug 2025 17:00:30 +0000
Manifest next update: Sat 09 Aug 2025 17:00:30 +0000
Files and hashes: 1: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl (hash: NR/QO3TFj7WGAEzPLtuh+T2mZSj9qqs9+nE/Pz0kCSs=)
2: zo9Y2aPXtg0v5rw18Mi_WOQc36Y.roa (hash: v9STSvD6P0pmUA0gxCp1HPZofea00hykboqUh1BCCCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:a0:7e:9c:85:a1:46:f1:44:26:fe:47:fd:18:93:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Validity
Not Before: Aug 8 17:00:30 2025 GMT
Not After : Aug 9 17:00:30 2025 GMT
Subject: CN=2d142afc7aeb116a60210f40a87d28bdeb8e0305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:aa:18:aa:40:aa:6c:ed:b4:e7:91:5f:f0:5a:
d4:ec:22:fd:db:17:9e:26:f5:89:79:1f:ff:cf:e1:
6f:df:20:bc:55:73:94:26:80:f6:5b:9b:77:80:a2:
c4:f9:70:96:f4:5f:45:5c:b0:da:94:00:dd:79:60:
2a:99:39:2c:93:9a:cc:93:dd:dc:74:fc:80:9b:45:
eb:60:67:e2:13:59:9e:25:c4:bd:e4:f2:74:33:bd:
fe:51:7a:69:ed:20:05:3b:d3:1b:b7:67:ef:a3:f5:
10:d8:ed:ea:56:6e:f2:a4:3e:00:da:fd:5b:de:81:
ad:ba:b6:30:ff:d7:cd:06:eb:f4:03:e8:ab:e9:d0:
6b:ca:55:b9:ab:96:16:e0:ba:7a:08:97:d5:e9:86:
e6:a0:29:22:7d:bf:ad:9f:64:4c:8c:e3:e9:ab:d8:
d4:82:92:92:94:ed:04:13:a8:9c:69:89:18:85:85:
82:dd:ac:a9:20:9e:6c:f2:6d:4c:54:ab:4b:de:54:
86:69:9f:7f:79:00:d1:3e:0f:2d:f2:77:0f:bd:8b:
6e:ee:22:b9:dd:eb:95:e6:c6:35:f0:b6:41:c4:ba:
74:60:58:91:db:6b:ca:22:46:e4:43:94:1c:10:84:
be:c7:ad:3f:da:27:70:09:2e:d8:66:0f:3e:7a:ba:
ea:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:14:2A:FC:7A:EB:11:6A:60:21:0F:40:A8:7D:28:BD:EB:8E:03:05
X509v3 Authority Key Identifier:
keyid:0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:33:b8:5c:72:59:71:99:90:b2:ea:d5:28:f0:ec:d3:c9:86:
6c:41:8c:05:9f:a4:8a:d8:bb:36:34:be:a3:38:ce:02:bc:41:
48:d6:84:1a:6e:72:da:e9:86:2d:36:6f:39:f3:39:5e:b8:4b:
05:0c:9d:a5:3d:f2:2c:36:75:d2:62:ab:de:e4:b2:c0:98:c7:
83:60:44:dd:ae:53:7c:3c:88:62:50:26:90:24:c2:f0:7b:a5:
3f:71:8b:e9:98:ea:1b:93:ce:c8:03:1c:8a:bb:6b:02:a2:ad:
30:bb:ce:92:10:c6:57:67:d7:a8:a8:17:25:83:09:5f:c1:69:
d9:98:fa:3e:59:75:6b:d5:45:23:9d:1e:6b:35:ab:43:7b:40:
d8:73:15:f1:ba:5f:f0:cf:fa:44:ee:f3:2f:4c:20:fb:2b:57:
37:19:e1:d8:6d:46:26:d2:2a:e5:e2:ec:97:ad:42:f0:6e:55:
dc:60:97:29:f9:ee:8e:24:85:da:53:8c:21:f6:dc:28:3e:71:
e6:e5:df:6d:54:85:54:2d:08:03:cd:96:c0:97:6c:02:b0:61:
80:b9:e5:a7:38:0d:b2:aa:99:63:8c:32:b4:e8:33:7b:8b:d3:
d3:59:e7:68:78:d5:a9:47:b9:f5:6a:c3:b7:b1:79:9d:2e:91:
59:3d:be:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 20:46:05 2025 by rpki-client