Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
File: ss0DX6sYpLeCYURWP2DniYpO8PE.mft (raw, json)
Hash identifier: 5c8kwT6ZgjWIofkUD/aSlmRVfaPy/BVbd0ZeNc2TXFU=
Subject key identifier: 24:16:51:B6:D2:16:3D:50:2E:69:55:91:C8:E7:32:51:E2:A2:39:D8
Authority key identifier: B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
Certificate issuer: /CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Certificate serial: 0198D583A4C4AFA509DD4340AF7DB99C3C01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
Manifest number: 1166
Signing time: Sat 23 Aug 2025 06:00:31 +0000
Manifest this update: Sat 23 Aug 2025 06:00:31 +0000
Manifest next update: Sun 24 Aug 2025 06:00:31 +0000
Files and hashes: 1: 8ioI1P3WjfVGZeocJzXjV25zEAM.roa (hash: R5/GZ5yigab2BnvLmrfCDXR0klk9Au0FN2fkvOAY+V4=)
2: ss0DX6sYpLeCYURWP2DniYpO8PE.crl (hash: hOozUKl/RjrwXPxo4rGoUOyEO6JU8BqK+EXhm40ANzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:a4:c4:af:a5:09:dd:43:40:af:7d:b9:9c:3c:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Validity
Not Before: Aug 23 06:00:31 2025 GMT
Not After : Aug 24 06:00:31 2025 GMT
Subject: CN=241651b6d2163d502e695591c8e73251e2a239d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:de:63:d1:82:40:da:69:b4:03:e5:16:d8:d8:
f4:2f:a4:7b:32:1e:42:84:99:d4:83:c2:01:31:b6:
0a:71:ce:12:3d:09:bc:27:53:26:2a:85:03:bc:e6:
e1:92:51:f1:2e:61:29:cd:db:a1:ce:9e:e0:d8:a7:
e1:b4:e9:c1:06:b1:7d:73:3d:c0:c7:a1:6a:08:3f:
b3:14:33:de:38:ff:13:8f:b1:bf:64:0a:0d:29:c0:
73:0d:12:7c:53:2e:19:44:e1:f9:b6:1e:25:f1:d5:
2f:9d:a2:45:e4:bc:02:10:7d:7d:f2:7e:4c:1a:a5:
bf:b6:d7:62:6f:b9:80:a2:d0:c6:9a:d6:b1:bd:56:
4c:2e:93:ba:85:a1:7b:c0:02:53:8a:a2:9a:91:f9:
8e:6c:83:12:29:bc:5d:24:21:30:fe:4d:30:21:7a:
5a:46:48:a9:e0:04:ca:15:b5:68:44:90:19:77:3b:
fb:83:6e:ec:6b:a4:56:7d:97:c4:1f:f2:23:8a:de:
27:a7:c5:69:e9:4a:f1:4a:39:fc:f1:5d:1a:98:ce:
73:6c:e6:f1:eb:da:0d:e6:0d:d4:52:a6:a9:7d:a8:
c6:85:06:cb:a0:d8:a6:fe:4e:e7:8d:21:34:b3:ac:
09:32:24:c2:27:61:5e:d8:62:7e:ca:f3:1b:0e:b5:
77:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:16:51:B6:D2:16:3D:50:2E:69:55:91:C8:E7:32:51:E2:A2:39:D8
X509v3 Authority Key Identifier:
keyid:B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:b4:94:38:64:be:5b:eb:b0:eb:36:ac:10:98:8c:fb:5a:b6:
5f:69:69:f2:2c:b7:05:a3:4c:a7:0d:46:b1:d8:2c:e6:3c:90:
39:56:0c:ae:70:4f:7b:d2:13:3f:a7:09:c5:7e:04:1f:ab:d6:
85:6f:42:1a:49:d3:a5:49:bb:be:7f:ca:14:75:b1:a3:97:d2:
13:d1:74:a5:99:7a:5e:b3:14:d7:6c:66:b9:65:7d:45:25:ca:
53:ae:30:a3:36:f1:2a:0f:8c:42:f9:dd:43:23:17:ba:f7:31:
f1:15:f6:0c:09:44:5f:cd:fa:1a:3f:0e:e5:20:4a:46:88:4f:
59:e7:9d:e9:58:95:a3:44:58:70:55:5d:6e:25:c0:52:ad:1c:
b4:23:b4:a6:13:0b:c1:c9:1e:57:31:f8:49:71:a9:29:fa:36:
54:90:ad:40:80:61:e8:1f:cd:d7:3e:ba:d7:16:d6:53:7a:d6:
48:b2:e9:39:45:7b:ab:24:e1:af:42:4d:a3:53:a1:f9:9b:7e:
36:3b:d6:95:f0:35:c4:77:12:53:cd:07:af:fa:4a:7c:f8:04:
ad:4b:25:e5:82:f3:22:02:7a:73:b1:14:3b:91:1e:c4:cf:b0:
e6:c6:34:79:a9:6c:25:f1:87:b7:b2:38:bb:e2:a8:2c:49:62:
84:bf:2b:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:46:03 2025 by rpki-client