Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft
File: DQh0szPjXfFP2XDhiVgdoJO8gJM.mft (raw, json)
Hash identifier: R55auKIHQi4z6lY5vFw+BieP2RIBaO2+i2bbOHPFdZo=
Subject key identifier: 60:F5:37:75:C3:96:98:66:58:AC:EC:2A:12:78:9D:37:45:9D:0E:01
Authority key identifier: 0D:08:74:B3:33:E3:5D:F1:4F:D9:70:E1:89:58:1D:A0:93:BC:80:93
Certificate issuer: /CN=0d0874b333e35df14fd970e189581da093bc8093
Certificate serial: 01987C09A7EE80EDF582C1BFC7A10294D2B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft
Manifest number: 1621
Signing time: Tue 05 Aug 2025 21:01:04 +0000
Manifest this update: Tue 05 Aug 2025 21:01:04 +0000
Manifest next update: Wed 06 Aug 2025 21:01:04 +0000
Files and hashes: 1: DQh0szPjXfFP2XDhiVgdoJO8gJM.crl (hash: vZSWKS9GemwQnsMfvg0L+/byG9OkMpQHAyBU0LZdbZk=)
2: KXd_5OhpNxA2dAEUBM7BRlNmng0.roa (hash: naKbPeMlQvH49cTjg2nRiud0MzlhFN73NWmhIANkiB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 21:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:09:a7:ee:80:ed:f5:82:c1:bf:c7:a1:02:94:d2:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d0874b333e35df14fd970e189581da093bc8093
Validity
Not Before: Aug 5 21:01:04 2025 GMT
Not After : Aug 6 21:01:04 2025 GMT
Subject: CN=60f53775c396986658acec2a12789d37459d0e01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4c:5b:fd:1d:a5:03:66:ac:ec:fb:39:92:11:
64:dc:5b:5f:1d:b1:f8:cf:8a:c6:70:a9:76:10:a0:
08:7b:7a:17:f0:bb:5f:59:24:51:31:69:f0:9d:e9:
3c:c2:43:2d:85:84:73:06:5d:ee:d9:21:25:26:c0:
42:18:7a:a5:2a:94:fa:7a:eb:dc:44:35:9a:2a:85:
23:05:8b:aa:a0:26:7d:e4:ad:ee:01:a0:81:c3:a0:
08:a9:cd:c6:02:f4:af:08:5a:19:fe:c5:5f:4b:50:
43:f5:5b:82:68:a1:e8:07:c5:df:71:76:41:40:d4:
a0:c5:fe:7b:78:34:67:2a:d6:5c:1c:65:01:d7:87:
ab:42:0b:6e:84:05:6b:27:77:d7:f9:d9:79:2c:28:
34:31:6f:53:29:8a:3e:e3:a2:8d:98:63:09:9b:ea:
45:64:5f:37:06:af:c1:26:05:97:61:48:e3:60:01:
73:7a:ee:67:b7:76:dd:19:3b:15:53:a2:87:02:37:
3d:6e:b0:f5:55:e9:1d:15:17:79:1a:e4:4a:66:db:
0d:e7:27:da:2d:34:46:ca:91:50:71:50:d4:07:07:
43:4e:3a:6b:9a:06:95:a5:11:df:a0:d5:7e:5b:9d:
18:14:37:71:ab:46:89:20:7d:50:35:df:ed:9e:4f:
ab:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F5:37:75:C3:96:98:66:58:AC:EC:2A:12:78:9D:37:45:9D:0E:01
X509v3 Authority Key Identifier:
keyid:0D:08:74:B3:33:E3:5D:F1:4F:D9:70:E1:89:58:1D:A0:93:BC:80:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:64:85:98:b9:c4:25:73:75:45:ed:68:b2:0d:c6:9d:9a:b6:
00:fc:24:d2:88:b6:13:7a:95:a1:28:62:58:da:b3:c3:c1:18:
4a:01:c7:7b:28:f3:e9:6a:15:13:9e:b0:18:65:8f:60:94:f6:
b9:40:14:af:17:de:3c:b1:6d:42:21:a4:14:a6:6f:09:ec:8f:
bb:0e:c4:f9:34:74:7b:99:bf:dc:c7:9d:b0:dc:a2:4f:fe:2c:
71:0d:2a:20:0d:09:84:76:16:49:35:21:92:96:4e:84:7e:63:
bd:00:fe:02:86:7d:ed:3f:a7:80:fb:29:69:e4:a3:76:cf:53:
ba:aa:92:e3:a2:09:2f:78:c7:33:02:9b:11:9f:3d:45:c4:d4:
21:e6:61:83:a6:f2:2d:f9:74:57:d4:15:75:0d:91:cf:98:6e:
39:20:4f:90:5b:25:bf:47:6b:c5:27:c8:06:d2:b5:4b:be:ac:
a1:cc:3a:0f:01:72:1e:c4:79:a9:43:e6:23:8d:ac:ca:b7:ee:
79:41:7f:e9:81:5b:56:0f:3d:63:40:72:4e:73:57:fb:41:57:
86:af:2c:f5:b1:70:6a:fc:96:0f:3a:71:13:6d:1a:ae:1c:7e:
97:c0:ab:37:a2:25:79:e2:d7:8d:2d:51:06:78:48:40:20:66:
0f:69:9a:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:14:04 2025 by rpki-client