Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
File: D5XJyafxmprXF-TapTDIXPmauXU.mft (raw, json)
Hash identifier: QlwmYdnb/RxmJ7ib25Z9k4VbqjQldQZG9lpYit8KcmA=
Subject key identifier: 22:64:CA:D7:A7:C4:A2:DB:45:22:AB:9E:6C:27:9A:FD:84:94:88:4E
Authority key identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
Certificate issuer: /CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Certificate serial: 019918092D7C40F409DF080D6417A36CBB76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
Manifest number: 069C
Signing time: Fri 05 Sep 2025 04:01:18 +0000
Manifest this update: Fri 05 Sep 2025 04:01:18 +0000
Manifest next update: Sat 06 Sep 2025 04:01:18 +0000
Files and hashes: 1: D5XJyafxmprXF-TapTDIXPmauXU.crl (hash: hExNxtbEACntvXBvLAuHyZEXUlTJL76yGRLAIZHyCu0=)
2: dJjjOIsvcmwG1yw0BY5P71sFVUw.roa (hash: 71ssAltTmbpploHF43pU09n+JXavvKYPHb8mMd4Firs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:2d:7c:40:f4:09:df:08:0d:64:17:a3:6c:bb:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Validity
Not Before: Sep 5 04:01:18 2025 GMT
Not After : Sep 6 04:01:18 2025 GMT
Subject: CN=2264cad7a7c4a2db4522ab9e6c279afd8494884e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d5:08:6e:59:95:3b:9b:7a:30:75:c4:aa:2b:
ab:83:e9:22:60:f0:58:77:0d:d6:73:d5:59:fb:01:
37:27:36:c5:f1:db:1a:61:8e:41:a7:e2:c7:1d:8a:
f5:04:09:29:83:43:cc:db:48:7e:d3:c8:f1:e7:14:
66:30:e8:0f:0e:05:29:4e:a4:7c:a6:35:15:9e:96:
f1:b0:77:2c:69:9e:f1:82:4d:82:54:09:72:af:d9:
a5:18:8d:60:0a:21:72:04:bf:f9:22:0a:43:03:e1:
9b:48:3b:af:56:1a:93:11:bc:91:1d:04:8d:3f:e8:
7a:76:7a:6c:91:2c:4c:f7:23:72:bb:07:d7:f9:18:
dc:0a:c8:37:c2:e6:73:a2:9f:c3:44:73:4b:2f:88:
31:25:13:8b:5e:64:b5:96:13:ac:5c:8e:93:25:d7:
c2:f9:2e:46:52:f3:34:be:2f:82:51:47:65:55:cd:
31:ca:f5:50:cf:f9:76:84:e5:7a:3a:fa:81:57:a7:
d5:30:a5:0f:05:a3:cb:e0:7e:21:30:cb:69:25:69:
6a:c4:2f:1c:f0:42:4b:a6:5d:db:ce:2c:2a:d9:b5:
e5:06:51:b6:84:87:ff:18:b9:b1:99:aa:ae:06:78:
51:af:36:89:d9:2b:77:d2:ee:54:de:45:df:54:fb:
c6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:64:CA:D7:A7:C4:A2:DB:45:22:AB:9E:6C:27:9A:FD:84:94:88:4E
X509v3 Authority Key Identifier:
keyid:0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:f3:09:51:e3:c7:51:b6:ec:79:5d:92:aa:8f:f0:fe:b2:7d:
14:f4:c6:81:5f:f1:56:f0:cd:00:fe:23:2b:ac:ba:e4:71:00:
e2:63:bc:7e:2e:54:5f:32:e1:5f:bf:44:ed:53:90:ee:5d:89:
68:b0:b3:42:aa:df:01:2b:9d:83:e3:9e:5d:e3:dc:40:93:ec:
92:db:a7:cd:9b:88:39:8f:d3:a0:0d:31:f5:eb:bc:5a:4e:da:
5d:44:d0:2a:34:42:d1:df:40:2b:d8:2e:f5:d0:d6:4e:e1:f0:
6b:e4:35:4c:0d:d7:22:5c:4c:15:f1:4e:11:2d:45:71:86:1e:
b5:0a:e8:72:b8:2a:46:bc:dc:e2:c9:a1:be:d7:73:26:ff:c7:
d0:ef:ee:0c:77:d7:26:39:06:cc:8e:ac:9a:3b:7a:f0:d5:4f:
bc:99:d4:1e:9b:48:04:21:c9:3f:2c:72:7e:f9:8b:d8:63:82:
0d:3c:18:fe:53:75:11:14:7e:92:bd:bb:d1:60:23:58:f8:f1:
81:fe:0b:0e:a1:22:9e:43:25:1a:18:15:4e:26:70:18:dd:31:
1b:95:be:19:b7:7e:46:06:69:21:f7:f3:e0:04:10:74:c8:64:
fc:5b:c4:86:54:de:0a:43:c5:9e:1c:cf:6d:0a:e9:d1:3d:db:
a6:29:1d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 05:56:08 2025 by rpki-client