Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.mft
File: d8b7ZVRh1z_PIehhLDGHBqCJpcI.mft (raw, json)
Hash identifier: /FIFYSjsSJN7h8HHtbxMp8OQuH4uCH6Er/D3dIE0yFs=
Subject key identifier: C3:11:D0:69:69:9C:21:F5:C7:13:37:24:AF:A8:0C:DB:64:AE:58:55
Authority key identifier: 77:C6:FB:65:54:61:D7:3F:CF:21:E8:61:2C:31:87:06:A0:89:A5:C2
Certificate issuer: /CN=77c6fb655461d73fcf21e8612c318706a089a5c2
Certificate serial: 019857213BBE57A74FC9943C6BE5F1D44142
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.mft
Manifest number: 10AC
Signing time: Tue 29 Jul 2025 17:00:52 +0000
Manifest this update: Tue 29 Jul 2025 17:00:52 +0000
Manifest next update: Wed 30 Jul 2025 17:00:52 +0000
Files and hashes: 1: KzHfiiDg2EcCwKAmppKJC7QdUFA.roa (hash: QZ0RWt1gfijBZB5RL8yUAfB/DWbprl5d1kxp7e8kc3g=)
2: d8b7ZVRh1z_PIehhLDGHBqCJpcI.crl (hash: WaBrv4/30h/7Ug9orBAUUoIet9TOUrOjFdDYb+D4YBA=)
3: kuAnd9NqWnoBzCTnx0XxXmRi7Z4.roa (hash: gmNwgm6wcIRoGUSbEH7MItCnGX2M/c/Toez7Z0Fqses=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Jul 2025 14:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:57:21:3b:be:57:a7:4f:c9:94:3c:6b:e5:f1:d4:41:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c6fb655461d73fcf21e8612c318706a089a5c2
Validity
Not Before: Jul 29 17:00:52 2025 GMT
Not After : Jul 30 17:00:52 2025 GMT
Subject: CN=c311d069699c21f5c7133724afa80cdb64ae5855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0a:a5:9f:89:f6:49:cf:e6:9a:a8:22:09:6d:
22:b2:50:1d:4b:c1:2d:7b:dc:70:1e:fa:94:13:05:
80:47:2b:53:32:e0:52:78:6d:eb:b1:9e:6c:2f:42:
dc:9f:30:f7:5c:e5:3a:e4:ad:19:c0:8b:bf:90:49:
55:61:c3:49:de:5b:69:a3:23:64:44:37:3b:f1:b4:
ac:c3:d3:6c:e5:ef:b0:f2:ac:1a:5e:34:49:45:3e:
73:d2:13:d0:b8:7a:26:f2:ec:cb:e9:f5:02:17:0d:
74:1d:64:46:f2:1f:0f:25:26:d1:ab:3c:4a:fb:f4:
07:a3:13:4b:22:00:67:08:8f:c0:a9:d2:da:f7:cb:
75:4b:a7:60:bb:c2:2a:00:38:99:fc:44:eb:1a:f0:
6e:82:a0:ca:16:e5:d0:81:2a:e7:cb:9b:b2:3e:dd:
c7:76:e0:ae:f8:45:ca:89:d0:81:68:37:da:86:83:
bb:76:b7:78:6e:cc:db:f7:35:dc:53:43:da:a2:a7:
d4:04:16:35:71:89:74:80:ff:67:00:41:6a:9c:b8:
1b:04:58:6b:2d:fd:7a:e3:81:ef:79:c7:15:17:f3:
32:45:1f:e8:70:16:77:a5:81:28:91:82:eb:e3:b3:
6e:92:18:bd:50:ae:a2:64:e4:74:9b:3a:62:80:17:
1c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:11:D0:69:69:9C:21:F5:C7:13:37:24:AF:A8:0C:DB:64:AE:58:55
X509v3 Authority Key Identifier:
keyid:77:C6:FB:65:54:61:D7:3F:CF:21:E8:61:2C:31:87:06:A0:89:A5:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:74:9a:af:17:dc:d1:67:96:5e:78:ec:3e:13:60:4f:9c:66:
9c:c2:2e:be:8c:13:b9:62:ba:c8:b0:5c:bc:be:73:8e:9f:c9:
e7:a9:05:a2:a8:8e:7a:8b:e6:89:63:31:f9:b5:2b:07:f8:a2:
12:58:22:d5:f1:67:d4:0c:34:c0:8b:17:68:c5:ef:21:6d:34:
ee:92:c5:a1:41:9b:40:9a:49:34:2f:87:38:3c:a4:40:95:52:
9d:cb:60:90:b8:5b:6b:60:d3:3f:5e:05:b4:99:f9:c5:26:49:
ba:ff:25:18:1f:1c:c4:72:e4:3e:c4:02:f9:fa:6b:98:ab:8d:
a6:6b:a2:e5:1a:6b:5c:99:9d:6c:35:c1:68:07:a1:d4:a8:48:
fe:d1:fd:1a:94:50:42:a3:bf:cd:23:89:96:2a:17:27:34:b5:
6b:e5:36:77:4b:cc:ad:10:0c:29:4d:6e:3c:10:75:37:46:90:
8e:26:93:89:4c:59:4a:44:05:6f:79:b0:8f:18:9a:2e:d2:a3:
08:9d:17:5b:72:82:d3:c5:19:4b:b7:ea:6a:71:e0:37:bb:97:
17:27:45:bf:9e:68:2c:00:2e:45:10:7b:75:4f:ca:74:e8:85:
93:2c:ef:3b:70:30:55:5d:2a:12:ed:60:36:35:2e:93:0a:18:
f0:3f:7a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 18:55:25 2025 by rpki-client