Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
File: rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft (raw, json)
Hash identifier: zuTREQ9QKWoDUO1FYo6NZNnR4HKfGD8ZF+/2VXGEk1U=
Subject key identifier: 02:F6:70:98:FE:46:16:53:AA:70:76:BD:22:70:4B:13:5F:81:58:61
Authority key identifier: AD:8D:D1:7A:76:8E:3B:6F:BF:A7:A7:00:9A:70:07:EB:E6:5B:45:C8
Certificate issuer: /CN=ad8dd17a768e3b6fbfa7a7009a7007ebe65b45c8
Certificate serial: 0199FC58534A0AED7760B0E7C20E4629A853
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
Manifest number: 135C
Signing time: Sun 19 Oct 2025 12:01:10 +0000
Manifest this update: Sun 19 Oct 2025 12:01:10 +0000
Manifest next update: Mon 20 Oct 2025 12:01:10 +0000
Files and hashes: 1: r6C99vK2TllFCTWcqpJRSg5MRPM.roa (hash: 3+br3Wh/zPJPiW24ubp7XOxLj4qW7AeahE4kU9GEl1U=)
2: rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl (hash: bHUkQ1gZOtxzWkMT/LFTpVteoTfTJmjbIT58rq4uEAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:53:4a:0a:ed:77:60:b0:e7:c2:0e:46:29:a8:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad8dd17a768e3b6fbfa7a7009a7007ebe65b45c8
Validity
Not Before: Oct 19 12:01:10 2025 GMT
Not After : Oct 20 12:01:10 2025 GMT
Subject: CN=02f67098fe461653aa7076bd22704b135f815861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2d:92:d9:5b:fa:47:f5:c1:ba:93:73:26:c8:
31:b8:a8:a0:be:b6:96:4a:2f:98:33:c2:d8:c9:81:
4a:e9:70:5e:f3:7e:59:d1:34:a9:67:a9:64:0d:f5:
a7:ed:20:0d:4f:cc:19:0f:0d:f1:06:69:85:f1:b8:
e6:8c:06:87:87:f0:1e:52:2e:61:31:79:b5:dc:b1:
85:48:14:ea:ab:18:39:77:c8:65:3b:61:53:14:ac:
d1:fd:2d:8c:a7:79:11:d9:75:c7:23:0e:79:46:64:
03:b0:9c:4b:46:8b:2f:95:1f:97:04:61:22:f7:d8:
84:ca:f8:d8:17:9b:94:ad:fd:ac:85:1f:c3:cc:22:
6a:a2:94:d7:b5:9c:46:4a:51:01:4a:64:e9:7f:4e:
35:45:63:3c:68:e3:81:90:42:49:cb:3d:8e:11:29:
61:2d:50:31:0e:fb:8e:44:b9:91:d3:70:55:cf:bb:
86:8f:1a:45:50:39:f8:65:ca:60:7c:6e:2c:d1:e9:
ea:39:b0:2a:04:6c:55:69:1d:b6:35:d9:f3:46:d6:
f4:50:e6:9c:a3:17:27:eb:74:0a:3d:41:97:d6:61:
46:55:cd:09:e7:72:72:52:aa:ae:19:8c:ea:fd:eb:
bf:c5:93:56:70:cd:1b:f0:80:ac:64:9d:1f:3c:23:
cd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F6:70:98:FE:46:16:53:AA:70:76:BD:22:70:4B:13:5F:81:58:61
X509v3 Authority Key Identifier:
keyid:AD:8D:D1:7A:76:8E:3B:6F:BF:A7:A7:00:9A:70:07:EB:E6:5B:45:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:35:53:53:7a:aa:dc:ea:dc:19:cf:bb:d8:32:9d:33:21:df:
36:18:92:24:29:e3:0b:05:bf:93:df:17:19:4e:85:fd:be:db:
45:84:ed:dc:62:64:7a:6c:f3:55:ef:af:9e:58:aa:cf:31:16:
3f:2a:bf:80:a2:c1:3d:88:d8:a3:17:a5:f9:39:21:db:01:eb:
38:3b:93:b6:13:f4:fc:88:b8:00:10:8f:89:80:9f:13:62:71:
c6:61:4a:7e:4c:a0:c1:db:2a:89:59:1e:dc:c3:8c:3a:c0:2f:
30:bb:6e:b8:c1:92:96:6f:d6:43:bb:fb:fd:bb:a2:17:8c:2a:
78:3e:07:97:1f:26:c7:c6:07:32:24:20:7f:94:f1:19:ee:81:
41:bc:a3:a7:34:a6:81:9f:85:e2:73:e1:e7:5c:8f:cd:80:c1:
f9:82:12:42:39:e2:27:d4:16:e3:50:8d:29:84:86:dc:02:73:
b8:a3:93:bb:2f:75:51:ea:ea:e9:06:20:55:8e:17:ca:cc:2d:
13:ab:c1:1c:0d:11:e2:96:66:3d:36:9c:ab:03:78:41:ab:26:
03:93:e3:8b:08:b9:90:c1:1f:36:9d:55:8f:9a:87:1d:4a:98:
7a:30:67:63:9d:00:ba:af:46:18:b9:1a:e2:98:08:d8:d3:8a:
6d:c6:67:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:39:02 2025 by rpki-client