Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
File: D3jqRswh1F7WEmjUqfVnMsheIVA.mft (raw, json)
Hash identifier: AUx60TLIfWAxcafwGPbY4Ho7jCV7qrtrgJme708KVDA=
Subject key identifier: EB:BE:C1:1D:54:47:11:94:87:1D:44:4F:F9:2A:CE:57:FF:A8:58:23
Authority key identifier: 0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
Certificate issuer: /CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Certificate serial: 019921E7C2AE097590D927A0A27D4F7DFB03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 02:01:00 +0000
Manifest this update: Sun 07 Sep 2025 02:01:00 +0000
Manifest next update: Mon 08 Sep 2025 02:01:00 +0000
Files and hashes: 1: 8SQTxy_p8cY9en9UR93vjFnnH74.roa (hash: LPCNfHY24fbVR2x4GxfhYD0c8Fxi97g9FBcWFfU2h/o=)
2: D3jqRswh1F7WEmjUqfVnMsheIVA.crl (hash: cK0uubJoB+zwYfitV1fVnM3ItQHZCisLHyygoSfiJ+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:c2:ae:09:75:90:d9:27:a0:a2:7d:4f:7d:fb:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Validity
Not Before: Sep 7 02:01:00 2025 GMT
Not After : Sep 8 02:01:00 2025 GMT
Subject: CN=ebbec11d54471194871d444ff92ace57ffa85823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:64:d9:22:83:f7:a5:a2:9f:b2:33:d8:6d:75:
aa:1b:01:0c:ff:bf:57:8f:f8:54:85:ef:85:c4:aa:
f6:04:5e:6b:9e:71:2c:0d:1c:35:9e:41:66:c2:c2:
60:38:8a:81:cd:84:45:88:e0:a6:f6:96:c0:58:1a:
75:35:59:d4:1c:bb:a9:4a:85:5e:24:b2:ae:70:de:
a9:1d:08:7f:15:1f:96:58:38:00:ee:47:22:10:8c:
5b:d8:48:75:38:27:61:16:f9:ef:8f:cc:8c:ba:bd:
cd:8e:83:8c:58:9e:68:c5:7e:84:38:61:c8:62:ae:
db:e8:bd:43:2e:91:e0:8d:4a:6c:e9:7d:e0:2d:59:
5e:5f:c3:e0:db:34:75:99:46:28:a9:72:53:0b:cc:
dd:d9:21:1d:84:fd:79:81:93:90:1d:fd:71:a8:c9:
06:37:65:95:07:5e:a7:80:7c:21:09:da:1f:c9:1a:
a1:97:6a:09:75:60:16:90:fb:48:57:4c:d7:1e:f5:
5e:d7:62:8c:dd:78:29:ec:42:bd:bf:7f:5b:2d:0f:
2c:1b:f1:a7:1d:78:72:e0:7a:fc:d0:44:4f:1d:85:
26:a5:7b:7a:05:9e:65:8c:b7:93:c6:21:e4:de:a2:
36:d4:f3:f0:34:93:1f:83:0d:08:62:1d:01:a6:b3:
5e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:BE:C1:1D:54:47:11:94:87:1D:44:4F:F9:2A:CE:57:FF:A8:58:23
X509v3 Authority Key Identifier:
keyid:0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:8e:70:e6:f2:69:ad:eb:a9:54:8d:07:dc:4e:4d:0e:96:e9:
f1:2c:a4:44:55:a4:7d:94:01:19:9a:2d:56:64:da:c9:96:c2:
ca:49:76:f9:fa:5d:e8:9d:d3:2e:7f:80:20:a1:4e:88:91:cb:
70:1e:66:85:18:0f:a1:30:aa:06:05:bc:be:8d:6a:a6:49:67:
3a:f1:19:6a:ea:ee:6d:10:f8:62:fc:fd:1e:cb:9d:11:06:4c:
ee:a6:06:62:8e:1a:52:d2:a7:4a:ef:b4:b5:5c:e8:35:a1:88:
9e:d6:f4:7f:da:15:13:c5:ea:ba:0c:61:a7:f5:1f:b4:3c:e3:
df:14:0c:44:53:95:75:ae:d7:1a:0d:59:99:fd:0d:42:2a:d7:
ba:fa:f9:43:69:95:0d:92:87:e6:8e:b2:f2:42:a0:29:cc:3a:
88:91:8f:bc:38:fe:7b:18:b4:6a:6c:2f:dd:9b:a0:37:5d:9d:
1f:8e:a4:f4:35:25:8c:83:a7:83:08:17:9e:4d:e1:74:95:8f:
90:52:7a:5d:65:05:4c:fe:dc:c4:b5:46:fe:8a:aa:98:8d:00:
04:16:f3:da:01:47:e3:de:69:b0:96:fa:d0:32:f8:6e:a9:a3:
c0:39:30:3d:6a:87:ef:80:ee:45:06:f0:06:d3:09:82:85:69:
d8:c7:d2:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:08:22 2025 by rpki-client