Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
File: dotOLq79y-wVupnop6IcieSyzL0.mft (raw, json)
Hash identifier: hU2moxPxfeoIhAiCH5+1ntC0b6i50XAHihjuIFa6xFs=
Subject key identifier: 21:E4:DA:58:AB:57:48:49:69:94:20:B9:B2:BD:4B:BE:FB:75:B8:1E
Authority key identifier: 76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
Certificate issuer: /CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Certificate serial: 01984B5429553D27866DCB0240CC5BCA58E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
Manifest number: 016D
Signing time: Sun 27 Jul 2025 10:01:03 +0000
Manifest this update: Sun 27 Jul 2025 10:01:03 +0000
Manifest next update: Mon 28 Jul 2025 10:01:03 +0000
Files and hashes: 1: 2d_NXZtW0ODYRMQ4wdJe7FkxoW0.roa (hash: PhAe9DgdWLVDbJJiZelbxMyByKXlfBNEMtHqWSG1jZ8=)
2: dotOLq79y-wVupnop6IcieSyzL0.crl (hash: uVl0IEsuhE/aBp/0QCTuuEmmJZQQLG2gxoSqGmBfLc4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:54:29:55:3d:27:86:6d:cb:02:40:cc:5b:ca:58:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Validity
Not Before: Jul 27 10:01:03 2025 GMT
Not After : Jul 28 10:01:03 2025 GMT
Subject: CN=21e4da58ab574849699420b9b2bd4bbefb75b81e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a3:b1:cf:61:ee:6c:92:6f:05:bf:bf:c4:47:
00:46:e9:00:97:66:92:3c:dc:e5:51:bd:3b:02:24:
38:d1:0f:d3:a8:f1:7b:ca:d2:48:d5:6c:9d:76:e9:
e1:6d:c4:10:fb:cc:d8:74:20:99:0e:21:9f:d2:b3:
f6:e3:7f:58:ab:48:7b:98:ae:b3:30:c7:e8:b5:6b:
ba:e6:9f:21:97:9e:84:69:91:19:dd:3b:c8:94:c2:
c4:8c:ea:ad:27:b8:f2:8a:a5:c0:55:05:b5:c2:ca:
93:6b:f1:cf:0b:d1:47:54:fa:ff:fc:01:cc:31:9e:
f9:6e:d7:92:de:67:82:f4:b6:b7:c4:59:15:9d:7f:
d4:ab:c8:9b:a2:5b:90:85:1e:8a:b4:26:4b:3f:94:
2c:57:7a:9f:16:c8:3c:a8:f1:b7:12:ab:96:bc:da:
29:53:8c:03:80:76:e2:74:58:d2:0f:0d:d2:db:98:
7c:0b:56:e2:89:92:3a:c9:aa:53:14:f7:75:73:fb:
f6:f9:b8:57:6c:05:ad:7b:3c:85:7e:9b:6e:38:03:
4f:35:60:6f:ad:ed:7b:d0:db:32:38:88:ea:42:bc:
1e:17:ae:9e:3e:d3:ba:1a:ac:35:55:df:19:37:3d:
11:52:49:43:b4:ce:8b:ef:c2:25:9f:ad:79:19:64:
49:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E4:DA:58:AB:57:48:49:69:94:20:B9:B2:BD:4B:BE:FB:75:B8:1E
X509v3 Authority Key Identifier:
keyid:76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:59:ee:87:10:69:38:34:23:4d:d9:85:5e:3a:3c:bf:8d:fb:
70:14:7f:dd:ab:28:c3:5a:04:54:ce:eb:34:1e:fe:67:dd:8b:
b8:f3:01:20:4e:ff:6f:4b:6b:a6:0e:64:6c:ca:63:4c:27:7f:
59:1f:b6:f0:1b:d3:af:0b:ac:75:11:34:06:05:d7:66:e8:a5:
8f:fa:ec:50:8c:d3:ed:65:3c:98:02:dc:32:b8:cf:c2:47:12:
fa:c7:ae:2b:0f:17:14:60:cd:9a:d4:a0:e7:37:22:b9:66:d3:
ab:3e:53:3d:5c:bd:d8:ea:64:11:fd:de:fe:66:5c:e7:4f:ec:
8d:ca:90:3d:38:97:f3:2d:a3:5e:ba:4f:6d:62:00:a3:5e:69:
74:06:ff:0c:5a:05:da:ac:aa:d9:78:00:50:9a:df:38:70:53:
4b:d2:85:0c:71:dc:59:2e:9a:40:b0:65:db:27:cf:a2:f7:0a:
38:de:80:df:c3:6e:9c:52:af:6a:22:16:e1:4c:4d:92:a6:8b:
e4:79:82:73:b9:52:b5:a9:de:63:dd:6d:ed:fd:8d:b7:b4:f7:
90:9d:37:0a:ba:19:07:26:53:6f:23:fb:07:ae:a8:8d:e5:fa:
35:a5:26:18:da:bd:57:bb:44:59:d5:81:8e:09:38:23:3f:f9:
55:d1:12:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 12:01:23 2025 by rpki-client