Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
File: 32GikiI62a68itgsKlZHX72XqDQ.mft (raw, json)
Hash identifier: tUdhiGIqEpdUBytxIahpD/U688TN+zXoHVjHTkBycwQ=
Subject key identifier: 0F:5F:11:1B:BA:86:89:F1:8B:A9:04:D3:E6:0A:B3:C7:64:0E:6B:E1
Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Certificate serial: 0199345B78041F5AAA4364C9E432BFCEF49C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
Manifest number: 0D29
Signing time: Wed 10 Sep 2025 16:00:33 +0000
Manifest this update: Wed 10 Sep 2025 16:00:33 +0000
Manifest next update: Thu 11 Sep 2025 16:00:33 +0000
Files and hashes: 1: 32GikiI62a68itgsKlZHX72XqDQ.crl (hash: mVLD+Doe53HZgo2b6Qan3npHzp7H4uglr/rej4lwA9Q=)
2: DmQguxgVyJ_d0tpi3KUPtRcdGUQ.roa (hash: OiuAWrEvvfbOYm4huTJvJrvDJABO3FsTpYDNXs6sb+s=)
3: aI06tjVZeZrIS1TA5LHHtgH2TfE.roa (hash: LKF1KEnQy5/5rD4HRU7tZBGEwLV0sJ0zLyAcVF0BY1c=)
4: gCOrJJaf7HO535LCuEoI7vxf65A.roa (hash: 7Nbxw9zLeIaRzeX3DJv4MIaTHvVYcSTc1CbOKxR59lQ=)
5: k6eyynVladw6I8I9j1dsAe95OA8.roa (hash: A0AAtMX//zpiq0We38ivcj7YmnJWOeaOBnQnV51DCG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:5b:78:04:1f:5a:aa:43:64:c9:e4:32:bf:ce:f4:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Validity
Not Before: Sep 10 16:00:33 2025 GMT
Not After : Sep 11 16:00:33 2025 GMT
Subject: CN=0f5f111bba8689f18ba904d3e60ab3c7640e6be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:58:97:d6:19:79:57:72:25:00:a8:d3:cf:e3:
f4:73:a4:d0:c8:96:36:05:1d:84:76:b1:ea:92:bf:
06:82:e2:e2:b8:92:ab:87:7b:b3:63:82:6e:96:e2:
fa:dc:b1:28:c0:be:61:99:d5:ff:79:bc:2d:49:4c:
4b:cd:cf:a7:5c:e8:ec:5d:45:b4:b8:f6:37:a8:23:
0d:92:b9:66:e7:17:82:66:c9:5e:57:e6:39:8f:c3:
05:0f:69:1b:ee:41:8b:6e:e6:97:25:2f:23:1c:b5:
c9:a8:a3:83:e8:f9:71:65:1f:53:f8:6b:19:01:1e:
30:24:3e:f5:df:59:73:fe:db:d7:3b:e6:37:71:8b:
68:b9:70:e9:2f:10:b2:ee:1f:e1:b3:42:4c:43:38:
77:ae:34:e2:89:47:16:6d:be:12:fd:ae:46:96:e3:
a7:04:36:f1:88:8e:76:dd:e6:e5:0d:76:ef:46:4c:
21:c2:4c:16:00:9d:59:10:57:fb:50:34:62:c8:77:
97:2d:8b:a1:f1:47:f8:14:00:0f:78:1e:b0:14:a2:
91:99:b0:53:0f:03:ae:f2:7a:3f:f1:55:b9:4b:c7:
71:38:31:1f:f6:68:f6:37:d4:42:15:18:42:a8:c0:
ec:91:8f:2d:ad:b1:03:a1:ba:28:f8:52:9c:82:0f:
f8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5F:11:1B:BA:86:89:F1:8B:A9:04:D3:E6:0A:B3:C7:64:0E:6B:E1
X509v3 Authority Key Identifier:
keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:19:39:4a:78:96:21:d2:b2:35:04:06:8b:f5:08:68:55:15:
57:de:4c:e5:1a:9a:b6:30:dd:03:45:6f:7d:eb:b2:56:d7:4d:
45:66:11:b8:fd:3c:a0:83:f9:b4:59:62:9d:fb:9e:4b:10:8a:
81:f9:e4:f1:0f:c7:f1:8a:df:d5:12:aa:f5:92:b7:9b:4b:04:
a4:ed:43:53:ac:7d:25:99:36:7f:1e:44:ba:0c:37:08:2e:32:
a3:d0:83:47:f8:47:1c:3d:ee:e1:d7:34:57:ee:e3:15:5c:7c:
da:e4:0b:0e:d5:a9:28:32:cb:b8:20:70:60:3e:20:a3:b2:b5:
28:bb:45:c5:a1:da:9b:ec:3e:63:26:1b:d1:d9:61:76:78:87:
90:a3:bd:6b:02:fa:54:32:18:88:77:48:61:d2:a2:16:05:8b:
db:37:7a:9f:17:78:c1:97:4b:01:84:cf:cc:49:0a:6a:db:be:
89:01:ec:0f:0a:ad:07:23:a1:2d:e6:13:84:6d:5f:40:01:c7:
c7:e5:3c:e0:93:54:d8:19:dc:13:08:12:46:1d:6c:cb:47:a9:
e3:93:2b:ee:59:4b:b0:87:98:c7:99:92:18:b7:68:ce:de:d5:
e7:db:e9:af:53:ac:ad:ba:a3:89:6f:7e:1e:21:77:f3:0b:98:
2a:aa:56:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 19:22:23 2025 by rpki-client