Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
File: cDbgTlO505Z8-dQY54tgu60HWDE.mft (raw, json)
Hash identifier: T9pbpQ1Q4xsCER+qd8u5PGTRrRJ5UiZLBCpzgeja7Zk=
Subject key identifier: 74:8A:C9:88:58:C3:DC:65:BA:1C:A1:EE:B9:8A:B7:69:2F:0D:FE:93
Authority key identifier: 70:36:E0:4E:53:B9:D3:96:7C:F9:D4:18:E7:8B:60:BB:AD:07:58:31
Certificate issuer: /CN=7036e04e53b9d3967cf9d418e78b60bbad075831
Certificate serial: 01993380A1C62FC671E9E8DFC8D7F0E3CA24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
Manifest number: 021D
Signing time: Wed 10 Sep 2025 12:01:31 +0000
Manifest this update: Wed 10 Sep 2025 12:01:31 +0000
Manifest next update: Thu 11 Sep 2025 12:01:31 +0000
Files and hashes: 1: 79VsR-5nub7DUrhryJn99r0sSJE.roa (hash: PKoaa5fww3RYvMlarfjIhYGHHPB9uxMDQ5a1vOFmd9k=)
2: cDbgTlO505Z8-dQY54tgu60HWDE.crl (hash: KqA86OmIDBIBmw/ozVPJLbX6U/+R48GmPqIMFd5SvDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:80:a1:c6:2f:c6:71:e9:e8:df:c8:d7:f0:e3:ca:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7036e04e53b9d3967cf9d418e78b60bbad075831
Validity
Not Before: Sep 10 12:01:31 2025 GMT
Not After : Sep 11 12:01:31 2025 GMT
Subject: CN=748ac98858c3dc65ba1ca1eeb98ab7692f0dfe93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a4:b1:84:97:4b:e8:15:7e:4d:f1:d7:05:cf:
13:88:0f:1d:ec:94:fb:29:bd:8c:98:f0:0f:d0:07:
e3:5a:a5:e5:cb:cc:25:e6:a8:ff:1f:32:81:0a:24:
ee:1e:31:1e:06:68:cc:dc:f7:35:2f:fd:83:b2:fc:
2b:12:4e:39:2a:42:94:19:62:6d:90:fe:a6:45:dc:
61:db:e1:33:8d:ee:da:c9:9a:e4:27:83:09:34:9b:
d5:f3:08:a4:bf:85:67:b5:73:18:ff:ef:48:c2:a5:
44:22:27:f7:58:78:48:e3:4b:21:41:29:21:c1:50:
b0:c3:dd:0a:49:08:98:72:bb:f9:c4:ff:a2:4b:89:
7b:83:8d:06:7c:76:69:98:89:5d:99:d5:48:ae:b0:
8d:3e:19:95:1e:15:3a:35:6c:63:a1:4f:fc:94:a8:
02:0a:d4:68:76:90:2d:d6:4f:2e:24:3e:3f:32:e3:
30:b8:ad:a0:84:a9:41:7b:39:56:c2:27:1c:3b:24:
39:98:4f:16:50:9c:0e:c2:0b:0b:c9:f2:1e:29:f7:
d2:1b:10:02:a0:9f:6f:8e:1a:cc:a5:0a:cd:48:85:
87:ed:a2:a3:44:6f:69:b4:f8:b5:20:6c:af:ba:d0:
5b:29:1d:95:85:07:dc:4d:a3:55:9d:d0:47:63:ab:
1c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8A:C9:88:58:C3:DC:65:BA:1C:A1:EE:B9:8A:B7:69:2F:0D:FE:93
X509v3 Authority Key Identifier:
keyid:70:36:E0:4E:53:B9:D3:96:7C:F9:D4:18:E7:8B:60:BB:AD:07:58:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:e9:2d:b5:09:2a:45:69:1c:7e:61:0e:97:23:42:08:ec:27:
1d:84:ba:01:d4:a8:a9:04:bb:1c:01:73:d2:68:e4:a1:ed:76:
d2:1d:d3:96:e3:0e:18:d8:4d:49:65:20:67:e4:94:09:ec:d1:
0e:6e:f1:e5:c8:ef:82:93:a9:75:c3:4f:c4:9e:17:32:ea:e9:
d9:11:7e:ef:05:72:12:e9:72:ff:f4:1c:37:7e:8d:0b:ce:cd:
cb:82:d5:6c:9c:3c:6c:6d:6e:b4:68:ba:32:53:bb:63:eb:5a:
c6:b7:6d:3d:68:6b:21:f2:6b:54:29:96:95:ad:4a:64:34:3f:
39:7e:8d:58:c7:f9:c2:d7:e0:83:db:27:65:a4:c5:33:4d:67:
89:ee:63:fc:2c:9c:b2:39:3f:8c:de:41:ca:e4:6f:6c:13:9a:
13:34:d1:6c:1e:88:f2:90:14:4e:05:0f:8b:5e:28:bc:ba:65:
37:75:48:f0:b0:76:df:e3:8b:48:2c:da:3e:3a:5c:38:63:6b:
d9:47:2f:20:a9:23:19:15:5c:eb:11:21:3d:ad:40:b7:05:07:
25:c2:2c:09:60:48:29:aa:56:66:c6:2a:9a:f5:0b:0b:7a:86:
9d:53:b8:d7:bb:3d:f2:8b:6b:94:70:b7:94:c1:75:cd:62:db:
a4:e4:0d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 15:30:04 2025 by rpki-client