Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
File: dI6Zox81gkAKtd-nd8YNFqyu3bM.mft (raw, json)
Hash identifier: h00TkEhZ1NC8u1WIJxxhFYzjsJPxgcSTivnNXsFQKTY=
Subject key identifier: 2D:BB:CA:56:1B:80:6C:16:9C:54:FF:9D:35:2C:D0:E0:D9:03:2F:DA
Authority key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
Certificate issuer: /CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Certificate serial: 019921B1BA2031E587EA0EEC901A211A8CDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
Manifest number: 0840
Signing time: Sun 07 Sep 2025 01:01:59 +0000
Manifest this update: Sun 07 Sep 2025 01:01:59 +0000
Manifest next update: Mon 08 Sep 2025 01:01:59 +0000
Files and hashes: 1: VWVp9Cs0S9PvQSERU4KTGGzQ8JI.roa (hash: SxWsENl0azYTplSpEg/TKtQu0dvHaU6Cl+WjOSHnKaA=)
2: dI6Zox81gkAKtd-nd8YNFqyu3bM.crl (hash: 4ikfoKTasx+7qJFsr3bH0ukDhDcBGeKoeDkcxGKYEUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:ba:20:31:e5:87:ea:0e:ec:90:1a:21:1a:8c:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Validity
Not Before: Sep 7 01:01:59 2025 GMT
Not After : Sep 8 01:01:59 2025 GMT
Subject: CN=2dbbca561b806c169c54ff9d352cd0e0d9032fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:75:cc:18:6e:f2:6f:e5:8c:fe:06:75:1b:17:
0c:44:f5:b5:69:2d:68:55:bd:41:3c:62:b9:64:0d:
33:70:80:2e:6d:42:72:cb:b6:2b:ec:e3:05:1d:25:
93:a1:1a:e5:90:ea:71:04:fa:6e:61:a4:2b:a5:d4:
c5:7c:43:6b:7b:5b:7e:cf:69:ec:35:50:c5:87:31:
5e:b8:f6:66:af:99:eb:96:2a:3c:58:a5:00:d9:38:
ad:93:4c:66:e6:30:2b:d1:0a:15:6f:65:27:f7:71:
37:87:e1:b7:21:0d:15:b3:77:f0:47:38:28:d9:72:
4b:0e:82:01:04:82:42:82:a2:0a:87:b2:b2:5c:9a:
3b:e9:37:dd:95:f1:dc:33:bd:bb:d9:9f:50:f6:62:
9b:79:70:d1:d2:1a:d4:a6:e9:9a:d8:af:fd:51:f6:
75:d4:13:34:61:1d:0c:68:3b:ee:38:74:99:b9:fa:
54:ef:58:0a:25:11:02:be:9d:32:4c:87:03:50:d5:
c3:be:9c:9d:61:e9:ef:cc:ff:9b:fd:5e:c9:60:9c:
96:a9:62:30:b5:03:07:4d:c5:27:01:cc:e7:d0:92:
da:6d:db:9f:97:5e:84:94:63:fe:d4:16:11:29:44:
68:71:16:28:ad:68:9c:1f:7e:d3:c3:bb:cf:10:2d:
56:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:BB:CA:56:1B:80:6C:16:9C:54:FF:9D:35:2C:D0:E0:D9:03:2F:DA
X509v3 Authority Key Identifier:
keyid:74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:b5:d3:bd:c9:c4:53:c8:47:28:c1:5a:41:5d:2c:db:6a:2a:
9c:0c:fc:d2:a7:36:51:a6:1d:66:49:ee:17:7b:7a:ed:fe:9e:
48:b6:11:73:74:f4:39:01:04:67:b0:2e:2b:c6:99:10:00:e2:
d5:37:f5:bd:3b:ea:d1:e8:90:e5:ca:9b:e5:ae:94:a6:2b:1f:
3c:75:79:1c:3a:0f:6e:7e:62:36:05:5c:4f:8c:00:3e:57:dc:
79:e2:d8:fb:66:db:36:47:1a:c5:0c:25:69:c6:8f:cf:e2:3b:
6b:2a:3e:2e:cd:52:4f:36:7b:09:6b:44:99:83:e7:e5:3f:75:
2a:f1:22:16:4a:4c:f5:a1:02:70:b1:92:61:b2:0b:6e:97:4e:
ba:23:29:6a:b5:29:71:fa:88:14:9b:9a:ef:b7:fe:99:c9:cb:
74:a9:85:ab:a8:30:ac:39:8a:59:e8:ba:85:39:83:2e:87:69:
25:d6:be:bf:49:3a:df:9c:43:57:1a:d3:0c:4f:25:84:71:b6:
6a:e1:3f:9f:99:c0:17:3e:63:ba:f0:e3:da:48:d4:85:45:c3:
38:21:c7:44:7b:a7:f4:cc:4a:8a:e0:1c:ab:be:79:97:35:cd:
57:73:b0:cf:c7:62:ad:21:9b:cc:3e:30:a9:92:e2:94:26:9c:
a7:cf:09:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:35 2025 by rpki-client