Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
File: rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft (raw, json)
Hash identifier: N25VuIK7h0+ZmiHHv0IQp6JRrLP7dW9Wczf8eoSCpZI=
Subject key identifier: CC:ED:4D:84:3D:22:9A:53:8B:CC:12:33:43:F8:98:C6:F8:4A:8F:C5
Authority key identifier: AD:8D:D1:7A:76:8E:3B:6F:BF:A7:A7:00:9A:70:07:EB:E6:5B:45:C8
Certificate issuer: /CN=ad8dd17a768e3b6fbfa7a7009a7007ebe65b45c8
Certificate serial: 0198D4E0A82294BCCE10770DBAD77EB3AFD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
Manifest number: 12C3
Signing time: Sat 23 Aug 2025 03:02:29 +0000
Manifest this update: Sat 23 Aug 2025 03:02:29 +0000
Manifest next update: Sun 24 Aug 2025 03:02:29 +0000
Files and hashes: 1: r6C99vK2TllFCTWcqpJRSg5MRPM.roa (hash: 3+br3Wh/zPJPiW24ubp7XOxLj4qW7AeahE4kU9GEl1U=)
2: rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl (hash: sni3rRM/8lXOeVFqD9rXZljq1wsa3n87VxOTHe4kqVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:a8:22:94:bc:ce:10:77:0d:ba:d7:7e:b3:af:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad8dd17a768e3b6fbfa7a7009a7007ebe65b45c8
Validity
Not Before: Aug 23 03:02:29 2025 GMT
Not After : Aug 24 03:02:29 2025 GMT
Subject: CN=cced4d843d229a538bcc123343f898c6f84a8fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:08:1a:12:72:cd:05:c0:3e:10:b2:22:ae:2d:
d5:b3:5d:8e:61:8b:95:a0:e9:c2:3a:0f:48:21:92:
f7:48:6b:7d:84:cb:4a:87:0f:11:40:0c:ab:8c:bd:
ac:67:b0:e5:5d:08:05:aa:c4:cf:55:6b:01:57:3e:
76:f1:55:6c:b9:49:63:d9:bc:ba:7a:bc:85:f5:c3:
82:4c:18:a4:a9:25:e2:55:b5:92:4b:1a:fa:3d:de:
59:a8:30:89:69:ee:71:a5:37:ea:6d:e3:ad:75:8e:
69:fe:b2:2a:66:3b:02:0f:c6:2e:93:fd:78:d9:d5:
17:63:1e:fb:24:57:38:98:f1:1e:45:9d:4c:c6:9b:
67:5b:85:d4:43:87:05:1d:1f:53:f2:54:f2:20:c7:
7f:ac:59:03:40:ed:07:51:b7:d9:d4:e1:b8:a2:a6:
03:48:b9:bd:6c:42:d1:f4:47:42:6f:19:d7:ee:6b:
ac:f1:ed:24:f1:e9:97:23:73:4d:62:7a:4b:1b:22:
68:19:76:3f:bf:46:fd:70:ce:5f:be:af:24:2d:d9:
bf:79:30:ee:75:2f:2a:29:08:66:40:a1:f5:ca:06:
bb:ec:c3:17:04:c6:db:18:9a:ae:1f:5e:c1:d8:bd:
08:73:38:3a:b9:ac:15:25:fe:33:af:64:55:e5:35:
41:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:ED:4D:84:3D:22:9A:53:8B:CC:12:33:43:F8:98:C6:F8:4A:8F:C5
X509v3 Authority Key Identifier:
keyid:AD:8D:D1:7A:76:8E:3B:6F:BF:A7:A7:00:9A:70:07:EB:E6:5B:45:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:4d:52:ff:ef:55:32:b6:cc:1a:c1:50:bc:a8:b8:bb:33:89:
a4:a1:ab:67:2b:b3:7b:aa:ec:88:8a:b4:9f:f3:44:86:93:84:
72:85:89:53:2c:2a:09:e7:08:e8:ef:e3:a7:fd:26:a6:eb:c1:
af:f3:d3:0a:bb:ee:61:68:40:10:1b:ae:6d:02:6d:03:27:f0:
a6:c6:4b:ae:26:7d:56:61:41:e2:d5:86:8c:cb:90:d4:28:6b:
7b:9c:0b:8e:7b:a3:a1:b3:a8:02:36:ac:a7:63:c6:c0:53:a4:
23:f0:ad:fd:52:36:47:51:6d:08:e3:d2:74:72:7b:a8:5a:cf:
df:b1:c5:54:b5:d8:5d:ce:ee:b7:4b:db:de:d8:24:f0:ee:3c:
14:e1:b6:54:a0:b6:01:34:cb:14:31:46:f4:0a:6f:a5:71:b7:
35:cf:16:91:1c:e0:47:f7:eb:85:3a:11:38:3f:54:c8:48:b5:
24:4c:65:ca:13:ed:e6:f6:0e:a4:1a:b2:ca:c2:65:08:9f:93:
73:13:6e:99:dc:3b:24:51:c5:17:9d:96:42:55:a6:f4:54:98:
0b:83:f5:99:fb:08:5b:a2:ed:e8:d0:b2:49:48:f0:1d:fe:91:
d7:64:31:e8:c2:c2:6d:dd:72:00:32:dc:72:f7:9b:1d:89:fe:
76:08:a0:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:30:46 2025 by rpki-client