Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/2891f6-7861-4037-8008-52cf0195838b/1/dBkW6TW7TmhYsdIjYVrONp7SaB4.mft
File: dBkW6TW7TmhYsdIjYVrONp7SaB4.mft (raw, json)
Hash identifier: aTkhEBK5T5jP+03PFNUxW/+RMIf/uqexatcqNWcTgfI=
Subject key identifier: B8:86:5E:C2:15:ED:C6:51:CA:6D:BB:0C:41:7C:BB:09:D6:A5:C6:91
Authority key identifier: 74:19:16:E9:35:BB:4E:68:58:B1:D2:23:61:5A:CE:36:9E:D2:68:1E
Certificate issuer: /CN=741916e935bb4e6858b1d223615ace369ed2681e
Certificate serial: 0199228CE302ABE93D6DE5FB4887BEE7A848
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBkW6TW7TmhYsdIjYVrONp7SaB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/2891f6-7861-4037-8008-52cf0195838b/1/dBkW6TW7TmhYsdIjYVrONp7SaB4.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 05:01:22 +0000
Manifest this update: Sun 07 Sep 2025 05:01:22 +0000
Manifest next update: Mon 08 Sep 2025 05:01:22 +0000
Files and hashes: 1: dBkW6TW7TmhYsdIjYVrONp7SaB4.crl (hash: ltgxRCakSuJ7YYi1kJBwxFAVOx6CqAFNtEzeG6upHz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/2891f6-7861-4037-8008-52cf0195838b/1/dBkW6TW7TmhYsdIjYVrONp7SaB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/2891f6-7861-4037-8008-52cf0195838b/1/dBkW6TW7TmhYsdIjYVrONp7SaB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/dBkW6TW7TmhYsdIjYVrONp7SaB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:e3:02:ab:e9:3d:6d:e5:fb:48:87:be:e7:a8:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=741916e935bb4e6858b1d223615ace369ed2681e
Validity
Not Before: Sep 7 05:01:22 2025 GMT
Not After : Sep 8 05:01:22 2025 GMT
Subject: CN=b8865ec215edc651ca6dbb0c417cbb09d6a5c691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:50:87:1f:89:ec:9f:53:e7:a8:50:33:8b:63:
68:76:eb:4c:69:e1:73:94:39:69:7f:7f:68:ed:60:
ba:54:91:3f:49:3a:22:5b:e1:c7:50:1e:55:17:8c:
0e:7a:30:a4:89:68:55:bf:7c:07:41:02:2f:4f:12:
ef:d6:16:38:8a:de:1c:be:c9:46:0b:9b:17:62:36:
c9:50:36:5f:5b:43:d4:4d:3f:ea:2f:40:fc:d3:67:
59:22:bd:c4:b8:bc:05:73:6f:1e:2d:25:57:c8:2b:
c6:08:33:fa:4c:c8:24:f5:2a:14:fe:cc:4f:fb:1a:
30:07:c2:11:f6:6f:bd:00:86:4b:f5:7f:f5:64:34:
9f:b3:16:c3:af:5a:21:27:74:ce:3e:a7:61:f7:d2:
b9:9c:c5:a7:54:e9:17:82:43:b6:4a:e6:e8:e8:82:
10:fa:8e:87:89:fc:72:d8:11:ed:e1:8d:c6:1a:94:
f5:e9:8b:98:c5:26:20:53:d8:f0:5b:61:fd:3f:d5:
7b:54:b3:c4:3a:60:c9:0b:44:69:29:9f:3a:22:63:
53:0b:99:1b:f0:3b:eb:e7:3f:6b:61:09:11:c8:72:
ce:45:87:71:59:98:71:c8:fb:57:b9:39:87:63:22:
52:42:44:f2:13:e0:b1:e2:1e:3c:51:ee:b6:ad:91:
7a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:86:5E:C2:15:ED:C6:51:CA:6D:BB:0C:41:7C:BB:09:D6:A5:C6:91
X509v3 Authority Key Identifier:
keyid:74:19:16:E9:35:BB:4E:68:58:B1:D2:23:61:5A:CE:36:9E:D2:68:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBkW6TW7TmhYsdIjYVrONp7SaB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2891f6-7861-4037-8008-52cf0195838b/1/dBkW6TW7TmhYsdIjYVrONp7SaB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2891f6-7861-4037-8008-52cf0195838b/1/dBkW6TW7TmhYsdIjYVrONp7SaB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:2a:66:ff:64:9b:3b:14:57:a3:f8:7d:a1:ae:39:60:f5:c6:
71:4e:35:d2:6d:c9:a9:fc:63:23:9f:d7:c1:05:89:6c:97:86:
a5:bc:f5:10:54:27:dc:23:bd:21:eb:ef:2c:37:a9:9f:68:70:
35:11:d9:44:b1:78:c5:cd:00:44:90:f2:da:ba:79:f5:43:45:
71:76:df:47:0d:33:3e:79:00:88:69:57:57:40:c3:7a:c0:36:
d5:b9:e5:0c:41:24:00:7a:b5:fd:a8:18:ae:27:78:e2:f7:0d:
0c:1a:ff:0a:8d:5b:e3:b1:25:42:91:ff:03:e8:8c:fa:4e:ca:
80:72:49:47:c9:ee:2a:b6:b2:5c:ec:f8:06:5a:93:4e:b2:cb:
4f:d2:34:2e:76:90:0a:a9:d7:fd:33:b9:45:69:74:50:a4:61:
4e:e5:5c:9a:db:c7:17:84:e6:1e:a8:a1:e3:97:ae:e3:0e:bd:
51:5b:24:1b:df:b9:26:96:80:30:9b:f0:c9:2a:93:c4:f0:5b:
5d:85:4c:ce:8a:88:14:f0:20:e9:ca:64:f6:56:5e:a0:8c:f5:
2a:08:cc:91:28:68:39:9f:9a:dc:74:f4:bb:b6:f5:5f:ae:a7:
b7:b8:31:81:ec:be:73:b7:4b:f3:9b:a3:b6:07:fd:91:62:bb:
f6:8d:7e:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:35:55 2025 by rpki-client