Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
File: tDpxymDXTkXSuXSKsQZlKf0BM34.mft (raw, json)
Hash identifier: v8hFMFhGOmc5FRQRqRr4ySayv2Wy3V1LP4tPNNRX7dc=
Subject key identifier: 7D:36:76:41:60:29:11:C9:A4:EA:4D:45:8D:F0:67:8A:C5:56:D9:84
Authority key identifier: B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
Certificate issuer: /CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Certificate serial: 019921B1E9B370AEB35137BF4A6821E79E7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 01:02:11 +0000
Manifest this update: Sun 07 Sep 2025 01:02:11 +0000
Manifest next update: Mon 08 Sep 2025 01:02:11 +0000
Files and hashes: 1: M5_-d1GdbRA2RUGO5npOtRSNEB8.roa (hash: DYZ2j8UdvivRy1b6Q4G0ZdvY6U48+tpNnHP/gql8rCo=)
2: tDpxymDXTkXSuXSKsQZlKf0BM34.crl (hash: PDbf2pvkAM3HBYVaZzOuDXpL8dNWL8ym6eqTSleB4dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:e9:b3:70:ae:b3:51:37:bf:4a:68:21:e7:9e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Validity
Not Before: Sep 7 01:02:11 2025 GMT
Not After : Sep 8 01:02:11 2025 GMT
Subject: CN=7d367641602911c9a4ea4d458df0678ac556d984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:83:e4:ef:f4:4e:1e:18:0f:53:f3:e8:9f:7c:
fd:06:b4:e8:b2:71:b0:10:04:50:c7:f6:b3:57:35:
96:29:cf:3e:f6:f6:c4:4e:ab:80:d7:9a:1e:07:1e:
45:0f:1a:b0:61:5b:8d:68:ef:c6:cf:7c:8e:d1:c5:
10:ed:f5:84:e7:2a:e7:ea:e3:a3:ce:17:64:bb:2c:
9a:20:46:8a:12:e7:fb:6d:9f:f0:75:9f:df:86:33:
16:5d:e3:7d:c3:88:b7:ec:51:97:ee:85:7b:dc:43:
8b:22:fc:2c:91:c6:72:50:4e:b0:af:37:cc:ad:ec:
8d:6f:39:2b:fb:22:10:7f:4d:80:34:7b:36:f6:22:
6e:73:39:80:7e:4a:26:17:dc:bc:2f:72:84:26:b4:
17:54:ef:0c:61:a4:97:3a:41:f8:2a:fc:2a:49:53:
d3:84:f8:82:f9:e5:4a:91:4a:23:45:c3:3f:e0:3d:
44:8e:2b:43:8f:33:2a:a7:df:54:79:b1:2c:09:34:
64:8c:9f:11:13:77:72:f9:43:f9:67:c0:62:3b:0c:
91:35:80:c8:e9:77:c5:dc:e4:fd:85:59:df:5d:62:
2b:3a:f4:57:5e:10:50:1d:31:33:03:43:f3:03:65:
9e:59:35:4e:e9:07:1d:e8:bc:4c:e7:e2:87:2d:05:
4d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:36:76:41:60:29:11:C9:A4:EA:4D:45:8D:F0:67:8A:C5:56:D9:84
X509v3 Authority Key Identifier:
keyid:B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:49:0a:6e:24:08:8c:d6:48:a6:40:da:e9:f5:e5:3c:ea:46:
66:cb:9b:91:ac:ff:71:b3:75:94:a9:e2:be:d8:07:7e:37:ee:
d0:85:8e:b9:65:de:7a:ad:7b:ee:dd:ab:96:b5:27:15:ff:f2:
eb:ad:e7:91:38:89:f7:5a:ed:6d:37:35:d9:62:89:f5:17:3c:
09:71:1a:65:a1:f1:7e:12:24:b1:1a:4d:62:fc:26:25:32:ea:
55:bc:ac:2c:2e:a7:ec:36:3b:87:ef:18:bb:e2:ee:7a:41:ea:
22:81:ee:6e:37:26:92:ff:82:1b:68:78:ef:61:ba:d5:8c:f5:
87:5a:a2:88:97:d7:53:f5:ad:30:7d:f3:8c:15:0c:92:1f:4f:
2b:a0:ee:65:6e:5c:c5:7f:5b:cf:be:5a:0f:54:b2:3f:cd:60:
56:e8:f2:8e:bd:3a:3a:d4:8c:7b:3d:c6:c4:ad:98:bc:f6:93:
12:22:1c:9f:1d:fe:8e:b4:07:c9:50:0c:27:b5:8a:3d:94:d4:
43:6c:3b:5b:b1:89:d9:39:ab:63:9d:3b:e2:81:58:5a:29:41:
f4:93:8c:c7:61:06:2d:27:35:5c:4a:32:49:ef:a0:58:63:4f:
14:ff:47:99:83:26:7d:4a:9a:da:f6:04:b8:dc:7c:e1:f6:56:
99:bc:73:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:53:05 2025 by rpki-client