Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
File: 2sedKFW4l0GCCNR7puUUYAFbXXs.mft (raw, json)
Hash identifier: kkMyZfk4JVoFjypzhsqBAjn4LfpkbGHlzbG2hqAIbSQ=
Subject key identifier: C1:8E:95:23:A0:5F:26:D6:38:B9:9D:14:D6:DD:32:69:B3:F0:F6:19
Authority key identifier: DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B
Certificate issuer: /CN=dac79d2855b897418208d47ba6e51460015b5d7b
Certificate serial: 019921E7D4E17DD04549267FA4160FBD3728
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 02:01:05 +0000
Manifest this update: Sun 07 Sep 2025 02:01:05 +0000
Manifest next update: Mon 08 Sep 2025 02:01:05 +0000
Files and hashes: 1: 2sedKFW4l0GCCNR7puUUYAFbXXs.crl (hash: Zcu4WevRWtlFxj9Gn5CtTE153fU07nE4Sycwx7WFov8=)
2: tC1yV2tBIFtyur1CynjIgKWGcBM.roa (hash: 1+DYEAvIp/jbF3nPZX2n/Pi9ZPPyvPQVRKTGpXSrouQ=)
3: yHaEkoOTCPurcY3b0F-9VL88Kwc.roa (hash: Y+GSgGL/KpLcJxeK38gow6fyI44wgNDdjmQduqWLn3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:d4:e1:7d:d0:45:49:26:7f:a4:16:0f:bd:37:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac79d2855b897418208d47ba6e51460015b5d7b
Validity
Not Before: Sep 7 02:01:05 2025 GMT
Not After : Sep 8 02:01:05 2025 GMT
Subject: CN=c18e9523a05f26d638b99d14d6dd3269b3f0f619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:91:10:e3:17:88:82:0d:c8:19:31:99:ac:8a:
00:08:29:cd:f5:16:3d:32:56:c4:53:2c:31:2e:e7:
50:e6:a3:70:84:26:a3:bb:e4:dd:ba:14:a9:18:32:
a1:ce:28:03:a4:23:ef:c7:96:15:c2:7d:51:fc:e3:
3c:6b:5f:d9:a4:2e:91:c4:25:00:bf:46:93:66:3a:
1f:04:e8:f9:9a:c2:52:e4:87:39:15:91:8c:97:33:
08:e7:07:b0:ea:a4:74:36:2f:5b:78:f8:1c:6f:a8:
f0:fb:e3:61:d6:30:85:7b:89:d7:3a:3e:1f:0c:04:
a1:87:a0:5b:fd:57:33:7e:ba:d9:7c:60:3d:a0:6a:
8b:3b:f7:a1:25:84:c1:95:0e:96:91:27:e0:06:ae:
01:0c:6c:6b:7a:38:89:cf:de:04:d7:0f:f0:9f:2b:
d0:10:d7:c9:d2:89:bf:8c:20:c3:fd:19:84:4d:20:
2b:c9:22:ad:a7:4f:a1:d8:6e:7a:91:01:00:14:8e:
e8:03:ee:9b:05:e1:55:f1:48:ac:71:53:c5:ec:52:
94:3a:a5:5a:6d:fe:10:cf:2c:84:8b:af:74:31:c0:
9a:c6:27:d5:45:74:6a:09:41:9a:09:77:44:51:c9:
33:73:85:66:bc:af:f1:87:94:82:49:e2:e2:2f:e7:
25:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:8E:95:23:A0:5F:26:D6:38:B9:9D:14:D6:DD:32:69:B3:F0:F6:19
X509v3 Authority Key Identifier:
keyid:DA:C7:9D:28:55:B8:97:41:82:08:D4:7B:A6:E5:14:60:01:5B:5D:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sedKFW4l0GCCNR7puUUYAFbXXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5b1149-647d-4067-9807-445d4588c312/1/2sedKFW4l0GCCNR7puUUYAFbXXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:6f:b2:74:16:b1:cd:e9:4f:da:60:12:83:f6:a5:a4:8e:70:
b6:ba:72:01:1c:6e:87:65:a9:ab:c1:43:65:ba:4f:73:c3:af:
ac:a4:af:68:63:83:f9:38:f1:6e:e8:1b:8e:29:69:9b:87:a1:
1a:1f:ff:0d:0f:7c:ea:13:d1:e5:35:da:8b:8e:78:94:5a:e9:
26:ff:5e:8d:b0:13:82:6e:3f:81:57:9e:48:67:98:22:76:12:
0f:bc:ab:a6:6d:5b:68:b0:35:1a:5f:99:55:53:70:25:ad:c0:
cf:80:b6:70:76:b7:15:f7:ac:3a:9f:b7:3c:cd:03:1e:b3:84:
22:d3:12:37:d0:f4:c3:d6:14:fd:fe:09:41:a0:7c:61:06:d3:
9d:9c:16:9e:5b:0c:58:27:4c:af:be:0b:f7:ea:46:af:c4:0c:
4f:12:2a:56:7a:ed:7a:fb:ca:ed:de:b6:02:03:8a:a9:8f:2c:
1e:b7:af:8b:1e:61:45:85:3b:8f:cc:37:37:aa:fc:1d:0a:ff:
e2:e7:65:b2:c5:67:34:18:3b:e5:4d:41:ac:95:bb:16:52:17:
db:81:84:20:27:25:21:49:c3:1a:30:a1:ca:7c:05:05:5a:34:
58:55:70:48:a4:eb:d3:5e:35:d9:10:d9:de:5f:96:6c:88:51:
c4:b0:7f:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:23 2025 by rpki-client