Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.mft
File: Wddq-QkdoVgbul7BPl29tzYtnQ8.mft (raw, json)
Hash identifier: NnF6CercCpHO9azmccjlu8eyjCtYV97ewtcy8NyayBc=
Subject key identifier: 2B:9A:21:72:E3:47:6D:1C:8A:7C:5F:07:3E:2D:93:BE:61:95:A2:E9
Authority key identifier: 59:D7:6A:F9:09:1D:A1:58:1B:BA:5E:C1:3E:5D:BD:B7:36:2D:9D:0F
Certificate issuer: /CN=59d76af9091da1581bba5ec13e5dbdb7362d9d0f
Certificate serial: 0199221F2C1AB50DACCED65A726DF7D5324D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wddq-QkdoVgbul7BPl29tzYtnQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.mft
Manifest number: 10FE
Signing time: Sun 07 Sep 2025 03:01:32 +0000
Manifest this update: Sun 07 Sep 2025 03:01:32 +0000
Manifest next update: Mon 08 Sep 2025 03:01:32 +0000
Files and hashes: 1: Wddq-QkdoVgbul7BPl29tzYtnQ8.crl (hash: FtS9AhmRq2zvW6nKWT5yT7JhFKAqh4uqVs3rzmeqjqE=)
2: WxX1Hu2E5PBSUGmsXjK9hC9MNwk.roa (hash: yTqA3ZGTODQnxMnTADEBGt1VqhX3aMRxsME8/St0wzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Wddq-QkdoVgbul7BPl29tzYtnQ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:2c:1a:b5:0d:ac:ce:d6:5a:72:6d:f7:d5:32:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59d76af9091da1581bba5ec13e5dbdb7362d9d0f
Validity
Not Before: Sep 7 03:01:32 2025 GMT
Not After : Sep 8 03:01:32 2025 GMT
Subject: CN=2b9a2172e3476d1c8a7c5f073e2d93be6195a2e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:1c:8a:95:1f:52:99:a4:ef:c5:e9:99:ff:60:
a8:a8:d9:be:be:bb:0f:17:10:e7:60:94:51:bc:be:
90:90:ea:95:d7:ae:70:d1:37:68:8b:e5:41:77:14:
00:7b:2f:39:2a:cc:6c:b8:83:5d:11:b4:dc:a6:5f:
8a:bd:68:b1:cf:30:7c:79:60:af:c7:4f:00:e7:55:
34:ce:43:16:87:e4:ef:06:51:00:0c:ad:3a:df:ad:
d8:23:56:bf:cc:c3:03:45:5d:78:d1:0c:fb:df:c4:
4c:c6:e3:44:04:4d:a4:90:36:6a:79:7d:d2:99:28:
39:c8:05:19:57:90:2e:1d:42:78:e9:c3:36:e3:da:
f0:9f:36:cd:f6:7b:9c:71:f7:7d:ce:05:6d:44:ae:
cd:ac:ae:b3:53:fe:fc:11:2d:14:15:b9:86:f2:f9:
6d:ef:17:dc:83:b7:13:ae:24:5b:ec:98:12:aa:c6:
7c:c8:2d:a3:31:64:3a:94:25:52:60:a1:92:65:31:
e3:a0:f6:67:cb:39:64:90:75:6c:21:38:da:3e:31:
50:70:d8:4f:e5:85:aa:b9:40:26:36:d7:e4:f0:df:
7f:a4:0c:aa:09:de:e9:bb:b8:6c:7f:6c:35:4b:97:
fe:a4:08:4f:47:5c:10:3f:39:eb:d3:ff:9c:4e:c7:
f8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:9A:21:72:E3:47:6D:1C:8A:7C:5F:07:3E:2D:93:BE:61:95:A2:E9
X509v3 Authority Key Identifier:
keyid:59:D7:6A:F9:09:1D:A1:58:1B:BA:5E:C1:3E:5D:BD:B7:36:2D:9D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wddq-QkdoVgbul7BPl29tzYtnQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:76:5e:79:36:5d:f6:89:cf:56:18:f9:a4:03:49:42:87:a4:
8f:29:da:87:f7:37:9f:90:b0:c3:c2:7c:fe:f9:0e:ed:5d:e6:
f9:e9:28:a9:cc:3f:39:67:de:e3:4f:34:04:a8:e1:19:cb:c1:
40:e8:68:53:7f:61:d1:06:25:9d:80:fa:bd:bd:05:07:21:aa:
0a:6e:4f:4e:2e:df:8d:59:9a:5b:37:59:47:d0:72:ed:96:9a:
e5:13:f7:95:6a:b7:bb:fa:a3:96:7b:cc:c1:9d:46:c7:2e:4e:
a2:f6:8b:05:c4:ed:e6:55:99:ef:b2:72:e7:8f:01:d1:1a:39:
34:72:b4:c8:97:89:a0:16:01:92:41:1d:ba:d2:8a:b1:1e:cd:
66:50:0f:9b:a6:7d:e7:e5:33:f9:da:58:f5:aa:db:b5:bd:e0:
3b:30:6d:1a:58:ef:87:46:5e:8f:4c:d9:13:ef:31:d9:9e:f1:
e6:40:fa:b4:52:51:01:6d:37:2b:55:84:b2:8c:42:93:c4:48:
12:c9:ee:20:2a:b7:10:7d:0a:d4:64:27:7b:f4:41:b4:c0:c4:
79:af:aa:05:72:47:1a:47:86:c6:41:76:72:0a:1d:d6:01:4f:
4f:c0:07:9a:26:b3:01:b3:3c:75:b8:61:3e:96:66:a3:f1:8e:
35:c4:bd:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:03 2025 by rpki-client