Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
File: DA96BN1ySaXRS33gVCpBlzgABsw.mft (raw, json)
Hash identifier: i/oC4ucWV1SAsudLs3T6UvJHdkqx84qZgQRepy/EpqY=
Subject key identifier: 47:0F:50:A5:03:24:73:7C:A0:61:4E:AF:AD:C1:AE:66:62:3D:95:BA
Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
Certificate issuer: /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Certificate serial: 019936809072804A198AE53127B2F7F8B2BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
Manifest number: 121F
Signing time: Thu 11 Sep 2025 02:00:19 +0000
Manifest this update: Thu 11 Sep 2025 02:00:19 +0000
Manifest next update: Fri 12 Sep 2025 02:00:19 +0000
Files and hashes: 1: DA96BN1ySaXRS33gVCpBlzgABsw.crl (hash: 5t6DhFHbMN/cCSxDXdFt+QgcDUFWCiCeNQ011wQnXP8=)
2: DnlnaiUOn3bGRjdw-Yb1fkUsNto.roa (hash: E1ibhwBfmIcFn7h/JxzOSZ/iplWkTSQE9ZGFZ1Ek2Kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:80:90:72:80:4a:19:8a:e5:31:27:b2:f7:f8:b2:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Validity
Not Before: Sep 11 02:00:19 2025 GMT
Not After : Sep 12 02:00:19 2025 GMT
Subject: CN=470f50a50324737ca0614eafadc1ae66623d95ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:77:a0:25:b5:7d:2c:84:e9:65:2a:fd:07:3d:
de:2c:ee:88:c0:46:fc:4e:4e:c4:16:5f:16:32:2e:
62:a2:43:e8:64:6c:7d:76:c8:f0:17:5b:3d:1a:71:
65:2e:ed:22:c2:83:7a:4a:5b:cd:f5:da:96:ea:ed:
62:b3:3e:a1:08:0e:2d:70:93:c8:88:b7:e6:ed:29:
71:80:9f:25:d7:77:16:d4:50:7a:3a:a9:93:dd:69:
e5:5e:c5:1a:85:7a:21:1b:75:f6:04:62:14:3d:c1:
8f:b3:76:91:39:a0:f5:14:8b:52:a9:30:44:e0:4f:
0a:37:a9:50:db:e3:79:3d:48:7d:4e:f8:9a:ce:1d:
84:0e:3b:ea:1a:45:15:ce:2b:1a:b3:60:85:af:26:
24:d2:63:52:09:c7:ff:a1:49:7a:82:d4:06:aa:59:
06:96:09:07:c5:0e:e7:4e:b1:dd:18:38:1b:6b:7d:
a2:79:b4:eb:41:38:bc:bd:27:7a:f8:2e:be:cb:75:
a4:40:16:c9:40:e1:b5:c2:79:09:a3:cd:66:c0:46:
1a:52:91:25:54:22:33:11:24:ec:24:b7:02:53:57:
b0:7f:35:e6:89:e9:b0:39:af:8e:90:6b:8f:ff:12:
7c:69:d5:0d:75:63:d0:5d:99:54:33:2a:6c:e4:8c:
7a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0F:50:A5:03:24:73:7C:A0:61:4E:AF:AD:C1:AE:66:62:3D:95:BA
X509v3 Authority Key Identifier:
keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:ce:09:1d:4a:54:78:2c:7b:8f:2a:a0:d8:a5:cd:3e:d6:6e:
f6:18:d5:4a:c1:43:af:e4:3c:5f:f4:d9:bf:73:f8:85:77:cf:
fb:c0:56:3a:6f:e2:b4:5b:bd:33:6e:64:55:36:7e:b3:df:de:
39:55:92:00:e1:2d:1c:07:16:e4:7d:13:be:09:88:fe:a0:aa:
f9:6d:37:cc:95:3b:80:93:6f:88:6a:95:84:99:ef:68:b3:05:
69:40:3b:9a:bd:1e:3b:df:39:81:72:72:da:4d:26:7f:09:d8:
a8:5b:62:64:fe:45:f1:98:f0:a5:28:07:b0:db:e4:95:e7:5c:
51:cc:2d:26:8e:a1:49:4a:15:23:11:2b:ec:66:03:75:6c:94:
3f:03:71:8e:a4:b2:18:52:9b:9f:1c:ac:69:b4:5b:99:a5:03:
ec:e4:1b:62:be:29:b5:b3:27:ca:4d:5d:f9:0a:28:83:e6:fe:
6c:d4:f7:16:cd:a6:fe:ae:9e:af:32:56:79:37:27:3c:cb:5b:
2e:5e:4b:6d:f3:3c:e5:77:44:9b:36:49:9f:46:e1:33:4b:ce:
f3:a7:68:a6:d9:92:3d:8b:a6:b7:fa:fe:68:ab:e1:01:70:1b:
b9:55:ee:d6:92:d6:b3:38:8d:f3:41:f1:af:55:36:de:06:09:
77:14:8e:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 05:25:22 2025 by rpki-client