Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
File: dhrP1knI7q2FUZQngfoW9o29EPM.mft (raw, json)
Hash identifier: 3DiqjJkT1E4pikGEvVJrpDX2TH/8pz7mW+Dpms9Wfww=
Subject key identifier: 2C:59:D0:18:4E:64:08:60:AE:A2:82:6E:25:1C:DF:05:E3:3B:6F:60
Authority key identifier: 76:1A:CF:D6:49:C8:EE:AD:85:51:94:27:81:FA:16:F6:8D:BD:10:F3
Certificate issuer: /CN=761acfd649c8eead8551942781fa16f68dbd10f3
Certificate serial: 019922FA38EB7E25A72DDE685CF422BD13CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 07:00:47 +0000
Manifest this update: Sun 07 Sep 2025 07:00:47 +0000
Manifest next update: Mon 08 Sep 2025 07:00:47 +0000
Files and hashes: 1: UdkvXpXGLdhITVh5jtCCMBnxb7M.roa (hash: HifSo99m/eGKn8WJh44GwrCR837RJMUrmbV81B/JjSg=)
2: dhrP1knI7q2FUZQngfoW9o29EPM.crl (hash: JrIYoeknmJ+s60xSW/FDMNJy2rDdOZ/qL4YKcwuu0Nk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:38:eb:7e:25:a7:2d:de:68:5c:f4:22:bd:13:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761acfd649c8eead8551942781fa16f68dbd10f3
Validity
Not Before: Sep 7 07:00:47 2025 GMT
Not After : Sep 8 07:00:47 2025 GMT
Subject: CN=2c59d0184e640860aea2826e251cdf05e33b6f60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:30:6f:58:e3:6e:fb:f8:6c:57:e3:d1:aa:22:
ac:fd:21:9d:c3:ce:93:db:5a:d0:cb:87:67:88:e6:
97:57:fd:ed:46:bd:a3:a5:d7:78:db:63:f3:b5:8c:
03:00:a7:4e:69:61:55:e9:70:6f:f6:e9:aa:58:e0:
f7:22:f3:41:34:63:b8:4d:c3:0e:5c:e3:51:8e:92:
34:7b:81:b1:c4:00:97:27:ea:cc:72:b9:4e:2b:86:
15:7d:66:b4:76:bc:83:a3:cf:a3:a6:26:9c:26:a2:
14:33:2d:6d:b3:94:cc:ad:02:6f:3b:55:70:96:f4:
e1:e8:3b:01:fd:1e:da:9b:3f:4f:6c:6c:8a:72:94:
9e:bc:e6:35:01:25:3a:1d:9f:91:e2:9a:3f:39:7a:
4a:00:43:dc:79:20:19:ef:29:74:05:84:1d:c8:10:
00:a5:58:dc:b6:2a:57:c5:f0:ec:46:85:58:e1:66:
a8:28:5c:6d:cf:88:f4:f5:ea:fc:9f:fc:f8:a7:7a:
c3:0f:5e:3d:92:07:04:eb:06:76:37:a3:00:01:24:
00:42:c1:0e:a9:77:80:96:b0:40:be:46:bf:7a:9f:
e2:e3:6b:2b:db:47:0c:62:9d:f1:b2:5e:83:05:e2:
ff:25:d3:1f:44:00:42:78:b3:1b:a0:2b:5e:0e:76:
32:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:59:D0:18:4E:64:08:60:AE:A2:82:6E:25:1C:DF:05:E3:3B:6F:60
X509v3 Authority Key Identifier:
keyid:76:1A:CF:D6:49:C8:EE:AD:85:51:94:27:81:FA:16:F6:8D:BD:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:59:37:e3:2c:cd:11:22:56:ed:b4:0c:99:2c:5f:f8:75:97:
0b:61:f5:1d:70:54:52:60:aa:8e:08:d6:67:34:35:5e:d6:cd:
a0:c1:7e:68:da:75:12:10:3c:42:f9:99:48:fe:41:c5:bc:8a:
1f:da:fc:5c:ea:a8:87:22:05:30:d3:6c:6d:29:62:ac:1c:50:
7a:96:8f:44:5f:40:b1:7e:a5:84:1e:dc:f6:7b:58:c4:d9:74:
72:0c:97:6c:73:69:eb:58:10:0c:05:13:1b:58:46:b6:a4:1a:
20:14:f2:ee:1a:56:6c:b1:78:15:31:57:bd:f1:0a:3a:ea:0f:
95:5d:f9:d2:ae:48:61:cb:0e:f4:50:2a:04:5a:27:6c:12:ae:
1d:b8:8d:4f:7e:27:50:59:28:2a:1e:92:77:55:f5:bd:5b:95:
44:27:f9:6d:35:ee:23:fc:15:52:4c:25:67:b8:7e:be:c4:90:
07:bf:f5:fc:06:cf:58:c3:ec:8f:fd:e2:60:a4:fa:d8:7a:d9:
bf:67:43:16:e9:ff:24:a8:ce:f4:da:ef:68:14:0c:8e:40:7a:
a6:e9:cb:0c:3a:e9:7c:7c:1a:b6:ff:9b:db:4e:74:29:c4:b3:
1a:1c:62:e3:35:40:27:e4:4f:4e:4f:58:ca:2e:99:52:e6:5b:
7e:52:da:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:41:14 2025 by rpki-client