Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/91101c-3437-4f3c-b120-752c933639e5/1/ddUf2ReUrgygfzkwcw0Gmqwbku0.mft
File: ddUf2ReUrgygfzkwcw0Gmqwbku0.mft (raw, json)
Hash identifier: fOiYYAmqT2GvgrOKeeBUlU3VO76QJCMsrFY11B0fz6Y=
Subject key identifier: 25:5B:2A:CB:FD:7A:46:25:27:18:25:70:9F:E2:49:56:10:6F:B9:B9
Authority key identifier: 75:D5:1F:D9:17:94:AE:0C:A0:7F:39:30:73:0D:06:9A:AC:1B:92:ED
Certificate issuer: /CN=75d51fd91794ae0ca07f3930730d069aac1b92ed
Certificate serial: 019849D2D40F881170272E730C6C83877892
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddUf2ReUrgygfzkwcw0Gmqwbku0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/91101c-3437-4f3c-b120-752c933639e5/1/ddUf2ReUrgygfzkwcw0Gmqwbku0.mft
Manifest number: 013E
Signing time: Sun 27 Jul 2025 03:00:10 +0000
Manifest this update: Sun 27 Jul 2025 03:00:10 +0000
Manifest next update: Mon 28 Jul 2025 03:00:10 +0000
Files and hashes: 1: ddUf2ReUrgygfzkwcw0Gmqwbku0.crl (hash: uIMjW4mwNFu9YGIbeMzSCbUOEclN1VszaS5SMMi3Grw=)
2: ggnUuCiiw5KDxP7VC2MuE-m18jg.roa (hash: hCPwze5ka3HW9b6kkZEr86kyUHzmDg3+6W3Ek9YCVgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/91101c-3437-4f3c-b120-752c933639e5/1/ddUf2ReUrgygfzkwcw0Gmqwbku0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/91101c-3437-4f3c-b120-752c933639e5/1/ddUf2ReUrgygfzkwcw0Gmqwbku0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddUf2ReUrgygfzkwcw0Gmqwbku0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:d2:d4:0f:88:11:70:27:2e:73:0c:6c:83:87:78:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75d51fd91794ae0ca07f3930730d069aac1b92ed
Validity
Not Before: Jul 27 03:00:10 2025 GMT
Not After : Jul 28 03:00:10 2025 GMT
Subject: CN=255b2acbfd7a4625271825709fe24956106fb9b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:75:3a:7d:1c:57:70:1a:86:b8:61:17:dd:ca:
77:fc:23:60:bb:07:36:cd:e6:39:89:3f:e0:20:d5:
85:b6:48:29:43:45:5d:17:de:71:d5:be:7d:a3:68:
17:ee:8f:bf:79:c5:05:3d:c6:c6:4d:19:c8:07:76:
de:3b:d5:16:5a:f7:1a:50:b4:a9:73:57:48:72:b5:
ae:b4:e6:3c:55:fa:98:e4:36:8f:aa:38:7c:6a:d5:
2a:97:91:4b:e6:a3:0a:92:8e:78:cc:83:98:5c:ea:
f2:e9:70:33:00:4d:76:06:04:29:c2:ef:01:0c:8b:
47:dd:ad:95:2d:0d:9f:e1:17:1e:3b:db:e6:69:3c:
05:72:28:1f:23:fe:0b:33:85:91:96:e0:a1:0f:a7:
27:c3:df:8a:c9:c0:4e:80:9f:31:f4:1a:e2:e0:48:
c5:14:8c:39:4c:c8:a7:3a:43:ee:42:59:15:6c:45:
77:05:f9:7d:98:e0:f4:e7:32:83:ad:9f:8b:b3:a3:
68:09:44:08:14:18:dc:ca:7e:3a:20:84:00:a2:2c:
15:1f:5c:bf:44:66:5f:93:16:68:3a:24:de:29:1c:
ef:9e:a2:ed:02:c8:4a:b3:03:8d:d5:01:d3:b1:7e:
3b:96:68:17:3e:59:c0:28:c8:15:34:68:6b:90:de:
62:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:5B:2A:CB:FD:7A:46:25:27:18:25:70:9F:E2:49:56:10:6F:B9:B9
X509v3 Authority Key Identifier:
keyid:75:D5:1F:D9:17:94:AE:0C:A0:7F:39:30:73:0D:06:9A:AC:1B:92:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddUf2ReUrgygfzkwcw0Gmqwbku0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/91101c-3437-4f3c-b120-752c933639e5/1/ddUf2ReUrgygfzkwcw0Gmqwbku0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/91101c-3437-4f3c-b120-752c933639e5/1/ddUf2ReUrgygfzkwcw0Gmqwbku0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:d7:cc:f1:16:56:df:3d:74:55:1b:d4:78:d9:b1:9d:61:31:
06:61:77:78:77:df:1f:de:f3:1b:ab:f5:59:ee:f4:a5:2c:90:
3d:c6:b9:9c:9b:6b:25:df:b5:a1:62:10:a7:30:10:be:b4:61:
ef:7e:dc:d1:f8:59:f0:81:57:9f:8a:ff:0d:57:4f:fb:af:d4:
40:38:30:e6:3d:ff:7e:ff:65:a1:52:4b:98:04:4f:60:3b:38:
5c:c8:2e:ae:ba:f0:ed:02:63:de:5e:bb:f6:b1:50:bb:fa:10:
d4:94:37:62:a8:3c:e7:62:0f:52:c9:b3:24:f7:2a:de:b4:d0:
15:35:6d:ca:88:a1:3a:62:ed:f4:2f:80:94:90:35:55:46:b7:
69:80:b6:bc:e4:ed:eb:46:b7:8b:5e:50:d6:22:6b:dc:9d:a5:
c2:4c:66:9b:fc:1e:73:ba:ab:71:66:93:fd:3f:89:3c:7c:5d:
ca:25:e7:ce:17:59:e9:31:30:b7:64:a1:5e:f8:78:62:c4:1a:
ec:51:9c:df:6a:e6:a4:e2:c4:4a:ad:74:7a:58:e5:a5:40:18:
f8:d2:da:38:d1:21:49:50:d5:8c:a0:7a:ff:12:04:ef:18:15:
48:b5:cc:03:97:06:39:cb:e0:81:dd:4a:35:4a:50:cb:dd:44:
69:9c:72:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 13:14:14 2025 by rpki-client