Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
File: Da7a5Z2cmvUe9UivsMlkOM73IRw.mft (raw, json)
Hash identifier: 6I6hPTYLBbP6kOuhhANjo9wiCEsEmf4Pvuc/yKzJjsQ=
Subject key identifier: B9:B3:61:B0:A0:93:82:49:CF:0C:1F:E1:42:86:DE:DF:0F:71:0A:03
Authority key identifier: 0D:AE:DA:E5:9D:9C:9A:F5:1E:F5:48:AF:B0:C9:64:38:CE:F7:21:1C
Certificate issuer: /CN=0daedae59d9c9af51ef548afb0c96438cef7211c
Certificate serial: 01992255AA26ED58F9A62B3DCE3CC5A77669
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Da7a5Z2cmvUe9UivsMlkOM73IRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
Manifest number: 166E
Signing time: Sun 07 Sep 2025 04:01:03 +0000
Manifest this update: Sun 07 Sep 2025 04:01:03 +0000
Manifest next update: Mon 08 Sep 2025 04:01:03 +0000
Files and hashes: 1: Da7a5Z2cmvUe9UivsMlkOM73IRw.crl (hash: ON2DjwBF9zz4f7xQqRfb/VM2BtoAKzvpt+nahh5dbqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Da7a5Z2cmvUe9UivsMlkOM73IRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:aa:26:ed:58:f9:a6:2b:3d:ce:3c:c5:a7:76:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0daedae59d9c9af51ef548afb0c96438cef7211c
Validity
Not Before: Sep 7 04:01:03 2025 GMT
Not After : Sep 8 04:01:03 2025 GMT
Subject: CN=b9b361b0a0938249cf0c1fe14286dedf0f710a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bd:1e:4c:36:89:a0:d8:f0:ee:ad:d8:04:7a:
82:4d:3e:6f:fb:41:c9:70:6c:d1:33:ec:7c:45:7e:
6a:75:75:01:d5:ea:53:e1:47:a4:4e:44:43:ba:09:
62:6b:1b:1c:9c:92:62:36:5a:98:fe:ea:83:cb:aa:
25:24:23:3b:4c:09:3c:fb:83:97:64:a8:3b:42:ab:
1d:51:b2:ab:86:1e:a3:4a:d6:1c:8f:a9:bd:cc:17:
bf:da:50:8e:9e:00:b4:93:36:43:d3:e3:c2:83:23:
e4:28:3f:21:4f:4a:52:46:44:21:51:16:ec:ae:55:
6b:6b:90:e2:e1:3e:59:52:4a:ff:a8:a1:72:be:a8:
cb:5e:ff:dc:6d:07:a5:ca:ad:15:22:2f:79:4c:64:
df:d8:73:61:3c:88:59:a8:6f:df:d5:7d:e8:4e:54:
2c:0f:c6:28:56:fd:0c:2d:77:3e:db:33:3d:a3:c1:
b1:86:bb:8b:f9:53:e7:8f:8f:2d:e2:06:fc:a9:b9:
9c:6a:f3:67:30:bb:e4:c2:cf:dd:f3:d5:5c:fa:35:
cb:23:ae:68:2b:31:bc:a5:7e:cc:83:cd:27:4e:0f:
e8:4d:ef:05:23:48:2c:7f:59:61:ad:7d:1c:2c:93:
77:51:00:5c:df:b4:cb:ca:2e:04:b8:5d:74:bb:30:
7f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B3:61:B0:A0:93:82:49:CF:0C:1F:E1:42:86:DE:DF:0F:71:0A:03
X509v3 Authority Key Identifier:
keyid:0D:AE:DA:E5:9D:9C:9A:F5:1E:F5:48:AF:B0:C9:64:38:CE:F7:21:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Da7a5Z2cmvUe9UivsMlkOM73IRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:d1:f9:51:17:4e:a7:17:b4:4b:f5:18:9c:82:94:5d:37:48:
dd:be:24:2b:84:3d:3c:3e:fe:02:8a:2e:bf:ef:9f:f0:2b:62:
28:e5:8d:25:5a:a1:6e:ff:09:78:d2:40:2e:41:54:a4:ca:b1:
aa:4c:0d:2f:00:88:8f:ce:d0:84:02:69:4c:9a:f6:23:87:eb:
2e:3c:4d:94:c8:9d:b3:71:5b:26:e4:4b:20:39:63:11:3e:10:
8a:81:06:3c:6b:3e:14:17:69:bb:fd:41:38:35:4b:aa:16:c4:
69:f1:b5:92:3a:02:8b:1a:ff:06:a1:9e:78:b6:f9:4e:50:44:
aa:e8:4f:9b:02:40:9d:40:ca:5e:24:08:12:e7:8f:0f:4f:8f:
70:0b:f9:71:9c:2e:73:23:4b:3f:15:b6:68:59:82:dd:42:e4:
04:a0:68:52:36:f1:e0:99:ac:65:68:a1:01:8a:b7:80:ce:9f:
2f:8e:83:fd:f4:1b:79:38:ae:07:ac:f6:f2:c3:b5:88:96:0e:
f6:08:73:96:5a:a4:54:c2:c2:2e:87:b6:58:a8:f9:e0:45:e6:
06:2f:e0:cb:ed:83:fe:8e:8c:38:54:c3:57:b1:30:c2:49:ce:
d6:b1:25:2a:a1:04:f1:c0:32:62:72:76:72:a3:c0:1c:d8:ce:
17:c7:38:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:16:16 2025 by rpki-client