Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
File: dLOekBkiWjsP_gWoNW6-8zwnvpc.mft (raw, json)
Hash identifier: UXi0cSzC29E/uAYDhpTGzWe/7ODFgSEAqfzv1l5BaHQ=
Subject key identifier: 9E:E4:9F:DF:FC:06:18:03:A8:AF:57:14:C7:D9:60:6B:C4:65:AF:9E
Authority key identifier: 74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97
Certificate issuer: /CN=74b39e9019225a3b0ffe05a8356ebef33c27be97
Certificate serial: 0199296AC280E6123108FA827E249DC28309
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
Manifest number: 0668
Signing time: Mon 08 Sep 2025 13:01:26 +0000
Manifest this update: Mon 08 Sep 2025 13:01:26 +0000
Manifest next update: Tue 09 Sep 2025 13:01:26 +0000
Files and hashes: 1: ZRVv1QEy1kLLZIQQzKY3v_cBQvM.roa (hash: dP4rVEZl+sj+rbeXk/M+iHEaNgIv2c4UoqRTeljUbU8=)
2: dLOekBkiWjsP_gWoNW6-8zwnvpc.crl (hash: l0RplYsYrXm2pl0XFfbeptqgRBlBourg4W1aK3H0KK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 12:25:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:29:6a:c2:80:e6:12:31:08:fa:82:7e:24:9d:c2:83:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b39e9019225a3b0ffe05a8356ebef33c27be97
Validity
Not Before: Sep 8 13:01:26 2025 GMT
Not After : Sep 9 13:01:26 2025 GMT
Subject: CN=9ee49fdffc061803a8af5714c7d9606bc465af9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ae:ff:df:d1:80:f4:c7:87:7f:6a:b1:22:fb:
bd:2d:26:35:b8:d3:63:fe:cb:71:2d:20:b7:f6:19:
e0:76:79:32:2d:e9:9d:b7:4f:ae:7f:f9:9c:a4:b0:
58:2d:4c:6d:95:f2:40:00:2d:36:d4:12:e5:b4:69:
07:1e:3e:1a:e1:16:b4:3b:4e:c8:5b:b8:16:37:ff:
dd:8d:bc:15:7b:16:eb:da:98:b9:4c:17:f5:d9:04:
fd:ba:49:3f:0f:7f:4a:e2:51:b1:4c:b4:dd:ef:9d:
5b:7a:7b:a7:32:73:26:4d:98:8a:22:0e:57:b4:4c:
58:f1:fe:b8:52:91:67:49:46:b0:d7:2a:5c:ad:a5:
3b:6f:a1:8a:e2:0a:22:45:90:2c:5f:f1:75:a2:db:
34:ab:14:f0:e8:31:6f:db:9c:a9:a5:7b:df:34:06:
e7:98:df:16:56:81:38:f8:46:76:21:75:91:f0:96:
3e:1d:3a:a7:80:45:ce:cb:60:69:a5:6d:e4:ab:a2:
0c:45:60:0d:68:34:5b:47:b6:4c:d5:cc:ce:92:bb:
ef:14:75:a6:b6:01:4e:28:43:84:99:ab:45:cf:e2:
00:c5:2e:d2:03:da:6c:66:05:70:4e:23:ff:74:64:
05:e8:a4:60:de:38:e3:96:c3:3d:ee:d9:11:81:5a:
b8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:E4:9F:DF:FC:06:18:03:A8:AF:57:14:C7:D9:60:6B:C4:65:AF:9E
X509v3 Authority Key Identifier:
keyid:74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:d9:42:8b:0f:2a:55:bc:6b:aa:93:17:4e:42:76:d5:d8:34:
b3:09:bd:47:f3:48:6f:b5:53:03:ad:34:08:f5:d8:e0:5b:1c:
8c:9a:29:c3:20:d8:9e:ed:dc:1b:de:6e:68:fe:51:93:1d:29:
27:2b:c3:49:38:ad:75:a6:46:57:76:d6:8e:0e:00:90:f6:7f:
ce:93:95:1d:13:57:65:cd:68:f5:f1:ac:44:ff:12:4c:43:d7:
15:41:79:10:51:a9:5b:7a:e7:94:20:3d:71:6d:3d:7d:98:9e:
4c:56:40:94:5b:4d:90:af:38:e6:43:98:a0:2a:0a:83:02:a4:
b1:6a:ed:8b:90:66:e7:ec:ca:f9:fa:67:41:8b:21:2c:a2:4d:
11:9a:3f:5f:20:d2:ce:b1:5b:83:1f:df:87:64:0f:9d:25:f8:
11:5a:01:8c:49:88:c5:2e:fa:70:b1:0a:29:90:a1:ec:9d:76:
b3:09:5c:fb:d8:48:ce:6b:ce:65:d0:9e:e1:d8:bd:72:2d:75:
52:67:b4:4a:62:e8:e4:74:fa:f8:2b:0f:f5:3d:56:6b:93:1a:
0d:d4:c0:11:dd:0f:0a:6f:32:54:33:65:c9:bf:39:69:2a:57:
d7:5b:19:40:c9:67:72:97:a6:5c:b6:44:29:28:0f:a0:6f:c9:
8e:26:a8:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 14:43:18 2025 by rpki-client