Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: wJyO4zLXLX7AbFNNfAzE+0O1ctZ9Jg0ZeJPeQ2fyPzM=
Subject key identifier: 81:D5:1F:7F:34:B8:6B:4C:47:63:53:6A:79:D1:79:EB:C9:76:2A:72
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 01984A41548C2C88651BBADA29852AB451D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 0117
Signing time: Sun 27 Jul 2025 05:00:52 +0000
Manifest this update: Sun 27 Jul 2025 05:00:52 +0000
Manifest next update: Mon 28 Jul 2025 05:00:52 +0000
Files and hashes: 1: GdRMKH6WdmmVubPmURRtVnS8GV8.roa (hash: gQYTKVfews/6lfRAQlloM0LgEpj91iqOXwXozcwIpNc=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: dDSefn1dM3UG4Y9e4kIKXNrQG7dTMcb8ZEw9bZw27yk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:41:54:8c:2c:88:65:1b:ba:da:29:85:2a:b4:51:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Jul 27 05:00:52 2025 GMT
Not After : Jul 28 05:00:52 2025 GMT
Subject: CN=81d51f7f34b86b4c4763536a79d179ebc9762a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e1:a4:21:e3:b2:dc:0b:f4:11:65:aa:3c:6a:
d1:dc:b4:be:9c:33:99:d9:46:5d:76:cd:85:ec:f7:
cc:cb:0e:0c:49:63:5e:4d:cb:15:62:36:e2:b7:e9:
ef:f4:68:b0:ea:78:80:5b:ce:55:5d:ae:dd:b0:68:
30:2d:68:48:6d:63:23:63:db:60:93:f3:a7:6f:04:
3d:bc:46:b2:29:33:48:2f:ca:82:76:4e:93:7b:17:
49:a0:e3:0d:f4:1c:a2:f4:2b:d5:9c:05:32:cb:3c:
18:1a:d9:85:cd:39:e4:46:0c:b8:b3:e0:03:9b:8f:
49:2d:e9:51:d6:e9:2c:10:33:ad:c7:a0:1c:25:01:
a8:d0:a5:1b:c1:05:56:8c:fb:92:32:fc:6d:76:46:
14:33:1d:22:87:ad:77:c2:96:e5:30:3e:ae:38:40:
fc:e6:76:c4:33:c5:8f:8d:75:74:c6:c0:89:aa:50:
e1:57:94:a5:bc:e6:71:25:23:9c:36:2f:8b:0a:f3:
54:08:26:3d:9a:e9:45:61:8d:c2:26:40:0f:48:20:
c7:83:39:c9:6e:1c:46:dd:bb:af:1a:26:ec:b9:f2:
c8:18:f4:67:5b:38:c3:60:cf:d8:58:d3:7a:59:39:
dd:28:95:c2:01:c1:03:56:3e:7a:f5:63:4b:33:1e:
7a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:D5:1F:7F:34:B8:6B:4C:47:63:53:6A:79:D1:79:EB:C9:76:2A:72
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:7a:ab:f6:50:c0:ad:eb:f9:5a:c7:52:50:f1:df:ef:25:31:
f3:86:ac:73:70:a9:2e:21:d3:84:79:e5:92:d3:d4:4e:bd:58:
61:80:fd:88:7e:17:47:7d:f4:03:d2:b0:b0:77:9a:f3:22:32:
d5:f2:b2:f6:24:6e:a7:26:4c:5f:b4:ea:d0:d8:9f:7f:34:b9:
83:24:60:d5:48:06:f8:91:76:3f:03:8f:a5:1c:09:f4:ff:ce:
1a:8a:b8:d3:f1:d0:a4:09:c3:fe:49:50:56:3e:7c:72:a3:54:
d9:66:9e:10:23:08:8b:ba:9d:02:02:18:84:5a:85:5e:ce:1d:
b6:e6:85:f1:6f:f9:d2:fd:bc:9d:e7:49:a0:3c:d2:90:07:9b:
40:d2:c1:d4:65:2d:18:41:dc:b8:f6:b3:8d:2c:ed:e9:57:b5:
61:fd:bc:f7:b4:fe:c6:f8:d8:d3:e8:f1:27:40:f0:64:d5:2d:
03:5f:23:14:6e:2e:b7:ee:bb:72:fe:7c:2e:6c:d0:f6:c2:92:
00:6f:29:2d:a1:14:9f:dd:90:a1:ca:53:b8:82:77:e6:a1:60:
bc:02:e9:a2:05:36:07:52:8b:24:bb:07:8f:d9:74:d1:2c:89:
d0:76:43:29:96:24:69:1d:9c:15:49:1a:0c:0a:98:c3:f7:b3:
3d:a0:01:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 11:31:56 2025 by rpki-client