Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
File: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft (raw, json)
Hash identifier: HpiI8ivLF2zVZ45UhZz2huE3jIhbN417AU7puatHZX8=
Subject key identifier: 40:2E:47:4A:74:3E:79:0A:CE:91:E0:19:1B:67:10:D9:37:3D:C6:1F
Authority key identifier: 0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66
Certificate issuer: /CN=0e1dd539525a39d847014e8fea3c641d973cc866
Certificate serial: 019896A5C3E7D0C2251C86340170E72049CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
Manifest number: 05AC
Signing time: Mon 11 Aug 2025 01:01:42 +0000
Manifest this update: Mon 11 Aug 2025 01:01:42 +0000
Manifest next update: Tue 12 Aug 2025 01:01:42 +0000
Files and hashes: 1: 5qU9a0oGWmmroynSN69UsFF4Lyw.roa (hash: ck+/DYuUP9vUcXqAS40voGKy/13DDBxa+VF1/FTp/II=)
2: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl (hash: p0zRrm/FnAse6mxv7HqMzWFWaHxTTwnVqi8cN+U2Ais=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:c3:e7:d0:c2:25:1c:86:34:01:70:e7:20:49:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e1dd539525a39d847014e8fea3c641d973cc866
Validity
Not Before: Aug 11 01:01:42 2025 GMT
Not After : Aug 12 01:01:42 2025 GMT
Subject: CN=402e474a743e790ace91e0191b6710d9373dc61f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a7:be:3b:e0:96:f0:32:81:8b:7c:e2:d2:c0:
40:ff:21:9e:e9:c9:d2:80:87:05:84:40:85:6e:db:
b0:41:98:d9:5a:1d:2d:cf:4b:f8:87:2f:5c:56:4d:
ff:d1:5d:e4:22:ce:50:bb:a8:49:4b:a3:51:8e:43:
99:0c:bd:5b:2f:77:81:c6:54:24:4b:73:af:db:d1:
88:4d:f4:c7:cd:f0:cc:bb:b8:db:f7:4d:33:1e:1e:
b6:49:88:a2:a7:79:e4:40:91:b1:ca:bd:2b:3e:c0:
e6:fe:ca:36:e8:f0:9d:e4:76:64:7b:1c:80:57:9a:
a8:66:71:f6:a8:94:6a:b6:e3:7f:a5:c5:80:06:53:
46:f3:6f:0f:2d:c4:e8:38:d3:21:8b:fa:a3:f1:46:
a2:19:8b:68:18:a0:f9:60:12:50:5f:71:14:7d:e7:
3c:a2:6c:46:1e:dd:42:fb:2b:24:2e:ad:71:d9:f6:
4f:8d:d4:b2:d8:34:0b:0c:aa:7f:f4:a9:fc:01:56:
6c:04:49:a7:75:b5:be:fc:e9:6d:6d:a6:69:01:aa:
46:1d:86:f9:98:61:cc:3d:0e:73:67:db:4f:83:d7:
28:e1:17:07:6d:88:40:8d:fd:31:3c:bc:fd:ef:ff:
b3:b0:a4:a1:87:ae:67:a1:ad:e4:a2:e9:ec:20:82:
e5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:2E:47:4A:74:3E:79:0A:CE:91:E0:19:1B:67:10:D9:37:3D:C6:1F
X509v3 Authority Key Identifier:
keyid:0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:71:8c:79:70:88:c2:b2:4e:a8:f3:c4:f3:c9:36:ca:1c:6a:
ca:26:e1:97:e0:f2:6a:25:9d:d7:32:8b:c8:a3:77:cc:75:cc:
c3:8d:ff:64:45:e3:4c:bc:1d:ed:ff:a8:85:7a:d8:8d:63:12:
e1:29:8e:db:bf:7f:d6:e0:7b:6e:b1:e4:20:62:27:3f:b4:5f:
20:ae:75:3f:ee:75:29:8d:e6:02:60:b6:cd:97:ab:ea:24:94:
af:03:7a:5c:7a:1a:19:2f:cb:22:a3:85:bb:d1:91:de:61:3f:
ce:4e:f2:fb:ad:74:22:de:a0:ad:b0:40:42:ab:1b:45:86:84:
bc:87:80:02:0c:a4:4d:fd:7f:64:69:9e:b6:5d:63:22:79:d6:
60:40:92:06:d5:ba:e2:58:9f:fa:ed:97:53:95:7e:48:52:1f:
90:4a:85:92:39:e5:63:8a:80:71:90:fe:2b:06:a4:0d:45:eb:
9f:15:8a:f7:68:dd:7d:61:1d:56:3a:e5:f5:6d:0f:e9:33:7c:
b1:4d:d8:1a:f7:83:37:ac:76:f1:ab:4c:38:ab:9b:ad:7d:a5:
7e:df:6c:44:21:cb:e7:6b:f9:ad:25:a5:33:cd:3c:0f:a6:a2:
27:5c:69:ae:7b:17:8d:34:54:9d:a7:98:cd:3d:3d:4c:d2:5e:
89:af:b6:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:09:05 2025 by rpki-client