Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
File: ddoOY-skfZoLE7TLNt1nJJkgu8o.mft (raw, json)
Hash identifier: d2/4GmVoCIXINC0U5OkgwZ8WXp4HWLtJS9RAjAbWwV8=
Subject key identifier: A3:AC:20:D5:09:F2:6C:49:75:91:93:D5:B8:FA:39:93:B5:56:07:31
Authority key identifier: 75:DA:0E:63:EB:24:7D:9A:0B:13:B4:CB:36:DD:67:24:99:20:BB:CA
Certificate issuer: /CN=75da0e63eb247d9a0b13b4cb36dd67249920bbca
Certificate serial: 0198861FAC2D5F39BB17572A47C5B35FD7AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
Manifest number: 1623
Signing time: Thu 07 Aug 2025 20:01:19 +0000
Manifest this update: Thu 07 Aug 2025 20:01:19 +0000
Manifest next update: Fri 08 Aug 2025 20:01:19 +0000
Files and hashes: 1: Qij-xPisZGBBqpNgu1KPeAhYyeA.roa (hash: 0qt3Er+wn2Xj8MdmWfSXDbZ9aYW82PDchwg6o4/NTxg=)
2: ddoOY-skfZoLE7TLNt1nJJkgu8o.crl (hash: VW/rZ3pOf2B6ZM5dVC1iIJAAEGO72fS0XBjkluM4ZXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:13:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:86:1f:ac:2d:5f:39:bb:17:57:2a:47:c5:b3:5f:d7:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75da0e63eb247d9a0b13b4cb36dd67249920bbca
Validity
Not Before: Aug 7 20:01:19 2025 GMT
Not After : Aug 8 20:01:19 2025 GMT
Subject: CN=a3ac20d509f26c49759193d5b8fa3993b5560731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:14:6a:67:8e:a2:ae:72:d6:c5:13:cc:4b:0a:
39:57:e3:e7:cb:d5:bd:ce:e0:ce:32:f1:f2:50:ff:
2b:42:92:e2:16:57:35:2b:27:5f:91:b7:19:2a:82:
bf:c3:f1:88:ca:77:36:da:c9:34:50:cd:d4:d7:2a:
e4:53:85:07:d9:77:44:45:cf:4e:2b:19:86:8a:c9:
1f:e9:4f:3f:d4:c5:60:1e:e6:ec:8e:b7:da:c7:c6:
1e:be:58:d1:5f:4d:86:cf:ce:5c:df:86:ae:3a:08:
f8:34:24:55:1a:20:e6:6b:84:cb:c1:d0:11:a1:68:
9e:61:6a:79:08:ac:45:ba:19:4a:7f:ab:fa:e3:87:
a6:47:6b:87:a7:d2:be:79:66:4f:4a:39:f2:44:9e:
25:e1:e2:a3:b0:6f:ab:25:a9:42:d0:8b:e5:9e:d5:
55:a3:3b:dd:3f:b5:31:04:3c:61:bc:79:3d:5f:56:
39:a3:a5:e8:84:4c:6b:08:1a:cf:f8:f1:b0:49:43:
37:ee:32:b4:e9:a6:3e:6b:1c:c5:0f:89:b1:d6:7d:
ae:61:34:ff:2c:ad:72:7a:68:de:f5:ca:47:a9:c8:
08:dc:6a:d3:d1:11:36:79:6b:c7:f0:af:df:91:8e:
4d:0c:92:68:8b:6c:9a:4c:6e:30:f9:76:a7:b7:33:
b2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:AC:20:D5:09:F2:6C:49:75:91:93:D5:B8:FA:39:93:B5:56:07:31
X509v3 Authority Key Identifier:
keyid:75:DA:0E:63:EB:24:7D:9A:0B:13:B4:CB:36:DD:67:24:99:20:BB:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:d8:3f:f4:29:c5:76:30:7b:a4:87:a7:c2:4a:74:97:bd:41:
b7:28:6d:64:1d:e3:12:44:a8:11:1f:9d:4a:a6:83:1c:6d:3e:
d7:43:36:60:d2:4f:51:4b:98:47:89:3d:bd:ff:a3:9b:11:51:
8a:7c:ac:5f:3f:64:d1:0a:1b:ad:d0:66:2e:74:72:72:d4:a6:
89:e5:77:81:0f:5b:31:02:f7:88:d9:02:d0:34:3b:1c:b2:84:
c7:fd:ef:fd:37:69:20:ac:7c:c4:45:ce:46:42:f0:55:0c:00:
f8:65:13:fd:9a:0f:38:a1:62:b9:77:4a:ae:3e:44:c2:cd:64:
d9:69:4b:3f:a7:21:69:e8:36:69:cb:51:f3:39:76:9c:b0:ca:
a7:c7:ac:bf:ab:97:1a:81:1b:f5:01:c9:67:76:0a:9d:7b:9e:
76:b8:a2:08:62:b9:db:89:b4:aa:ce:dc:c0:93:7b:d1:76:7f:
da:e6:62:cb:67:d8:cf:ed:7a:f6:c0:82:8a:24:71:32:db:85:
99:40:c2:8a:28:95:d6:cd:9c:b3:52:8c:53:ef:09:4a:4f:69:
08:4e:88:29:88:d4:1e:3c:ec:2f:70:91:70:40:11:b3:c1:bc:
05:f5:32:5b:51:dc:00:a6:f1:e6:60:2e:90:19:92:27:1a:d5:
a0:03:7d:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiGH6wtXzm7F1cqR8WzX9euMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1ZGEwZTYzZWIyNDdkOWEwYjEzYjRjYjM2ZGQ2NzI0OTky
MGJiY2EwHhcNMjUwODA3MjAwMTE5WhcNMjUwODA4MjAwMTE5WjAzMTEwLwYDVQQD
EyhhM2FjMjBkNTA5ZjI2YzQ5NzU5MTkzZDViOGZhMzk5M2I1NTYwNzMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7xRqZ46irnLWxRPMSwo5V+Pny9W9
zuDOMvHyUP8rQpLiFlc1KydfkbcZKoK/w/GIync22sk0UM3U1yrkU4UH2XdERc9O
KxmGiskf6U8/1MVgHubsjrfax8YevljRX02Gz85c34auOgj4NCRVGiDma4TLwdAR
oWieYWp5CKxFuhlKf6v644emR2uHp9K+eWZPSjnyRJ4l4eKjsG+rJalC0IvlntVV
ozvdP7UxBDxhvHk9X1Y5o6XohExrCBrP+PGwSUM37jK06aY+axzFD4mx1n2uYTT/
LK1yemje9cpHqcgI3GrT0RE2eWvH8K/fkY5NDJJoi2yaTG4w+XantzOyTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKOsINUJ8mxJdZGT1bj6OZO1VgcxMB8GA1UdIwQY
MBaAFHXaDmPrJH2aCxO0yzbdZySZILvKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGRvT1ktc2tmWm9MRTdUTE50MW5KSmtndThvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi80YjVjMTktODIxYS00MGNlLTkxNjgt
ZGY0YTMxNzM1MjJiLzEvZGRvT1ktc2tmWm9MRTdUTE50MW5KSmtndThvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi80YjVjMTktODIxYS00MGNlLTkxNjgtZGY0YTMxNzM1MjJi
LzEvZGRvT1ktc2tmWm9MRTdUTE50MW5KSmtndThvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsNg/9CnF
djB7pIenwkp0l71BtyhtZB3jEkSoER+dSqaDHG0+10M2YNJPUUuYR4k9vf+jmxFR
inysXz9k0QobrdBmLnRyctSmieV3gQ9bMQL3iNkC0DQ7HLKEx/3v/TdpIKx8xEXO
RkLwVQwA+GUT/ZoPOKFiuXdKrj5Ews1k2WlLP6chaeg2actR8zl2nLDKp8esv6uX
GoEb9QHJZ3YKnXuedriiCGK524m0qs7cwJN70XZ/2uZiy2fYz+169sCCiiRxMtuF
mUDCiiiV1s2cs1KMU+8JSk9pCE6IKYjUHjzsL3CRcEARs8G8BfUyW1HcAKbx5mAu
kBmSJxrVoAN9Dw==
-----END CERTIFICATE-----
Generated at Fri Aug 8 00:03:43 2025 by rpki-client