Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
File: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft (raw, json)
Hash identifier: oNCp+H7C9alw8sG5rLPHjDpX8f6AIGER1mVEwgmoxKE=
Subject key identifier: 6C:8D:EB:7D:68:54:2D:17:12:34:C1:B7:7A:EE:B5:39:06:B9:DE:F8
Authority key identifier: AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
Certificate issuer: /CN=ac328756dece8f29f97f41b81a087db524e159b7
Certificate serial: 019923D5C62463B41A83B84B1326C8487D02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
Manifest number: 12BD
Signing time: Sun 07 Sep 2025 11:00:36 +0000
Manifest this update: Sun 07 Sep 2025 11:00:36 +0000
Manifest next update: Mon 08 Sep 2025 11:00:36 +0000
Files and hashes: 1: KhThgn0FLgtxgLmV5WuQd88UjJs.roa (hash: UVyvP36EKpZylxYZtY94LC7cB1Xoy48Pim7visCwDUs=)
2: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl (hash: ggT03P1FHUaOfkT904MzCANfDq7V5QjfUL4+ZCiFnpk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d5:c6:24:63:b4:1a:83:b8:4b:13:26:c8:48:7d:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac328756dece8f29f97f41b81a087db524e159b7
Validity
Not Before: Sep 7 11:00:36 2025 GMT
Not After : Sep 8 11:00:36 2025 GMT
Subject: CN=6c8deb7d68542d171234c1b77aeeb53906b9def8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4c:c9:35:da:57:eb:34:c9:a9:d1:df:5f:da:
2e:b9:dc:ca:3a:3d:72:d8:3f:3e:01:1c:7e:9a:3d:
d5:3b:53:7b:19:7e:85:df:fa:01:a5:3b:5f:f3:c3:
56:67:3b:f4:fe:69:ed:c3:d5:17:d3:8f:55:1f:1e:
ec:4c:94:b4:03:9d:b2:1f:db:64:38:a8:72:9e:89:
7b:80:44:b3:c7:c9:92:2b:30:37:e1:06:56:5f:68:
6f:d1:f3:41:41:11:df:e7:f3:d1:9f:3a:f5:80:3f:
21:81:d7:53:a2:66:4b:d8:68:4f:63:01:e7:a0:3d:
5c:42:c8:5b:d5:e2:36:c9:48:22:6c:7f:81:d6:77:
16:0f:57:a9:b8:84:5c:0a:30:d7:88:92:b8:45:95:
24:9d:14:0e:c4:3b:53:95:24:67:7d:e8:81:b5:14:
3f:28:ad:ed:e9:ea:11:c4:56:df:23:bb:ec:ed:c5:
01:f7:e2:69:c8:b0:da:5c:dc:88:3d:d8:39:76:c5:
91:de:bd:0a:c6:84:6d:1a:37:0d:3a:83:c6:e2:58:
c3:c5:50:ae:64:7e:63:94:5e:c5:b6:fa:f4:4a:da:
d9:22:c2:b1:ee:b7:d1:b5:56:77:55:00:c7:b7:38:
c5:e6:bb:74:9d:fc:87:ed:e7:c6:5d:2c:6c:f4:34:
2f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:8D:EB:7D:68:54:2D:17:12:34:C1:B7:7A:EE:B5:39:06:B9:DE:F8
X509v3 Authority Key Identifier:
keyid:AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:28:6c:f9:22:2a:cc:69:5e:ff:49:29:96:74:52:e0:94:8d:
0e:83:3c:15:80:23:87:d4:77:0e:ba:30:65:7e:5f:90:80:46:
8a:2e:2f:fa:aa:39:e2:7b:91:de:7d:a5:e4:2d:43:70:66:a1:
f3:66:48:b1:43:aa:eb:ba:7d:06:a2:83:dd:ee:97:2e:94:94:
62:40:cf:e2:65:41:d4:46:a6:da:e5:4a:e5:45:43:b8:a1:36:
d6:a9:b9:c2:b2:0a:e5:ac:49:99:ae:c2:87:65:11:8a:d8:37:
7c:cc:77:58:83:49:f0:19:db:b9:a5:bc:0e:cc:07:ee:22:39:
ad:d2:d8:e1:0d:97:f0:04:a2:7f:86:ae:0e:05:1e:e0:7d:da:
36:46:07:b8:c2:db:59:6c:0c:94:35:38:bc:89:17:b0:d8:99:
78:c2:2b:7a:ed:b3:bc:97:f1:49:b1:ea:12:41:b1:d8:92:1b:
12:6f:61:82:e7:37:b8:30:a6:82:59:29:c7:e5:4e:30:92:2f:
3d:d3:b1:b4:24:9f:2f:e8:53:2b:2e:02:f8:53:76:ab:c9:2c:
3b:08:84:4b:44:a2:92:92:dc:a4:b5:76:77:4c:25:b3:bd:e1:
d5:b7:5a:7f:c7:49:e3:10:73:47:c7:18:0f:e2:78:d1:ae:29:
11:79:d8:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:47:49 2025 by rpki-client