Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
File: doFcfQ6GPCF4D4v0uezDqcZFkpg.mft (raw, json)
Hash identifier: dAGKx+kGtpDYPSbtO9KPwwp6KnNwCmOsyl0UNu1kpi4=
Subject key identifier: D6:7E:63:C3:3A:AE:EF:BC:43:5E:CD:76:7D:CF:05:9A:FD:D2:2A:C6
Authority key identifier: 76:81:5C:7D:0E:86:3C:21:78:0F:8B:F4:B9:EC:C3:A9:C6:45:92:98
Certificate issuer: /CN=76815c7d0e863c21780f8bf4b9ecc3a9c6459298
Certificate serial: 0199221EFCECAE30105F762B59B46CBDDDF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
Manifest number: 0367
Signing time: Sun 07 Sep 2025 03:01:20 +0000
Manifest this update: Sun 07 Sep 2025 03:01:20 +0000
Manifest next update: Mon 08 Sep 2025 03:01:20 +0000
Files and hashes: 1: doFcfQ6GPCF4D4v0uezDqcZFkpg.crl (hash: pM9NaZl2VzlD8zC1nDSrnN1go1Sgb1Scnq0HLVKIEcc=)
2: pTTtPKmhE713zQ-lNSyfapckqck.roa (hash: Z4OXgVLMtdMbDgwAv+QfBL8XpAweOau33nbHajpmsxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:fc:ec:ae:30:10:5f:76:2b:59:b4:6c:bd:dd:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76815c7d0e863c21780f8bf4b9ecc3a9c6459298
Validity
Not Before: Sep 7 03:01:20 2025 GMT
Not After : Sep 8 03:01:20 2025 GMT
Subject: CN=d67e63c33aaeefbc435ecd767dcf059afdd22ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:80:70:91:95:1b:fc:8a:17:2a:b5:4e:80:06:
5c:f6:88:b5:85:98:42:8b:a0:a9:62:4f:af:67:07:
8e:c0:73:b6:88:ee:0f:cd:22:ce:5c:cc:10:0a:70:
18:de:90:5a:cb:04:f8:cb:c1:09:b3:66:0a:c4:ec:
d4:0f:80:13:6d:0c:82:f2:1a:71:59:7e:64:91:46:
eb:1d:40:79:bb:b2:62:4b:a8:e6:35:9c:59:04:b8:
c8:dc:7d:6e:f8:5e:96:42:a7:63:b4:bb:38:7b:74:
00:1c:bd:96:bd:cd:bd:b3:92:e5:c1:ac:4e:fd:09:
12:72:ed:23:e0:ae:74:8d:8b:5b:cb:c3:75:cf:ae:
47:72:59:2a:17:75:d9:9a:9e:70:2b:b6:96:7e:71:
74:5c:66:42:d0:d0:a9:d9:48:58:f9:33:07:46:0f:
db:76:c5:98:5a:f1:04:62:6e:bc:85:71:d7:bf:e8:
a2:78:f8:b0:74:35:2a:e0:1c:6a:62:3a:ad:7e:ff:
b0:c9:1b:f9:4e:ef:95:3b:10:24:d7:17:af:b8:7a:
72:83:3c:39:8d:89:70:2b:22:3c:3a:4b:d8:ff:0f:
ba:5a:bb:eb:b9:e0:f3:ca:27:32:51:6b:5e:95:5d:
29:73:e1:c8:1e:c6:cb:b5:87:d3:97:c2:07:28:b5:
f0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:7E:63:C3:3A:AE:EF:BC:43:5E:CD:76:7D:CF:05:9A:FD:D2:2A:C6
X509v3 Authority Key Identifier:
keyid:76:81:5C:7D:0E:86:3C:21:78:0F:8B:F4:B9:EC:C3:A9:C6:45:92:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:f9:29:2c:dc:82:7d:bd:ac:05:08:0b:d6:57:c8:9c:20:b0:
18:d0:dc:db:98:4b:2c:32:a3:54:05:e6:7f:4b:a5:39:04:18:
c2:ae:f9:e7:be:12:13:3a:0e:d0:45:9a:81:27:05:f2:92:e2:
ea:39:72:d7:f7:33:24:ae:c2:20:cb:70:24:c5:3e:7a:bc:10:
7f:e9:b0:8b:2b:92:75:8c:13:d6:09:f8:88:f5:d2:44:9e:dd:
b6:1d:02:28:e3:af:ef:41:43:ae:49:28:d6:0d:85:75:56:76:
53:d5:26:85:b3:0b:cb:30:bf:76:24:e3:36:03:1e:4d:77:bf:
09:c2:9d:88:fc:63:06:39:05:a3:75:ea:4b:06:a4:2d:a1:b2:
ec:c4:55:c7:79:7e:90:b8:6e:91:ce:53:16:60:42:54:0f:d0:
b2:f6:43:3c:e2:e2:18:b4:b2:fe:f6:e8:44:9a:e1:51:db:52:
1b:51:eb:85:50:aa:a4:64:af:99:fc:3e:47:2a:e9:18:5d:9b:
97:74:f1:5f:f8:22:3b:56:ff:d2:6d:7a:9a:23:2e:3e:4a:59:
99:42:27:a4:c3:56:72:5f:62:10:77:a0:c8:d9:bf:9e:d1:02:
79:50:b2:20:77:3d:57:a9:e7:26:97:b4:88:b1:b6:5a:c6:93:
ca:ee:82:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:58 2025 by rpki-client