Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
File: dahWeFOS2ifQC9snCRxZJsMVXYk.mft (raw, json)
Hash identifier: CPKmovNSOd22le9sq2u7sdhefdsBBoV6cmNsCfMApas=
Subject key identifier: 46:0D:B7:40:9E:76:FA:9D:28:37:88:61:E3:EE:23:D5:3A:03:96:D0
Authority key identifier: 75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89
Certificate issuer: /CN=75a856785392da27d00bdb27091c5926c3155d89
Certificate serial: 01991DD582215D05128662A85E5E667256C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
Manifest number: 0EA2
Signing time: Sat 06 Sep 2025 07:02:35 +0000
Manifest this update: Sat 06 Sep 2025 07:02:35 +0000
Manifest next update: Sun 07 Sep 2025 07:02:35 +0000
Files and hashes: 1: 4Ibv1mRm3BSugEZRLZ50GEzm6Bc.roa (hash: Ox7Eku50X67DCQ6L0nXfJGgK/iPhql76+0sQGSQq9Q4=)
2: dahWeFOS2ifQC9snCRxZJsMVXYk.crl (hash: DtuNGr5jrgu6sGSl2ugxEb5cjdaGRSasOTTZJQHSYzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 07:02:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1d:d5:82:21:5d:05:12:86:62:a8:5e:5e:66:72:56:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75a856785392da27d00bdb27091c5926c3155d89
Validity
Not Before: Sep 6 07:02:35 2025 GMT
Not After : Sep 7 07:02:35 2025 GMT
Subject: CN=460db7409e76fa9d28378861e3ee23d53a0396d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:f9:1a:64:18:e7:b3:f9:15:02:f6:c6:85:7b:
4c:de:0f:1d:c6:c4:2d:12:0c:ba:a2:ae:2e:bc:91:
69:7d:30:74:5d:0d:d4:49:56:ca:30:f9:d6:2b:a4:
0e:5f:4c:a3:b8:07:54:6a:de:29:fa:56:ff:2e:f9:
48:4e:1b:f6:35:42:78:6e:b9:4e:bc:1e:cf:21:83:
73:55:e0:99:f4:04:fe:2b:58:28:ea:07:fa:3d:c8:
64:03:dd:4c:d2:75:15:32:6a:ee:72:08:75:e0:f8:
5f:79:e2:74:47:c1:50:d0:02:01:a8:ea:47:9a:fb:
70:5d:a1:22:4b:69:67:55:86:e8:fc:2b:20:5c:db:
3d:cf:15:cb:d8:90:57:07:a0:08:28:4f:aa:2e:17:
37:2b:c8:59:64:cd:5e:be:1a:5e:5d:1f:a1:0b:4d:
bd:8c:92:8e:ae:f4:36:c8:1d:33:f9:c3:65:ad:70:
18:e2:3a:4f:ad:15:a4:cb:b9:74:6a:de:ef:d3:db:
75:67:4e:c6:5d:97:20:a8:3e:23:30:78:55:34:63:
86:65:33:37:d7:49:1c:5a:dd:7f:a9:3d:e1:42:6d:
41:f9:68:bd:6b:80:16:4f:a1:38:87:31:58:48:58:
0a:17:5c:d4:1e:e8:0a:e0:f0:62:48:bf:f2:0c:c3:
e8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:0D:B7:40:9E:76:FA:9D:28:37:88:61:E3:EE:23:D5:3A:03:96:D0
X509v3 Authority Key Identifier:
keyid:75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:61:07:42:8c:6b:17:bd:d4:ba:64:a2:76:9c:b6:19:a8:a7:
71:dd:a6:55:dd:c7:ec:9e:8f:0c:ad:66:41:2c:fb:57:8f:fd:
aa:d6:61:d7:5e:de:eb:da:a5:44:56:da:e3:e1:89:5c:e5:a8:
7b:05:33:9d:8a:6c:0a:07:7c:5a:eb:79:8c:47:c0:2e:15:ff:
ab:fb:81:4e:ee:13:9f:80:ac:f6:98:7e:ad:5c:15:93:9b:01:
20:6c:31:ef:e1:9f:19:5e:ce:41:a4:e9:a3:e2:90:84:5c:2b:
25:4c:22:91:8c:12:36:b8:df:1d:88:14:78:2a:c7:8e:2c:d0:
d2:49:3b:72:73:e6:a6:b7:5c:96:7c:6e:28:03:5a:e2:11:6f:
87:5d:24:52:5f:3d:60:aa:b3:26:55:2c:32:1f:cb:4e:04:54:
3e:83:df:0c:39:d8:c7:bf:97:c9:9b:16:54:b5:64:8b:96:96:
1a:ba:ed:f2:5b:9a:29:59:ce:c5:dc:34:bf:f7:8e:66:47:c0:
63:cc:64:f8:f3:5e:57:ba:89:51:c2:99:74:ce:4d:10:7e:af:
8c:55:98:0d:4c:10:39:21:39:ab:2c:5c:00:5b:0f:43:d9:09:
14:28:76:f3:91:29:bd:f7:bb:a4:59:c8:7e:20:f6:c3:46:7f:
8d:7b:76:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 16:11:24 2025 by rpki-client