Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
File: 0ffNDsTDvFTFlDEwfuw27wOCdzM.mft (raw, json)
Hash identifier: KSYDxvrKJRG7wSWf2BoX7TLA0BPP40y7jeF3iLYiopg=
Subject key identifier: CF:C1:50:F5:64:74:BD:14:69:7E:88:99:E1:CE:15:77:18:90:B4:8F
Authority key identifier: D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
Certificate issuer: /CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Certificate serial: 0198A0BB69ABC5ED989A99519BED26ED95C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
Manifest number: 162D
Signing time: Wed 13 Aug 2025 00:01:33 +0000
Manifest this update: Wed 13 Aug 2025 00:01:33 +0000
Manifest next update: Thu 14 Aug 2025 00:01:33 +0000
Files and hashes: 1: 0ffNDsTDvFTFlDEwfuw27wOCdzM.crl (hash: AdSnAzyqeOsUjpzq9BDT2mI9Y+lL9Qn35ensgqIged4=)
2: On0cxXdpQvZ_jJI1Rkh3ZfuLUxc.roa (hash: 9kDdHzwM7pfMm0bFoQEb02mFtUGZEAgcsF0RvK2rnzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:bb:69:ab:c5:ed:98:9a:99:51:9b:ed:26:ed:95:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Validity
Not Before: Aug 13 00:01:33 2025 GMT
Not After : Aug 14 00:01:33 2025 GMT
Subject: CN=cfc150f56474bd14697e8899e1ce15771890b48f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a3:38:97:c8:ef:84:3c:4d:51:20:a2:79:c3:
26:38:4a:48:ed:0f:9f:0b:b7:2a:83:9f:5e:88:48:
aa:66:6d:fd:32:c9:a4:68:b6:13:65:41:7b:3b:c1:
b8:cb:cd:2b:43:37:88:bd:2a:c6:7d:8e:53:62:bc:
76:08:78:05:b4:d1:59:c3:50:8c:bf:02:34:62:3d:
dc:49:d2:d8:ce:be:71:8d:fd:13:70:b2:3d:f1:91:
34:bf:26:b1:77:91:a9:3c:b2:0c:59:49:5e:0b:f2:
80:7e:70:5f:fb:25:e2:1a:f8:b6:42:7b:c0:0a:e5:
42:59:fc:f9:35:6d:bd:37:83:b0:42:4b:e5:48:fe:
d8:ef:e1:23:10:d4:42:d5:a8:ae:06:59:49:d6:d2:
8f:68:ed:d4:62:bf:7a:5b:cb:44:6e:73:51:46:89:
ec:1d:a6:95:5c:7b:9b:44:a5:1f:0e:08:49:41:91:
a3:95:53:c8:98:44:9b:11:74:b9:7a:d3:fb:eb:92:
a7:23:06:1f:84:66:1e:6f:1c:fc:19:a7:55:f2:e5:
a6:55:c0:98:51:09:0c:9f:34:8c:a8:17:8b:38:35:
4b:03:08:fa:3b:0d:e3:09:c1:ad:d9:d0:f2:28:15:
66:78:51:b5:5f:d9:04:29:99:13:98:dd:35:ed:39:
36:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C1:50:F5:64:74:BD:14:69:7E:88:99:E1:CE:15:77:18:90:B4:8F
X509v3 Authority Key Identifier:
keyid:D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:e5:49:54:9d:a5:36:f3:30:b7:c6:ff:77:7c:81:87:98:59:
20:7c:b2:f3:7a:d7:46:e8:fc:66:c9:7b:1d:02:6c:ea:65:f0:
dc:bc:87:98:c6:cc:a9:1e:6d:69:07:4c:a9:74:e7:a2:16:85:
6a:b6:96:75:47:d0:f7:52:ff:23:b2:e8:6e:ec:ff:c0:28:32:
5a:6d:ea:b2:96:ba:e2:04:b8:24:97:10:dc:0e:72:af:05:14:
00:60:72:23:3b:66:e2:ce:54:c9:4b:a6:78:48:6a:2e:3f:8e:
6c:1d:17:b1:d5:1b:95:b4:ab:10:31:f4:78:c2:27:ac:77:39:
b7:d0:80:9e:11:c8:dd:ba:87:a6:f8:e4:e9:ba:f5:ca:86:5a:
e2:7a:99:c8:4a:b5:72:7c:52:70:77:87:7c:c0:ad:05:0a:6b:
d9:3b:88:28:f3:40:3f:3c:06:0b:08:94:e5:ec:4b:c1:2b:f1:
fc:98:dd:ff:80:3d:07:05:a4:20:49:1c:16:a6:f5:aa:89:10:
f1:4e:bb:14:2f:3d:17:ed:f0:b4:0f:b4:7b:06:a2:fe:be:aa:
0a:46:20:f5:68:d2:76:7a:22:18:a3:2c:e4:88:14:6d:c3:a7:
e8:c9:c8:cd:f7:92:60:3f:72:ee:46:d6:8e:f6:27:04:f7:7d:
dd:c5:36:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:42:21 2025 by rpki-client