Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
File: dHnfUKMVAp6AqhlHr-EtselIYos.mft (raw, json)
Hash identifier: wbJA0noIK58q9i6O7CvNDcFqZZu2rpG5uztj4n36Mlg=
Subject key identifier: 44:17:6E:78:36:D4:1A:DA:48:29:A9:DF:F4:52:8D:BE:B3:D7:55:B5
Authority key identifier: 74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B
Certificate issuer: /CN=7479df50a315029e80aa1947afe12db1e948628b
Certificate serial: 019890354320A1808DBC4B02408C734E16AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
Manifest number: 0F29
Signing time: Sat 09 Aug 2025 19:01:06 +0000
Manifest this update: Sat 09 Aug 2025 19:01:06 +0000
Manifest next update: Sun 10 Aug 2025 19:01:06 +0000
Files and hashes: 1: KvOchdw6AYfLt261W6RR4KIthYY.roa (hash: WXdEqSkBC/gQsasA/7q/ZdUFdpwAbrzjieJX5Z97f4U=)
2: dHnfUKMVAp6AqhlHr-EtselIYos.crl (hash: L0lp2I0rTy46uU/v764IAe+O/kJLTM/QVnNmGCpFidM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 19:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:35:43:20:a1:80:8d:bc:4b:02:40:8c:73:4e:16:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7479df50a315029e80aa1947afe12db1e948628b
Validity
Not Before: Aug 9 19:01:06 2025 GMT
Not After : Aug 10 19:01:06 2025 GMT
Subject: CN=44176e7836d41ada4829a9dff4528dbeb3d755b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ce:c3:e5:e8:c7:8a:19:b4:60:2f:ae:5c:4a:
57:7c:4b:33:62:31:18:7d:7f:e6:29:c8:0c:83:67:
71:fd:3f:ed:b4:2b:85:04:70:2c:ff:db:8c:0b:b2:
40:ae:1d:55:0b:48:8d:b0:8a:05:20:0f:94:fe:7d:
df:1c:e2:ba:dc:14:a9:63:ba:f2:02:6f:fb:93:18:
8d:36:ba:1d:7b:50:78:f8:56:f4:fe:41:14:58:29:
b9:64:c1:15:f9:bc:3f:99:37:87:38:88:b6:72:4d:
7c:bb:ad:89:7c:8d:38:8b:f3:24:e5:78:ac:22:1d:
bc:df:97:75:94:60:0c:b3:4f:d3:13:d8:e6:28:e8:
41:6a:ca:30:53:64:bd:3a:7b:20:72:77:f6:86:c4:
db:21:b5:02:be:fe:7f:7b:56:ad:70:46:04:31:fe:
68:20:28:9a:38:d6:31:10:4f:e1:c5:4e:70:ba:e2:
a9:d7:8a:42:5b:1e:96:70:72:8a:bc:f0:3f:69:7e:
02:be:72:cf:98:d6:70:8c:8f:12:c2:09:64:91:66:
31:18:b9:6f:a3:95:74:23:d3:2d:41:70:16:8a:c9:
94:cb:f3:ff:36:aa:cb:1b:70:1d:cf:da:22:c9:4d:
52:67:39:27:20:5c:e0:72:1b:d0:8e:8f:4f:0c:58:
44:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:17:6E:78:36:D4:1A:DA:48:29:A9:DF:F4:52:8D:BE:B3:D7:55:B5
X509v3 Authority Key Identifier:
keyid:74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:92:eb:ee:ca:6e:bc:73:ca:1d:02:b5:4b:85:ca:d1:0b:5d:
9c:63:14:89:f2:d8:55:ae:6c:7f:9b:ed:09:72:16:d1:aa:5d:
da:8b:58:9d:0a:86:54:c5:ac:25:d9:f3:17:d2:d0:e3:c0:08:
d3:8a:26:66:8e:05:59:9f:22:51:8d:63:c2:d7:31:7f:0b:58:
45:52:60:0f:8c:6b:f3:cf:58:35:11:71:b7:99:b0:5a:d4:86:
e3:70:bd:c8:73:a7:ca:2a:21:51:87:4d:e6:64:78:e7:bb:cc:
22:1d:95:25:ef:34:eb:ac:1c:5c:89:f9:cc:2e:27:b5:2f:90:
44:da:af:db:98:5b:60:0b:9d:76:5f:08:33:34:bc:61:d2:b5:
c7:6e:4c:9f:63:2b:64:5e:05:8f:a2:c5:f5:e0:66:50:7f:c7:
6a:27:69:b5:91:bc:eb:73:d4:31:a9:84:d8:b4:ce:5a:ae:1e:
90:90:f1:3f:40:8e:d3:12:54:a5:01:df:7b:cf:92:81:cd:e6:
48:8f:68:56:36:c0:e9:4a:9f:79:e3:a7:d1:df:f3:15:ae:62:
c0:79:b7:2a:26:4a:3e:67:72:2b:53:94:13:08:aa:1f:cc:ec:
98:61:e6:a1:e3:a4:fe:0c:d1:d8:86:66:c0:ae:d5:b3:f7:a8:
02:4e:7f:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 05:35:33 2025 by rpki-client