Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4d7a96-0574-4a09-850d-75137b12842b/1/DM1NST05HKRGjmEs6RtH8cgoM2I.mft
File: DM1NST05HKRGjmEs6RtH8cgoM2I.mft (raw, json)
Hash identifier: t/28SSc3FNoVzEIdgnk3j84oygzTQwzJD7ZkjfiuYhQ=
Subject key identifier: 54:1D:A3:E2:C5:80:48:C1:FD:81:F4:44:25:B7:E1:EB:30:A6:74:61
Authority key identifier: 0C:CD:4D:49:3D:39:1C:A4:46:8E:61:2C:E9:1B:47:F1:C8:28:33:62
Certificate issuer: /CN=0ccd4d493d391ca4468e612ce91b47f1c8283362
Certificate serial: 01987CE5356C848C828FC3EAC6FC83AC688C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DM1NST05HKRGjmEs6RtH8cgoM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4d7a96-0574-4a09-850d-75137b12842b/1/DM1NST05HKRGjmEs6RtH8cgoM2I.mft
Manifest number: 91
Signing time: Wed 06 Aug 2025 01:00:52 +0000
Manifest this update: Wed 06 Aug 2025 01:00:52 +0000
Manifest next update: Thu 07 Aug 2025 01:00:52 +0000
Files and hashes: 1: DM1NST05HKRGjmEs6RtH8cgoM2I.crl (hash: b+ok19UCCuut5yMXzH2wvcJ2uV4jNiHmd2gAg0IJE1c=)
2: UCbP0uMxwI1Dtwy_MSnoOs0srFA.roa (hash: FXCOZ3RR1v7GAOBmOczwXx+7sehvCfZ7oMWfxcGZPmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/4d7a96-0574-4a09-850d-75137b12842b/1/DM1NST05HKRGjmEs6RtH8cgoM2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/4d7a96-0574-4a09-850d-75137b12842b/1/DM1NST05HKRGjmEs6RtH8cgoM2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/DM1NST05HKRGjmEs6RtH8cgoM2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 01:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:e5:35:6c:84:8c:82:8f:c3:ea:c6:fc:83:ac:68:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ccd4d493d391ca4468e612ce91b47f1c8283362
Validity
Not Before: Aug 6 01:00:52 2025 GMT
Not After : Aug 7 01:00:52 2025 GMT
Subject: CN=541da3e2c58048c1fd81f44425b7e1eb30a67461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:24:a3:59:89:e2:66:36:7f:c8:31:80:12:bc:
66:7a:98:20:e4:1b:ec:a8:46:f6:89:89:e0:74:03:
4f:be:54:15:ac:c1:de:92:3b:c3:cd:9b:7e:7a:64:
f8:d1:63:65:a1:f2:ae:c5:1d:3c:3c:96:00:c0:c6:
cb:28:45:8f:95:63:c2:01:ce:95:92:24:31:55:60:
ff:cc:2d:f7:fd:7d:d7:0a:a2:26:ba:0b:c6:a9:32:
99:e8:85:30:29:75:6a:c9:3c:d3:5b:2d:cc:ad:e4:
79:87:41:6a:6a:21:b7:e1:86:5f:4b:79:0f:58:b3:
31:62:32:67:d9:bb:c4:ba:1f:71:28:33:6b:19:3a:
1c:ff:4d:ab:97:6e:6b:cc:c6:a3:e8:00:21:ce:6f:
76:fc:3f:0a:2e:c3:5f:66:d3:4a:40:a7:2d:ce:c3:
c6:65:90:58:44:59:b7:c3:26:f4:93:4b:e6:e9:07:
94:5e:55:82:f8:fb:ef:1e:92:c8:27:aa:79:8d:5f:
b3:65:53:c2:be:a7:c1:5a:14:64:7b:ed:27:1f:ae:
52:c7:f8:9d:46:30:0f:ec:1c:11:2c:bb:57:41:d6:
cf:19:8c:ba:6f:fb:7d:48:e8:c7:5e:00:2c:6c:fd:
09:95:c6:4b:b9:52:f2:67:6e:fa:0c:3d:b9:e4:ff:
80:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1D:A3:E2:C5:80:48:C1:FD:81:F4:44:25:B7:E1:EB:30:A6:74:61
X509v3 Authority Key Identifier:
keyid:0C:CD:4D:49:3D:39:1C:A4:46:8E:61:2C:E9:1B:47:F1:C8:28:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DM1NST05HKRGjmEs6RtH8cgoM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4d7a96-0574-4a09-850d-75137b12842b/1/DM1NST05HKRGjmEs6RtH8cgoM2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4d7a96-0574-4a09-850d-75137b12842b/1/DM1NST05HKRGjmEs6RtH8cgoM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:fd:01:8c:cb:d9:b9:ca:9d:92:45:13:83:ce:47:04:22:85:
2f:af:60:84:85:57:02:f4:1b:c0:6f:47:6a:19:55:b5:7c:c3:
4c:16:ff:0b:96:69:91:35:13:9a:d4:33:54:30:d7:3e:68:25:
c8:7b:b0:06:6a:a8:ff:52:4e:4a:25:34:99:d8:42:11:1b:6f:
70:91:eb:74:be:ae:c2:82:74:b2:83:c5:70:8b:b9:f1:59:ac:
60:6b:98:32:08:aa:2a:25:1a:8e:61:ef:92:48:58:9d:1e:5b:
6b:9b:20:5e:2d:76:a6:6f:c2:d3:f5:da:74:0d:c5:73:3f:bf:
51:7b:40:9b:92:1a:33:7e:56:47:a4:ac:54:3d:49:ab:3f:ca:
b5:83:c9:7c:8e:f0:47:18:c8:fc:2d:0a:f4:b1:dd:54:80:8b:
fc:40:29:01:71:79:1e:64:89:e5:49:78:3f:5a:9b:48:f3:f0:
2a:29:b2:dc:d5:f7:02:be:aa:b6:ed:7e:58:78:41:79:73:2b:
ff:83:eb:f8:77:16:78:4a:cd:dd:6f:57:ba:2a:a5:63:86:59:
7c:38:1d:26:ca:94:8f:62:f5:b8:7f:c2:b1:a3:96:ce:ca:87:
e4:5d:0e:d9:1f:b0:bc:91:63:5a:81:44:9a:4a:51:4d:40:74:
25:aa:0d:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 11:09:20 2025 by rpki-client