Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
File: D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft (raw, json)
Hash identifier: vcTVMGMCRBZYiqxiVMqCb9f/bjJMFwTzW0OhwsbLYnE=
Subject key identifier: 0F:E2:23:F4:B1:E5:C9:62:6D:2C:D6:06:9A:70:93:CC:35:30:E3:3C
Authority key identifier: 0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
Certificate issuer: /CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Certificate serial: 0199221F3E8A9656F5D3CE4EAD0F85209225
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
Manifest number: 144F
Signing time: Sun 07 Sep 2025 03:01:36 +0000
Manifest this update: Sun 07 Sep 2025 03:01:36 +0000
Manifest next update: Mon 08 Sep 2025 03:01:36 +0000
Files and hashes: 1: D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl (hash: dzyrEXPZpsx4/tXqlgs5V25Wch1LucDHBqJrcw45n5U=)
2: O_uEU5a5hFxcQ9cF5vOgcBailtI.roa (hash: am+LoRbwPcUWGmyLF541pRdLLSbuzmsIRCZ85z19J6M=)
3: _MZl5mAk0VStSl6-Iutzl1XZEmc.roa (hash: GAxNehsNlSM4VBui+WLkl0ufFvlsHnC2diPLD2P3m8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:3e:8a:96:56:f5:d3:ce:4e:ad:0f:85:20:92:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Validity
Not Before: Sep 7 03:01:36 2025 GMT
Not After : Sep 8 03:01:36 2025 GMT
Subject: CN=0fe223f4b1e5c9626d2cd6069a7093cc3530e33c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d0:b7:f9:2c:fc:d5:62:b8:bc:5f:ac:a4:97:
10:8e:1b:13:b9:8f:4b:86:b8:d8:66:88:4c:38:a1:
a8:5c:88:6c:f2:b6:f7:cb:ed:4d:eb:ee:3f:bd:21:
9c:b1:48:f5:2a:6b:bb:95:c6:76:6e:52:d3:e2:bd:
d6:64:ad:ec:c9:92:5e:99:7c:df:8e:4c:42:37:17:
af:ff:12:ba:a7:a5:fa:b5:03:51:49:e3:c4:92:4d:
f9:e4:5b:c8:1b:87:ef:42:fd:fa:8f:a1:5a:bd:2b:
4b:a0:60:e3:2f:05:a0:59:5e:40:0f:13:16:07:09:
a9:f8:83:f5:9f:6e:9f:ac:cf:ef:37:4b:51:b2:aa:
cc:29:19:03:01:ae:1a:30:d6:ef:dd:77:bd:b2:c2:
72:2e:91:32:2c:0e:b8:2d:ac:22:93:c5:11:c4:06:
e9:df:a4:f7:7f:2c:74:d8:dd:d2:fd:4c:65:64:c0:
98:c1:39:52:95:80:be:44:a7:51:27:1e:ff:9c:a0:
d7:c7:28:8c:05:9d:a7:92:dc:fd:1f:fb:eb:7b:94:
40:a5:5e:d3:56:bf:eb:6e:a8:c1:a3:d9:3f:b3:0a:
ae:a8:9b:3f:a1:34:54:80:e3:c4:a5:7a:db:19:14:
b1:e1:4a:94:f1:c2:f6:01:1a:18:7e:48:01:a9:95:
9e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E2:23:F4:B1:E5:C9:62:6D:2C:D6:06:9A:70:93:CC:35:30:E3:3C
X509v3 Authority Key Identifier:
keyid:0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:40:24:e2:6b:f4:d4:57:2f:f0:a8:9e:60:a2:7f:41:3d:47:
95:43:f6:75:3a:cd:ec:cd:d2:50:96:88:95:9e:d3:dd:3d:4e:
42:dd:1b:1f:3b:54:ef:bd:11:07:5e:97:d7:88:1e:4d:0a:6d:
1b:37:23:12:59:f5:aa:46:a7:06:c8:db:84:2b:3c:fe:de:7f:
12:9c:30:04:ae:b7:ba:16:54:c0:fb:6d:65:14:c7:49:82:af:
30:77:48:b6:a9:56:de:b2:0c:db:a7:cb:f2:5f:2e:f7:dd:dc:
50:a1:05:bf:cf:12:3d:47:ae:39:1b:12:27:4e:bb:c9:ab:44:
fc:18:fb:ff:74:0a:7f:36:de:b0:f9:20:25:72:3c:63:62:bd:
c7:29:0e:78:31:24:b9:94:f3:63:31:e8:39:3b:06:cb:96:8a:
62:24:3c:bb:19:7b:e2:48:da:76:dd:2d:8f:42:19:28:34:d0:
f5:b0:86:b3:58:e7:52:c6:86:14:63:b4:c0:e7:e2:7e:3c:35:
0c:bc:6c:4e:7a:b6:74:5d:8a:7f:d5:3f:22:25:48:62:c4:56:
f8:dd:ee:2a:22:13:71:8c:1a:18:6a:d5:43:7a:76:e7:b0:0c:
30:ee:71:96:b8:6c:33:d6:1a:0f:eb:f4:27:0b:68:b1:ff:06:
ac:5e:74:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:18:53 2025 by rpki-client