Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
File: dXFLWBraGW41UcCM52JDvgWLROs.mft (raw, json)
Hash identifier: GBxDh7lQxiJatUiv/AeCk0Btfs/Eatx2XUKETz6Bnuc=
Subject key identifier: CA:D0:18:8F:FB:CC:51:A9:EF:91:5C:B8:4D:71:5F:95:60:89:59:E4
Authority key identifier: 75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
Certificate issuer: /CN=75714b581ada196e3551c08ce76243be058b44eb
Certificate serial: 019922C30B6078D57FDB97EB6B7D903E07D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 06:00:31 +0000
Manifest this update: Sun 07 Sep 2025 06:00:31 +0000
Manifest next update: Mon 08 Sep 2025 06:00:31 +0000
Files and hashes: 1: 0dwLJQRpdsuNfuiofPA4PjO0U8c.roa (hash: xvhwiBzc6sj9frR0O87jctOS5dj3sqKjh7OcpHO4MQo=)
2: dXFLWBraGW41UcCM52JDvgWLROs.crl (hash: eD4VbYj2l0vX4YbmEp2h/cRo5IYKzVdwEJwr77k8YCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:0b:60:78:d5:7f:db:97:eb:6b:7d:90:3e:07:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75714b581ada196e3551c08ce76243be058b44eb
Validity
Not Before: Sep 7 06:00:31 2025 GMT
Not After : Sep 8 06:00:31 2025 GMT
Subject: CN=cad0188ffbcc51a9ef915cb84d715f95608959e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ae:9c:86:4e:7b:5d:be:7f:05:de:c5:ac:ab:
2a:e7:ab:9c:37:14:6c:72:70:69:db:dc:90:54:f8:
a1:eb:7a:95:2e:07:d6:4b:63:6a:14:5b:74:c0:38:
c7:7c:7a:b7:57:fd:af:cf:15:0b:9a:0b:73:d2:a6:
1f:e0:a6:3e:64:5a:ac:0b:7e:13:15:63:0a:05:60:
32:14:c9:cf:cb:ae:da:81:8a:c0:12:7a:d4:1c:86:
0d:2a:84:2f:23:b0:94:95:43:e5:e9:09:4a:3d:87:
2d:4a:8e:13:c6:e6:df:8d:24:85:b1:c4:52:55:cc:
96:58:95:59:66:fb:5f:c1:24:a7:62:37:aa:ac:48:
92:12:10:46:03:2e:29:33:db:26:f1:db:7d:fb:50:
37:59:f1:a5:82:1a:98:e7:bd:37:6b:d9:37:94:a1:
7d:69:7a:f2:92:5e:99:a8:bb:38:76:24:49:68:e7:
d0:b2:ce:df:1f:53:a9:6d:13:75:26:96:98:7d:5c:
88:e0:70:1d:c9:93:95:5e:ea:59:1b:db:14:e1:23:
cb:42:26:73:b3:ad:08:95:75:75:24:8e:bf:4a:22:
62:2f:4c:b4:79:d8:18:17:5e:c4:67:f7:71:2f:1d:
6f:f1:e9:24:6b:22:8b:95:1a:0b:5c:7c:7a:5b:05:
f5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D0:18:8F:FB:CC:51:A9:EF:91:5C:B8:4D:71:5F:95:60:89:59:E4
X509v3 Authority Key Identifier:
keyid:75:71:4B:58:1A:DA:19:6E:35:51:C0:8C:E7:62:43:BE:05:8B:44:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXFLWBraGW41UcCM52JDvgWLROs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/39d226-72bf-490e-9f16-073fbbe111e5/1/dXFLWBraGW41UcCM52JDvgWLROs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:5d:29:c7:b2:87:b5:bc:81:13:cc:3e:06:4a:ef:9a:7e:96:
93:d6:51:5b:ca:b8:c4:3b:55:82:ed:73:10:f9:50:77:2d:41:
55:9d:d0:dd:5b:d2:ec:92:1c:94:46:f2:1b:47:11:1f:ba:6d:
76:43:39:eb:e8:28:48:d8:8f:8b:f6:22:1e:25:e1:ea:3a:2c:
b9:62:40:56:56:54:16:b3:50:b7:0b:69:a6:6a:ed:a3:99:73:
d6:2f:ad:ed:ad:24:b4:c5:66:fe:71:24:77:05:4e:b8:be:82:
d7:89:f0:61:cf:2d:1a:49:e3:10:6e:d3:e0:00:99:86:a3:96:
ea:88:03:31:c8:c6:aa:f2:04:ca:c0:11:a4:24:ee:25:55:1f:
11:5b:58:ac:b2:a7:b5:2a:30:7d:25:ac:93:15:84:0b:22:76:
3d:36:11:e9:1b:b7:72:f4:7a:bf:a1:cd:7c:3a:24:68:72:46:
dd:33:39:23:d4:38:53:09:a2:1f:e7:84:d0:07:ef:be:b1:dd:
37:f8:8b:6b:6a:88:c0:57:f8:0c:32:1d:6b:fe:70:d1:1c:76:
26:28:70:93:25:eb:9b:73:07:c8:15:ce:c4:df:04:fb:99:ad:
60:29:b0:d7:83:1f:c1:f1:69:70:be:2c:6b:8f:19:2b:8e:a6:
37:f0:b8:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:57:03 2025 by rpki-client