Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
File: 4njEqqAhvti5JuNZH99QyN9rwXI.mft (raw, json)
Hash identifier: qFqSQ5sF+2dE1wlaoEkQgv8bY5RJdd5IYJ4mtl7c1nE=
Subject key identifier: 51:51:17:53:40:C4:79:D7:F9:74:73:39:71:80:92:F4:86:59:46:10
Authority key identifier: E2:78:C4:AA:A0:21:BE:D8:B9:26:E3:59:1F:DF:50:C8:DF:6B:C1:72
Certificate issuer: /CN=e278c4aaa021bed8b926e3591fdf50c8df6bc172
Certificate serial: 0198D6987F23DB103EA2C7FC5BBB777DDF27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
Manifest number: 08BF
Signing time: Sat 23 Aug 2025 11:02:54 +0000
Manifest this update: Sat 23 Aug 2025 11:02:54 +0000
Manifest next update: Sun 24 Aug 2025 11:02:54 +0000
Files and hashes: 1: 1ypxGUz02dU-GrVHnawwOGAtbp8.roa (hash: s/FzoESG6FigLmQ9qVLEYvChgXRxC5KQ8IrkGKlYCxY=)
2: 4njEqqAhvti5JuNZH99QyN9rwXI.crl (hash: LvuVIVmrObRxF7Z8wOWCombz6zhGJ1E5uwDezZmiRIE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:7f:23:db:10:3e:a2:c7:fc:5b:bb:77:7d:df:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e278c4aaa021bed8b926e3591fdf50c8df6bc172
Validity
Not Before: Aug 23 11:02:54 2025 GMT
Not After : Aug 24 11:02:54 2025 GMT
Subject: CN=5151175340c479d7f9747339718092f486594610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c5:30:87:db:cd:d8:b5:37:18:68:e5:1e:76:
38:6b:fc:ca:3e:4c:ea:96:d0:99:f5:5b:c0:ae:06:
f4:08:9b:34:3f:ff:4f:a8:e8:d6:25:a1:97:bf:fd:
40:ed:83:ab:5f:bb:50:cb:c7:73:50:ce:54:c8:e4:
a4:98:a1:41:f4:8c:fb:4d:b1:e4:95:87:dc:1e:7b:
49:cb:23:8f:08:f1:a7:e5:8f:04:7a:63:b4:91:da:
06:ff:4d:d9:46:9e:06:b4:97:9c:08:b3:81:67:59:
31:2f:84:90:da:f9:8b:44:05:29:4f:16:a7:fe:a1:
81:2f:e8:1b:25:63:7c:ab:c6:45:6b:58:52:81:2d:
17:45:1d:ac:c7:a4:b4:a5:2c:ae:eb:c0:b9:c4:99:
1f:13:8b:14:d6:01:34:b7:74:66:6d:03:30:6e:1f:
29:a9:d7:9a:ba:95:2d:29:99:47:66:a0:63:d2:c5:
ea:96:7f:fb:a9:0c:91:7a:37:01:d9:0c:54:d0:26:
a7:dd:ae:ab:f8:1f:99:aa:5e:ae:c3:29:e0:9a:35:
1e:35:e6:c9:da:f6:4e:b8:e6:c6:f7:e7:c9:2c:2c:
ff:e0:06:81:64:d9:26:0a:e6:94:0b:a2:99:42:15:
36:b2:22:59:82:d3:02:d3:56:00:1b:89:8a:21:3d:
51:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:51:17:53:40:C4:79:D7:F9:74:73:39:71:80:92:F4:86:59:46:10
X509v3 Authority Key Identifier:
keyid:E2:78:C4:AA:A0:21:BE:D8:B9:26:E3:59:1F:DF:50:C8:DF:6B:C1:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:59:2f:6c:87:87:92:34:8c:14:aa:b5:3e:e6:6d:f7:2f:e2:
30:a6:82:bc:58:a6:e0:1e:f5:f7:c6:45:c1:15:db:cc:1e:71:
41:7a:8b:97:c7:c0:37:b2:d0:15:6e:0b:cc:1e:47:58:98:eb:
99:25:e9:e0:78:15:db:b7:76:89:d1:79:75:a9:75:c7:f3:c3:
a4:56:bb:b8:11:5e:95:c4:a4:9d:68:4f:61:ac:24:f3:0f:17:
08:40:48:a2:5b:ec:a2:e8:fd:43:22:bb:38:46:09:bb:eb:d6:
c0:1e:ce:a2:86:7f:14:bc:3d:aa:3f:65:af:65:3e:03:04:2a:
8b:5c:2a:e0:f7:ba:5d:c3:69:a7:16:d9:c2:6e:e4:8d:12:54:
de:de:3c:9b:6b:5c:bb:ce:a3:f1:43:50:42:1b:48:ed:d4:d7:
4a:6a:87:a0:d2:65:01:d1:96:e1:05:e8:40:20:f1:e5:f2:98:
c3:d0:1b:7b:5b:2d:d2:e7:74:73:0c:dc:8f:4a:d4:b9:d8:2f:
b7:81:76:4c:72:22:56:2f:b6:39:38:11:3a:ca:ad:cd:d7:4d:
ca:c1:9d:ab:45:41:83:9d:f2:85:64:33:87:c1:9f:f9:fa:1e:
35:01:33:aa:50:9b:d2:d8:b4:94:a3:c6:d2:70:bb:a5:e8:09:
49:8a:dd:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:38:04 2025 by rpki-client