Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
File: 23uiovC_o6dvXJkaR82YaMbR674.mft (raw, json)
Hash identifier: gWZj9EeNRQTD3iAoLPxs9RyT4koT1atERszXg8Pob8I=
Subject key identifier: C1:DD:2D:A8:E7:67:F3:CA:70:48:EF:A6:3C:0A:C9:75:E7:CA:6C:51
Authority key identifier: DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
Certificate issuer: /CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Certificate serial: 01993010C1F37868E842941856DA9E9821C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
Manifest number: 132A
Signing time: Tue 09 Sep 2025 20:00:28 +0000
Manifest this update: Tue 09 Sep 2025 20:00:28 +0000
Manifest next update: Wed 10 Sep 2025 20:00:28 +0000
Files and hashes: 1: 23uiovC_o6dvXJkaR82YaMbR674.crl (hash: 6TIFhc1gEC4rVFDGKpRNapKsc5VJVT3qN2slEiWmq/4=)
2: J8hzJTM2uz7yXJSlk16QOqdb0iI.roa (hash: sPVr5eHmre5tC1ZjjWRY6ekKAEsqs3UiVYcFX3QHcj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 20:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:30:10:c1:f3:78:68:e8:42:94:18:56:da:9e:98:21:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Validity
Not Before: Sep 9 20:00:28 2025 GMT
Not After : Sep 10 20:00:28 2025 GMT
Subject: CN=c1dd2da8e767f3ca7048efa63c0ac975e7ca6c51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5a:02:df:0b:bf:bd:01:30:43:99:05:8e:43:
ab:92:e4:44:cf:f4:c6:f8:a6:ce:0e:07:c2:dc:fa:
c7:61:56:2f:88:90:95:2b:5d:55:b3:6d:56:cd:7a:
33:3c:ca:ef:22:8d:bc:d7:f8:34:a5:d1:7f:02:80:
ea:a0:13:69:c8:58:61:89:1d:1d:06:08:d0:1c:38:
81:2c:33:33:97:5a:6c:b0:89:d5:10:83:f6:53:ba:
9e:1b:9d:06:ad:34:3a:a3:34:f1:f0:ae:a4:27:9b:
3c:1d:ff:6d:c5:2d:73:6c:11:f5:6a:97:c1:c9:82:
22:e3:03:57:bf:7f:eb:08:2c:1d:3e:fb:d8:9b:0a:
ed:86:48:a4:db:ad:32:fb:3d:1d:5c:62:c1:ce:56:
f1:5d:9f:7f:8f:98:dc:2b:d6:c2:ec:60:fd:27:fc:
35:7c:2a:43:a8:ee:9a:1a:40:34:98:a6:e8:b8:e1:
be:52:99:e7:12:48:30:eb:76:95:ba:f4:6c:f5:58:
42:38:e4:b2:ad:f1:c8:12:46:c1:96:0e:59:47:60:
6c:fb:f4:9d:41:a6:95:04:ac:d1:a3:11:da:61:4e:
2a:b9:7d:7f:63:d1:0f:58:01:b1:13:2c:13:fe:75:
b1:36:40:28:5d:9d:7f:d8:8d:41:28:10:aa:dd:42:
3e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:DD:2D:A8:E7:67:F3:CA:70:48:EF:A6:3C:0A:C9:75:E7:CA:6C:51
X509v3 Authority Key Identifier:
keyid:DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:22:6d:e8:d4:c7:41:7c:e4:be:fd:68:53:e5:31:89:2b:0b:
be:b9:a0:0f:10:6f:7c:29:a7:27:74:42:f9:70:6b:08:ca:ad:
83:06:cc:1e:66:02:10:5c:6c:6f:96:5e:e6:21:44:65:a0:3d:
58:92:c9:be:94:46:a2:f0:72:a0:41:84:a3:79:c2:23:20:a3:
e9:87:12:ad:7b:ec:f2:6c:de:cf:7a:41:f4:46:ad:82:41:59:
ff:18:19:47:87:23:dc:c1:30:76:f4:42:6a:f3:6f:30:52:c9:
62:b3:db:e1:56:27:08:d7:da:cd:03:62:59:88:b7:21:a7:4c:
18:93:99:50:c9:5a:36:3c:e7:e9:ed:ca:07:0f:e6:60:36:a2:
87:6d:4c:58:a5:b7:ba:59:d9:98:4b:ba:7a:70:e2:ab:5b:98:
9f:59:4f:94:a3:b7:94:c1:06:bf:e6:15:4d:1b:ae:60:80:bd:
9f:3f:65:e8:d5:71:95:52:73:49:ef:9b:6c:6d:76:a8:5a:15:
99:63:cf:39:78:2d:11:d5:c3:b3:84:bd:bc:02:fb:ff:8b:34:
52:4d:81:3c:53:ee:ad:16:ff:26:d3:08:01:d4:b0:e4:66:74:
ae:c2:c0:03:5b:6d:16:e0:b8:65:f6:c0:cf:c5:ff:03:38:5c:
83:e7:ee:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:57:26 2025 by rpki-client