Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json)
Hash identifier: sEYpJvejO3Y0WsYW2cgo+gCv+Ojkwh/7/S4NnoJGn3Q=
Subject key identifier: F5:D2:47:87:97:67:7C:38:53:4F:36:D2:89:09:3F:00:10:3D:82:AD
Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Certificate serial: 01985AFE087B3F1C763C3B3AFD9593A031CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
Manifest number: 0FF5
Signing time: Wed 30 Jul 2025 11:00:54 +0000
Manifest this update: Wed 30 Jul 2025 11:00:54 +0000
Manifest next update: Thu 31 Jul 2025 11:00:54 +0000
Files and hashes: 1: MBnjR0q6eR7PujQYuvXc6EY3kbo.roa (hash: HNqzyjDd+TtlMN5tniTDAwjj1tssNX0++6C4Wyg438o=)
2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: ZkownnGUnfr49QydjTugaO3BTFMFRjpvHXSbaXHq54s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 31 Jul 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:5a:fe:08:7b:3f:1c:76:3c:3b:3a:fd:95:93:a0:31:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Validity
Not Before: Jul 30 11:00:54 2025 GMT
Not After : Jul 31 11:00:54 2025 GMT
Subject: CN=f5d2478797677c38534f36d289093f00103d82ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:23:03:ec:3c:4f:b9:29:40:3d:bb:e2:17:48:
fd:1e:9b:c4:26:94:2f:cb:e6:fa:48:af:92:67:23:
72:37:3a:63:ce:ea:b1:63:85:01:8d:36:e4:b1:d0:
a3:8a:9b:73:9f:96:43:01:0e:1c:38:12:e3:a9:7a:
99:38:bc:aa:8a:05:bf:72:fd:74:44:a4:cd:31:d6:
07:2d:94:e0:78:db:1c:c7:32:a7:6f:0b:2a:65:b4:
fd:ae:08:40:52:de:e1:fc:ea:9d:22:42:89:7b:38:
88:df:c6:08:d8:c8:6f:27:7d:74:9a:60:57:e0:8c:
53:5f:cc:2e:0b:69:bc:d0:96:c5:fa:ef:71:ad:5c:
80:0e:eb:8d:ce:48:29:c0:76:98:ea:49:f1:5a:5f:
55:93:aa:4b:dd:51:5f:6e:86:33:56:1a:38:e2:64:
2f:9a:c0:7f:7c:7f:d8:d4:ad:0f:49:8b:aa:02:4a:
b8:81:fb:79:fc:69:f0:77:76:53:03:af:e1:92:7a:
a7:7f:f7:db:78:c0:96:7e:6c:23:6b:17:76:e9:0c:
f2:47:f0:2e:13:6a:5e:b4:04:44:84:b1:e2:63:74:
13:58:fd:84:58:05:8a:7c:e6:ca:e3:38:32:a5:3b:
ad:2b:d1:f4:f6:67:33:e7:d9:75:f3:15:49:96:73:
f3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D2:47:87:97:67:7C:38:53:4F:36:D2:89:09:3F:00:10:3D:82:AD
X509v3 Authority Key Identifier:
keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:27:bd:e1:6f:af:16:d2:32:b0:b5:05:bc:62:bd:2e:31:8e:
3b:36:e6:bf:e5:f2:c7:79:bd:96:64:55:08:56:ed:46:1e:0a:
ca:c9:b7:c3:88:b6:83:a7:75:f3:8b:1b:d1:4f:f1:8b:1c:b1:
79:c3:88:f1:18:90:07:aa:4a:be:ed:8a:d1:3a:ed:ca:d1:0f:
db:f9:74:09:d0:7f:5f:2d:08:ec:27:ff:a1:08:3d:b9:06:f5:
c8:4a:8e:11:68:dd:ad:0d:75:f5:a3:48:d7:91:04:7a:6c:0b:
3d:c2:26:9c:ba:32:a5:db:b2:bc:0b:e3:e5:d2:39:50:e5:73:
c8:08:af:43:8b:c8:fc:f1:fc:a4:8e:5a:56:e5:c7:b6:e3:8c:
b4:7c:e9:64:70:b9:bf:50:04:8f:6c:84:b7:17:1f:0c:47:93:
b9:7a:82:f3:e2:c2:b0:b7:97:bc:f7:87:7a:74:23:64:3e:bc:
2c:e5:a8:02:df:c2:c0:0c:a7:5c:0d:6d:b4:aa:f7:59:17:a0:
e7:a6:4e:2c:c0:bd:ba:09:54:01:20:8d:cc:de:d1:be:c1:02:
89:83:7d:96:13:4c:e1:c4:64:f5:55:63:44:04:ec:56:11:74:
e8:02:7b:60:2f:ee:7b:a7:0c:66:29:e2:f0:ad:bb:5e:56:e4:
5e:88:68:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 30 16:05:47 2025 by rpki-client