Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
File: 1DsiEwqpp3NCVHaewTv-Fx-h4os.mft (raw, json)
Hash identifier: be4Bvw7aL2qllsnAKN46XU2APiCQcbzRJi1q9zYXSjI=
Subject key identifier: EB:89:ED:7A:CA:EF:96:74:26:D5:AF:B4:58:C8:63:63:2D:D9:B8:15
Authority key identifier: D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
Certificate issuer: /CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Certificate serial: 0199228D134B5BE2EB98D759386DE9C0BDC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
Manifest number: 0B7B
Signing time: Sun 07 Sep 2025 05:01:34 +0000
Manifest this update: Sun 07 Sep 2025 05:01:34 +0000
Manifest next update: Mon 08 Sep 2025 05:01:34 +0000
Files and hashes: 1: 1DsiEwqpp3NCVHaewTv-Fx-h4os.crl (hash: eRtxnK4YcPCC66QY/X9jDvSmtKEvfLrmW/yG/W5hIQ4=)
2: wEdGwXpwYmsgP9g00gzYyHwBX_w.roa (hash: xXn4YaJmCyamPKNCyA6d81IZAPpAi8iJdAjjF+NkEPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:13:4b:5b:e2:eb:98:d7:59:38:6d:e9:c0:bd:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Validity
Not Before: Sep 7 05:01:34 2025 GMT
Not After : Sep 8 05:01:34 2025 GMT
Subject: CN=eb89ed7acaef967426d5afb458c863632dd9b815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:59:46:78:7b:84:43:83:9b:de:94:10:40:a2:
8d:9d:23:69:8f:c2:59:3a:a8:9d:36:0d:85:88:48:
e4:f0:fc:41:a9:7d:59:8d:f9:9e:32:22:23:bf:e2:
64:6d:55:92:05:a1:a2:47:11:05:7d:76:6d:be:53:
be:de:03:a3:69:60:e9:7e:07:e1:ff:f5:d0:0d:16:
58:03:dc:ed:67:d3:c7:bd:0b:40:c9:e0:11:bc:df:
34:ab:e0:fb:30:5c:0f:7e:4a:1b:3e:58:9f:4c:0c:
e7:d1:65:cf:4f:31:70:bc:b2:26:3e:1c:17:7d:94:
46:05:65:82:be:1c:e4:44:84:20:77:cc:a6:8f:02:
ef:60:2c:9d:d1:3c:90:c4:cc:06:34:06:c4:05:f8:
81:d3:b8:1f:aa:f3:58:da:e2:6c:66:26:ed:2e:4e:
b9:dd:fa:fe:46:7d:ac:3d:96:6d:ea:f8:15:4a:1e:
ba:8e:59:b2:84:90:4c:58:99:22:ae:18:1a:aa:eb:
0b:b1:f1:f8:2e:c7:0f:ee:d2:84:f0:d8:76:99:7b:
34:a8:d3:e9:81:17:80:c6:0b:f7:4d:8d:2f:66:16:
70:bb:77:11:77:1d:b4:95:7c:8f:cf:4f:f4:fb:ed:
5a:0c:9e:b6:ed:e8:d9:11:ab:b3:90:d7:54:96:08:
17:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:89:ED:7A:CA:EF:96:74:26:D5:AF:B4:58:C8:63:63:2D:D9:B8:15
X509v3 Authority Key Identifier:
keyid:D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:ea:e9:2b:ba:6e:c6:01:a1:c2:be:75:70:f3:ea:60:bf:a8:
0a:05:3d:43:a2:02:3e:24:02:ed:fe:1e:a2:92:8a:bd:d4:7f:
db:98:1f:2b:14:e0:a3:39:16:6e:20:a6:48:74:8a:83:50:98:
46:11:32:04:86:94:76:31:db:db:73:da:bf:51:4f:61:39:77:
2b:70:f6:b5:6d:7a:4b:25:b6:81:a4:41:ee:fb:86:c4:d4:67:
ee:78:3c:28:f3:c7:49:d9:da:2c:87:93:ca:46:54:96:77:d5:
80:bc:42:73:fb:4b:33:10:1c:50:26:99:7b:45:b6:91:9f:31:
71:fd:55:a7:31:b2:b0:9d:78:06:a2:c7:bc:62:a5:23:2d:2e:
29:62:93:27:46:e0:4b:42:fd:c6:cf:51:0c:01:5a:19:f0:81:
fe:76:50:de:97:a5:ec:bb:ec:6f:47:62:20:55:28:38:83:b0:
f9:8b:9b:04:3c:2c:53:eb:5a:35:5c:93:a9:47:34:e7:1f:f3:
67:62:cb:4f:41:9a:fb:99:f0:f4:66:80:27:02:c0:b5:b5:54:
20:71:f5:d0:d9:ab:60:70:7a:63:af:05:f1:54:ca:79:3f:22:
81:c2:86:09:f5:54:13:f8:5d:21:0b:64:d5:a5:ed:a7:90:5a:
c4:8e:62:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:15:09 2025 by rpki-client