Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
File: ds5jfUe3gATQzPrjceaBh2isP6U.mft (raw, json)
Hash identifier: L87e/7KYmIPItV/HZ+YfD4mre7mMNXTB/EWZfLemamg=
Subject key identifier: B2:3B:6E:D7:99:C1:A9:72:99:FA:12:17:26:DA:BE:E2:7B:E6:75:9E
Authority key identifier: 76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
Certificate issuer: /CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Certificate serial: 0199172D1AD60B1918D8B100747529F961EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
Manifest number: 148D
Signing time: Fri 05 Sep 2025 00:00:55 +0000
Manifest this update: Fri 05 Sep 2025 00:00:55 +0000
Manifest next update: Sat 06 Sep 2025 00:00:55 +0000
Files and hashes: 1: 2v9WLSFviNLhCEs3PI8ghWfG43g.roa (hash: s4HF4L3IMaVI3bReAfOPFKeWOp26BrTGFcFThVgszh4=)
2: ds5jfUe3gATQzPrjceaBh2isP6U.crl (hash: prDcRDWyL0pFFZ7ppzMpwA1QdcwBvvEEGyGppA/RvzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 00:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:2d:1a:d6:0b:19:18:d8:b1:00:74:75:29:f9:61:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Validity
Not Before: Sep 5 00:00:55 2025 GMT
Not After : Sep 6 00:00:55 2025 GMT
Subject: CN=b23b6ed799c1a97299fa121726dabee27be6759e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:98:6a:3f:83:50:34:10:36:f9:ea:64:8a:b1:
fb:ff:df:07:a2:99:99:94:9c:86:5c:e3:3a:a6:e1:
a0:08:2b:c5:eb:62:20:76:3a:2d:e3:4b:3b:7c:50:
8f:b0:70:26:5b:15:5f:9e:c1:95:96:6f:2a:ce:d0:
36:f4:12:6a:49:21:64:2e:7a:df:60:08:fd:57:d4:
c8:d0:cd:51:ec:5c:cf:64:19:59:46:4b:29:5c:07:
0b:94:81:b1:4c:cc:6a:f3:61:7f:49:7d:cf:9b:ed:
22:48:bb:8a:75:59:22:c5:5a:94:61:2e:85:f2:33:
00:cd:6c:db:ae:a6:67:30:2c:58:e8:23:10:20:8b:
f6:04:49:ce:d1:29:d3:ef:33:06:f5:aa:49:b5:fc:
3c:a9:15:2b:9d:57:02:0d:11:03:6a:ad:a5:6f:8a:
ba:60:f8:23:42:c6:bf:a0:23:5c:eb:f6:40:31:0f:
5d:4d:de:2a:f6:3d:fc:17:ae:25:2e:54:2f:1c:be:
58:a2:5d:81:20:98:85:70:d1:88:84:e5:57:3f:3b:
84:0a:14:ef:58:8f:43:06:0d:4b:6f:47:37:bd:d3:
35:c3:ab:80:b0:ba:a1:8a:cc:93:d4:91:c6:81:68:
34:31:d9:2f:9c:be:c6:62:31:3b:a6:78:8e:d9:a6:
71:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:3B:6E:D7:99:C1:A9:72:99:FA:12:17:26:DA:BE:E2:7B:E6:75:9E
X509v3 Authority Key Identifier:
keyid:76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:91:9f:61:55:f4:bc:39:46:81:89:49:b1:1a:d0:9d:90:ad:
ce:9e:5a:6e:23:79:73:38:e9:73:b7:f9:0c:41:cb:04:5a:6c:
f8:2a:ff:4b:c4:82:a3:a6:79:7f:c1:2d:49:86:44:61:ef:cb:
f7:8a:70:ef:ec:d4:0d:4f:8f:c6:b3:5b:b2:1c:25:8b:93:84:
03:f3:83:c0:8c:72:7f:6d:39:0a:e4:49:96:bb:e4:32:fe:36:
6c:55:02:bf:3f:ff:f8:87:23:3f:91:46:06:da:c4:fe:44:8b:
b6:63:e1:18:3f:d0:63:44:a7:5b:96:89:43:71:60:33:ef:6c:
d5:0f:02:ae:d3:0d:13:9e:3f:9c:d7:05:8e:99:a1:ed:0b:27:
65:84:76:4e:56:49:3d:e3:44:96:05:53:3e:8b:42:5f:79:44:
e2:f2:1c:10:80:3b:e4:22:71:ff:8e:ca:6d:06:7a:fc:cd:89:
5a:dc:a6:d5:2f:ee:2f:22:56:7f:b5:b4:cd:f5:4f:67:c6:2b:
af:fc:cb:73:9c:5d:6b:f1:03:fe:a1:67:af:b1:f5:fe:a7:97:
c0:e5:fc:b3:d3:5a:95:f0:68:31:47:e2:ec:d4:93:5d:d8:45:
ee:53:a3:ff:01:7a:e2:c4:b6:1f:37:e1:61:1e:76:4a:5f:31:
c7:68:aa:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:06:11 2025 by rpki-client