
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json)
Hash identifier: Ntc18NozhlcElva5CrXSbSy0uGqA3Cy2ZZreqeC4v5s=
Subject key identifier: AE:00:C9:EE:0A:57:0C:9B:F4:6F:D8:0C:83:30:BC:B5:83:D1:72:8C
Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Certificate serial: 01986739D514AD75ED238FB6CDD85CDC9EDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
Manifest number: 0341
Signing time: Fri 01 Aug 2025 20:01:39 +0000
Manifest this update: Fri 01 Aug 2025 20:01:39 +0000
Manifest next update: Sat 02 Aug 2025 20:01:39 +0000
Files and hashes: 1: kdQZ4QS0sUqXnywKZ8M79hUmfTA.roa (hash: xGG3G4XfdVhcDuFzw8EOPzLUi5vn/b3D8pkyEY9PSkc=)
2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: QlAS5eqCwQBirCU4PFlme8OJe7Mp6s/67HGuiKD+ah8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 02 Aug 2025 20:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:67:39:d5:14:ad:75:ed:23:8f:b6:cd:d8:5c:dc:9e:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Validity
Not Before: Aug 1 20:01:39 2025 GMT
Not After : Aug 2 20:01:39 2025 GMT
Subject: CN=ae00c9ee0a570c9bf46fd80c8330bcb583d1728c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:39:7d:f7:83:de:94:62:27:3c:00:a7:a4:33:
a6:c8:c6:77:5d:0f:30:07:6e:db:af:dd:fb:0f:30:
1a:30:cc:3b:0c:36:de:2d:80:83:33:5f:a6:6f:f8:
19:1e:46:11:3e:3a:a9:ae:b9:be:19:7e:62:b0:dc:
74:19:ab:e3:e1:dd:ff:7c:92:a7:5a:e9:70:67:90:
9b:c6:95:4a:a5:46:02:fb:2c:62:3c:09:31:ef:23:
f8:ce:61:42:ad:ac:20:32:d5:8d:98:ef:e4:a7:65:
66:55:9d:d1:ee:88:e9:b0:2f:d3:7c:34:43:c4:0e:
98:69:fa:a3:7e:b7:c6:e7:39:a8:70:6a:d3:2e:87:
16:bf:85:94:16:3c:8e:ac:ba:93:93:06:f4:68:f8:
80:29:8d:41:a1:22:8d:c7:f1:06:d2:85:47:0c:de:
e0:78:ea:70:34:6b:41:b1:a7:11:75:69:04:14:85:
95:52:9f:ab:f0:0e:53:9f:46:1a:c8:45:38:4a:e1:
cb:11:54:0b:41:b6:35:60:42:99:d0:43:ba:0b:f8:
10:4e:f0:ba:0d:e9:90:ef:fe:d8:32:44:ad:94:23:
4c:68:c0:75:c5:6b:13:3a:13:b8:7e:19:4f:5a:96:
76:0a:ee:ea:8e:95:e4:71:b1:80:aa:94:ec:a2:b8:
4c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:00:C9:EE:0A:57:0C:9B:F4:6F:D8:0C:83:30:BC:B5:83:D1:72:8C
X509v3 Authority Key Identifier:
keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:03:10:47:41:26:97:6f:e1:9b:09:f2:48:0b:b0:97:e2:99:
19:1d:f5:82:a3:82:5e:20:97:04:f3:b3:fd:d4:ce:a5:d1:dd:
ee:b1:5b:10:3e:96:a7:7a:34:8e:09:d6:56:86:93:90:49:c9:
28:5d:a5:75:f5:79:d6:0a:53:82:24:a2:f6:b8:c6:eb:c0:57:
15:d8:08:c2:b4:2a:3e:6b:43:03:49:0c:64:35:64:ee:5d:d4:
03:55:72:ac:8e:a0:23:d1:19:b2:3f:2d:7c:e5:9d:e3:ca:80:
77:a8:36:eb:2d:59:92:ad:03:4a:7b:7f:c6:51:63:59:65:83:
45:c0:21:80:f4:d4:72:40:30:66:e6:72:ab:ea:54:c8:b1:2a:
b6:aa:33:1c:da:80:f6:0d:a7:cf:ce:e3:7f:cb:cd:9d:c3:42:
02:b5:de:d5:0d:e8:bc:9e:79:76:eb:ba:8e:c2:e7:00:31:a7:
52:2e:d9:9d:1f:e1:b3:9b:8b:d9:51:e7:d2:be:cb:51:e5:53:
8d:e0:72:f2:d5:8f:a5:e2:29:30:15:c0:e8:08:84:b3:89:cb:
92:00:17:1d:a5:51:cc:7b:8f:e6:c7:09:c6:31:3a:49:fa:0c:
5c:56:a4:c1:70:83:ce:81:8e:68:90:8f:fb:8e:ca:e8:74:b6:
52:5e:e0:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 2 05:20:09 2025 by rpki-client