
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
File: D97nlErE2jERKV2B4p3roAwWOpY.mft (raw, json)
Hash identifier: WA9y8tS/3XbSlLaQO25bpxH/RRWGFYH2WxmFEnbRgqE=
Subject key identifier: 8D:5E:93:30:C6:4B:AA:1F:21:EF:0F:8A:17:20:60:CB:A4:4F:4C:21
Authority key identifier: 0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
Certificate issuer: /CN=0fdee7944ac4da3111295d81e29deba00c163a96
Certificate serial: 01988B7CBA310CC7DE0E34A9A21FB6A1E5F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
Manifest number: 101E
Signing time: Fri 08 Aug 2025 21:01:03 +0000
Manifest this update: Fri 08 Aug 2025 21:01:03 +0000
Manifest next update: Sat 09 Aug 2025 21:01:03 +0000
Files and hashes: 1: D97nlErE2jERKV2B4p3roAwWOpY.crl (hash: tvPwnpE3H7r7heAHOsSOuG9y6oSFrQovobjTfdcmc2Q=)
2: Fe73gwKx3TfChZQCePRdIEAemH0.roa (hash: qBzf7ILpA60OZzhZbHEoimpJXoZWWGpm51oGlU43AdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:7c:ba:31:0c:c7:de:0e:34:a9:a2:1f:b6:a1:e5:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdee7944ac4da3111295d81e29deba00c163a96
Validity
Not Before: Aug 8 21:01:03 2025 GMT
Not After : Aug 9 21:01:03 2025 GMT
Subject: CN=8d5e9330c64baa1f21ef0f8a172060cba44f4c21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:25:47:34:5a:1f:d3:2c:aa:c4:18:1f:db:57:
69:ce:be:f1:30:10:db:7a:20:c2:90:6b:c9:61:bc:
6b:ca:de:4c:a9:64:69:7c:36:15:a2:3f:2c:39:4b:
7c:de:bd:47:0b:da:1c:56:27:cf:0e:f8:28:94:7d:
52:7b:d3:f5:24:e9:50:13:fc:3f:b0:6d:0e:ac:7e:
dc:97:2e:79:07:c9:3b:59:5d:43:bb:c1:f9:82:01:
a0:48:72:dd:72:3d:31:62:6d:55:c0:41:80:45:e4:
e5:87:0a:af:60:65:61:be:6b:5b:50:7e:cc:b9:6c:
55:c3:8f:5f:02:c7:17:c6:ff:15:7b:d6:28:e4:cf:
1a:ff:5c:98:84:88:8c:c1:d6:5f:49:02:0b:30:44:
c2:a5:df:7a:2c:47:89:e5:93:0d:42:73:e1:04:7c:
f4:e6:eb:49:3b:13:c5:5e:9f:56:9f:66:f7:20:37:
9b:df:df:3b:a6:a1:0e:4b:25:ce:e3:1f:78:d8:ef:
4e:42:db:8b:f8:76:bb:9b:c2:cf:f8:3e:af:93:89:
49:e7:9d:cd:27:52:77:35:51:cd:33:c3:66:fe:37:
77:ef:b6:a4:5e:09:91:0b:f1:48:4d:a4:cb:cf:bb:
67:e3:2e:51:a9:54:7c:c6:6d:69:6f:e0:eb:23:72:
bb:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:5E:93:30:C6:4B:AA:1F:21:EF:0F:8A:17:20:60:CB:A4:4F:4C:21
X509v3 Authority Key Identifier:
keyid:0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:3d:63:b8:d8:26:9c:71:b9:2a:3b:06:93:fb:a7:2c:40:05:
57:26:e5:2a:4d:31:43:2d:25:e6:65:e0:26:2c:d2:47:ab:70:
77:30:e9:b1:bf:ec:ca:d9:35:e3:32:85:d1:5b:a6:ad:40:bd:
13:67:84:cd:12:18:4f:24:41:1d:dc:2f:66:9e:03:34:4e:79:
24:37:6c:f8:be:10:4e:29:8b:f0:f8:21:ff:b7:12:1a:b6:5b:
08:fc:b1:3c:79:0e:06:4f:1c:e5:dc:6e:24:c1:4b:4c:dd:9b:
1b:7e:b9:1b:23:0d:d4:a6:f2:96:f9:9f:de:83:5c:7f:00:43:
f1:b7:97:d8:6f:ba:a1:ff:dd:a9:68:f0:e1:fa:2c:bf:b7:21:
02:76:4c:09:ad:42:02:ab:96:1b:80:14:eb:83:5c:8e:d2:46:
19:07:3b:42:b8:98:67:1a:ce:ea:09:56:b9:3f:f5:4d:1d:a8:
b7:85:c2:a4:66:e6:c1:b0:f8:ed:86:b0:38:88:3c:5c:dc:6f:
de:4b:e0:a5:c7:a8:6d:15:a1:0d:e9:ea:d6:9b:54:26:e8:62:
ce:ed:01:0a:ed:25:7c:4f:7f:67:a2:88:3f:d0:18:e9:5b:02:
42:f4:67:ec:e6:fc:77:e6:5f:fb:01:83:9f:df:60:8e:02:ba:
1d:ca:09:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:22:45 2025 by rpki-client