Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
File: 1DNtXnTx-LfbEynwC7hXJBrnTRk.mft (raw, json)
Hash identifier: TrygL3y05j1F7wDkky28onOmKA8o57QLbygfE93klqY=
Subject key identifier: 96:66:89:EF:EC:0F:D1:58:23:27:5D:B9:06:9C:8F:FB:48:E4:E7:74
Authority key identifier: D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19
Certificate issuer: /CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19
Certificate serial: 01989335D3FF61D786D7E00B773F9078DC6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
Manifest number: 03B0
Signing time: Sun 10 Aug 2025 09:00:34 +0000
Manifest this update: Sun 10 Aug 2025 09:00:34 +0000
Manifest next update: Mon 11 Aug 2025 09:00:34 +0000
Files and hashes: 1: 1DNtXnTx-LfbEynwC7hXJBrnTRk.crl (hash: L/fvMXPvgO26paWIov1LdTd1GYOOQXnRBVhAFu4Xm8A=)
2: L86Czh-hgFnJfXYShvX9w1KKWEg.roa (hash: UlpXjqDOYfOCQf+VBo1cHNYWZUpj4u/uB6dnGVYlbBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:35:d3:ff:61:d7:86:d7:e0:0b:77:3f:90:78:dc:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19
Validity
Not Before: Aug 10 09:00:34 2025 GMT
Not After : Aug 11 09:00:34 2025 GMT
Subject: CN=966689efec0fd15823275db9069c8ffb48e4e774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:da:ed:a7:f6:93:3f:3b:c7:fd:d1:5c:dd:ab:
31:06:fb:60:03:2a:88:47:53:72:93:ac:fc:f4:4b:
04:86:ec:82:5d:df:f2:4a:27:f7:ba:ec:9e:ec:df:
8a:1c:fb:ce:b3:76:f8:7c:a9:ea:4d:51:d0:3e:08:
88:f0:61:e9:b9:e5:0d:2e:df:03:00:14:7e:fc:12:
78:09:5c:b9:7e:ec:dc:a0:70:d8:bc:e5:c4:ae:ea:
a0:f0:98:73:6e:e5:0f:b3:bb:b2:22:d1:eb:f2:30:
b4:2d:79:2a:0b:d9:75:a2:e4:14:6a:25:85:bf:c5:
97:6d:0d:e8:57:8e:d6:11:b1:18:63:9a:c7:ba:9c:
e4:6d:cb:05:04:bd:38:ef:c6:c7:5f:70:01:e1:1c:
84:7a:be:ff:a7:ae:b9:bf:55:f1:00:a6:02:cf:c9:
a7:2c:f6:03:1a:2d:f1:42:33:c5:c2:6f:6b:4a:d1:
54:6b:0f:66:5e:30:6d:8e:8a:69:4d:d1:67:28:80:
4c:09:72:bd:ac:c6:bf:a5:62:98:52:62:90:01:34:
9b:57:97:a9:aa:72:bf:0f:e5:17:e9:32:1a:d8:fc:
22:b7:80:3d:a3:1a:86:18:99:3e:88:40:26:b3:68:
36:41:21:9d:94:dd:42:3f:14:c4:ae:4a:6e:00:6b:
d4:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:66:89:EF:EC:0F:D1:58:23:27:5D:B9:06:9C:8F:FB:48:E4:E7:74
X509v3 Authority Key Identifier:
keyid:D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:84:50:16:a4:e8:6d:a5:34:48:8b:8d:1a:af:e7:aa:33:05:
c5:fd:69:10:4a:fe:6c:17:37:86:ec:6c:26:84:6e:3f:74:0c:
f3:0e:8f:ba:1d:a9:94:e1:7d:18:15:fc:43:89:30:11:58:bf:
6d:5d:84:14:f8:b1:82:e6:fc:10:24:65:a8:be:a0:41:f6:85:
88:b7:e5:8c:99:b8:14:e9:ee:2a:9b:16:b4:5e:01:c7:b7:25:
87:d3:0d:bd:67:4a:ba:03:80:fc:af:b5:a1:4d:07:62:ef:af:
eb:dc:8d:91:6d:c8:ce:e4:32:b6:a9:1c:9a:3c:68:1e:57:b0:
ba:48:0b:7b:09:fc:2f:8d:a7:e0:a1:ee:d6:32:80:94:c1:dd:
2b:29:e0:c9:46:6e:54:30:94:50:58:31:86:fb:f4:2b:bd:34:
d0:3f:8a:37:d7:03:eb:9f:69:29:61:3f:d9:ea:7e:a6:b8:e2:
a7:81:d5:db:08:c2:23:82:ee:f7:49:3c:5f:ee:63:db:ee:6c:
3e:f9:f2:96:92:da:2a:0e:f7:dc:52:ed:ee:dc:84:17:84:32:
99:a3:59:89:54:4b:23:a2:7b:98:ed:2f:2a:a1:f9:6a:8f:6a:
52:7a:a3:7f:6a:2a:75:1d:f1:a3:51:fd:78:23:a7:3f:10:e2:
05:a3:c8:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 15:56:37 2025 by rpki-client