Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: AxLkorvL2i18yW6O+zmuWNJHQbt0o69oGWx//ege1RI=
Subject key identifier: B7:82:A6:A0:C8:E4:FE:8E:A1:3F:B1:B2:14:4A:60:A8:6F:15:7D:50
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 019854569DC5B27A11BE41B1672FE4B18184
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: 0112
Signing time: Tue 29 Jul 2025 04:00:19 +0000
Manifest this update: Tue 29 Jul 2025 04:00:19 +0000
Manifest next update: Wed 30 Jul 2025 04:00:19 +0000
Files and hashes: 1: ZZ126kZc2Gs9amlt5Rc0VmUZOPw.roa (hash: laA9ImB0VtnpNlOC8RmvM5URSIvzaqpg8ewZvS5hOLw=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: /4Lpoc9H1PZV32iEiAlfr6q9qVAzcvp9q2CwlKszveA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:54:56:9d:c5:b2:7a:11:be:41:b1:67:2f:e4:b1:81:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: Jul 29 04:00:19 2025 GMT
Not After : Jul 30 04:00:19 2025 GMT
Subject: CN=b782a6a0c8e4fe8ea13fb1b2144a60a86f157d50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:38:12:a9:e4:d6:3d:61:88:14:f2:ff:be:5e:
47:61:b8:a7:33:ea:ae:ef:d2:b7:c5:5d:9a:a9:3f:
c1:1c:4d:c0:5b:62:29:95:49:02:15:55:3e:7d:9e:
c6:a0:0d:75:2a:a6:ce:3d:2f:14:a2:29:64:0c:c7:
b6:78:e7:e2:ed:72:83:ed:6a:97:a3:b8:5b:4e:e7:
9e:0a:1a:4d:61:cb:d0:68:f2:30:a7:43:c4:9c:3b:
d6:e2:4f:05:75:ba:05:b2:3c:8b:2c:12:fc:99:e8:
33:d4:40:8f:b8:18:32:87:04:b2:b6:5f:07:22:bc:
b8:56:1a:ad:15:76:18:dd:4d:2e:28:6a:8b:e4:fa:
0d:8a:72:ff:f7:a3:3e:30:fe:f4:92:cf:6c:cf:7e:
e1:97:94:46:39:9d:8c:24:b8:a9:9c:1e:06:6b:dc:
91:87:f7:4b:59:c2:d6:b5:04:1e:bf:3d:6d:aa:1d:
49:3e:b4:bb:41:d1:70:84:d5:80:2a:36:04:72:cc:
68:52:89:30:29:8a:f4:f3:17:b2:c3:65:f7:02:41:
11:8d:6e:04:ef:52:4d:dd:fc:ce:2d:ff:1e:85:37:
f4:ed:fd:54:cc:0f:8a:e8:3e:a4:b2:2e:43:51:33:
f3:52:8e:b9:26:b9:ce:90:9d:d9:a8:7f:74:d7:4b:
6b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:82:A6:A0:C8:E4:FE:8E:A1:3F:B1:B2:14:4A:60:A8:6F:15:7D:50
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:8c:41:8c:5b:3e:eb:18:cb:39:6d:dc:7d:aa:11:4b:0a:06:
7b:4d:39:a0:b0:5f:c0:8e:e2:c2:65:41:37:bf:d7:7f:a1:cd:
47:3c:77:2d:30:eb:f8:62:9d:2b:33:bb:6d:d8:49:0f:09:75:
65:ed:56:35:65:31:2c:f3:f6:c0:0e:7c:48:d9:d6:68:e8:72:
0d:52:0b:67:fb:b2:b0:54:07:1b:ec:0a:ef:cc:55:4e:ae:8a:
bd:4d:9c:69:a7:5b:3e:52:0c:83:e7:93:05:f2:92:08:4d:98:
e7:e8:3c:c3:9b:85:91:59:35:2c:79:67:af:07:b0:00:dd:33:
ed:12:17:96:48:8f:38:ff:40:1a:a2:97:e5:3d:3b:b0:36:c1:
c3:0b:a4:8a:3b:d0:eb:60:17:6f:53:58:ee:72:67:9a:a7:ca:
c2:f5:e8:52:27:de:da:1a:d5:13:58:b8:3c:2a:a0:34:67:c4:
ec:2c:e8:6e:77:08:00:6e:3d:03:2c:b6:0e:16:e2:0a:b2:af:
4b:6c:e7:a7:b4:f1:78:23:0b:04:3a:d8:62:26:94:eb:52:82:
74:dc:bf:d0:5c:bf:4a:55:71:3a:05:cb:5a:2d:08:0f:32:55:
d7:5c:83:c1:3c:4b:a6:b3:a9:44:86:3d:ce:15:e6:d2:fa:96:
52:35:c7:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 06:18:36 2025 by rpki-client