Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
File: DoMf1wxr03oqddeg6sAxyS2o4YU.mft (raw, json)
Hash identifier: wwqDDjE8TByMUQIw5Z85yw6oR5O2P9R+APtX3Dr7o+Y=
Subject key identifier: ED:FF:60:E6:65:AA:74:2D:82:C6:51:AC:8F:F1:73:D9:93:51:A9:7A
Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Certificate serial: 019921B0F230C832AB03033ECB2604F73EB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
Manifest number: 12F3
Signing time: Sun 07 Sep 2025 01:01:08 +0000
Manifest this update: Sun 07 Sep 2025 01:01:08 +0000
Manifest next update: Mon 08 Sep 2025 01:01:08 +0000
Files and hashes: 1: AbAz97rI6RXbeaGg0ju1UGvv4xM.roa (hash: 6SJubAUNhK59Bg5EEa587Nx4giyrDXi2DFXXzhtFznQ=)
2: DoMf1wxr03oqddeg6sAxyS2o4YU.crl (hash: JQQziUSslnRDnQNOY3C8+9/97+fKsyQeCsF+BpIhJu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:f2:30:c8:32:ab:03:03:3e:cb:26:04:f7:3e:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Validity
Not Before: Sep 7 01:01:08 2025 GMT
Not After : Sep 8 01:01:08 2025 GMT
Subject: CN=edff60e665aa742d82c651ac8ff173d99351a97a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6c:e2:36:25:39:67:83:36:29:b6:3c:55:93:
43:06:ec:50:64:ad:22:25:7b:93:f0:87:79:cb:7a:
37:97:e9:9b:ce:30:2d:ef:70:f6:7c:3e:77:7b:72:
fd:a3:4f:c7:cc:34:be:2e:73:4c:0e:56:71:68:68:
1a:eb:a7:f7:f9:0e:41:57:b6:48:9f:87:13:21:c4:
1b:c0:14:91:56:aa:b3:c5:f4:69:3a:12:9f:fa:71:
4f:13:ad:14:4b:75:88:ce:23:45:e4:e0:cb:98:ad:
9d:6a:3e:43:8d:4e:bd:8a:cc:59:1c:b5:f3:08:91:
97:f1:ab:8a:bf:98:8e:96:25:b8:dc:e5:02:35:27:
2b:a4:f1:8a:d3:4d:eb:a7:4a:a6:c1:42:71:fe:9a:
97:43:27:ff:9b:63:de:ae:39:80:82:70:6f:e4:65:
ec:6d:cb:ac:e7:21:d6:c5:b0:45:f6:3d:28:62:cd:
be:c2:65:76:4c:39:bb:60:09:b5:e4:2d:ad:11:46:
4b:8b:73:dd:ff:38:b2:c7:84:75:b0:88:7d:f9:2e:
35:f2:2b:9d:3a:ff:e9:32:ce:f1:e1:aa:51:f1:50:
c4:0f:28:b7:73:2c:6a:01:fe:b0:3b:f4:b3:04:03:
73:9e:29:64:1b:a6:9a:f5:67:26:29:12:68:d3:9f:
c5:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:FF:60:E6:65:AA:74:2D:82:C6:51:AC:8F:F1:73:D9:93:51:A9:7A
X509v3 Authority Key Identifier:
keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:ee:53:97:36:46:74:c7:49:2a:a0:f1:72:aa:d3:e8:49:c0:
21:8b:08:66:ce:d8:b2:c2:f1:a7:55:d5:5d:1e:2e:26:7e:d2:
0e:1d:dd:b5:a8:26:cf:b0:2e:62:bf:3d:3c:1e:72:d3:90:8b:
05:17:4c:c2:d7:9e:fc:81:89:65:c7:0b:fe:f2:32:d2:c5:42:
65:33:8a:c0:4e:87:65:ff:17:a9:4f:2c:95:17:2e:b5:f7:c6:
d0:22:e1:c6:bb:4b:12:1f:83:ee:79:11:9f:51:1d:11:54:56:
66:89:8a:fc:7d:8e:7e:47:94:72:80:25:9b:a4:56:6a:dd:08:
3b:f7:a4:1b:37:a4:26:bd:05:79:7e:76:f1:b8:83:6a:22:13:
55:35:90:38:b0:4e:2a:28:ca:98:99:7e:1e:4d:f2:ec:d1:5c:
c7:d7:61:60:23:b4:3d:d7:bd:58:09:76:cc:a1:a6:0a:fe:b2:
8e:eb:78:2d:1d:c5:c0:23:15:73:f6:2c:59:a8:48:3c:ee:67:
9c:58:3b:bf:f9:4e:fe:ca:70:11:6a:d7:30:25:1d:40:80:cf:
1c:0c:8d:7b:51:92:2e:fc:18:7f:94:20:2d:f6:cc:d4:d9:9e:
f7:7b:ee:e3:22:41:d9:2b:91:8e:1b:25:9a:e4:1e:21:d8:50:
c6:46:4d:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:30 2025 by rpki-client