Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/d74ca2-3de6-4b69-a000-94d1b89f8cb2/1/sSZ6Uay2bymRvqUkP-OIBolxofE.mft
File: sSZ6Uay2bymRvqUkP-OIBolxofE.mft (raw, json)
Hash identifier: FXedc40HNL//sxsa6k7iSCIeoGWjPQl3l/NXyYWC80w=
Subject key identifier: C5:BD:01:67:A9:1C:59:85:B6:15:34:D2:A6:24:7C:A0:C8:D3:B7:F7
Authority key identifier: B1:26:7A:51:AC:B6:6F:29:91:BE:A5:24:3F:E3:88:06:89:71:A1:F1
Certificate issuer: /CN=b1267a51acb66f2991bea5243fe388068971a1f1
Certificate serial: 0198D5F12DD2BD5431296DEE283BC2B44740
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sSZ6Uay2bymRvqUkP-OIBolxofE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/d74ca2-3de6-4b69-a000-94d1b89f8cb2/1/sSZ6Uay2bymRvqUkP-OIBolxofE.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 08:00:09 +0000
Manifest this update: Sat 23 Aug 2025 08:00:09 +0000
Manifest next update: Sun 24 Aug 2025 08:00:09 +0000
Files and hashes: 1: CU0pD-qyopGrF2gG1g9vsUEj3PE.roa (hash: 0vq62FNq9PmPpi5DYpzPDW7Ij6TgGimr0Wq2pd7Z3Os=)
2: gZlK2vLMIEAsCjAAFdQhYLnTPqM.roa (hash: WQBwiiapFDfFPPCFOl6dNQz1snBkSmuwItWrJm6xS+g=)
3: oN43Af3b5AUnZssPm_n6hLFi2tU.roa (hash: ksuYYn56dP6i2MLGJOyfU6TSEiG7UEw5Pb7P8oWoHfM=)
4: sSZ6Uay2bymRvqUkP-OIBolxofE.crl (hash: /SBN3OCr7tqBoA4xft9cqmw7aoPyMg11nFxhZmuaRZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/d74ca2-3de6-4b69-a000-94d1b89f8cb2/1/sSZ6Uay2bymRvqUkP-OIBolxofE.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/d74ca2-3de6-4b69-a000-94d1b89f8cb2/1/sSZ6Uay2bymRvqUkP-OIBolxofE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sSZ6Uay2bymRvqUkP-OIBolxofE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:2d:d2:bd:54:31:29:6d:ee:28:3b:c2:b4:47:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1267a51acb66f2991bea5243fe388068971a1f1
Validity
Not Before: Aug 23 08:00:09 2025 GMT
Not After : Aug 24 08:00:09 2025 GMT
Subject: CN=c5bd0167a91c5985b61534d2a6247ca0c8d3b7f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:61:e0:1d:b7:bb:3b:7a:2e:d0:a9:fc:67:67:
f2:15:09:76:98:4c:c9:c0:b9:e1:97:17:00:24:13:
9a:cf:0a:b9:24:32:23:4f:04:31:f6:52:97:ba:fd:
84:d1:94:ee:df:c6:25:9f:ba:a8:d0:af:98:d7:6f:
17:54:33:c6:6b:ac:73:c5:36:b5:b6:0f:e9:a1:e6:
d4:ee:a9:6d:69:81:3b:ad:ce:eb:64:cb:00:dd:71:
56:22:3d:0a:60:e8:42:8e:3e:5f:11:2f:71:28:f7:
85:91:50:17:8c:25:b5:6c:3c:89:27:fe:a9:e6:89:
0b:31:98:50:97:57:8d:b7:54:0a:d9:50:d0:de:d0:
63:49:a9:29:cf:92:46:57:ea:31:a7:07:14:5c:04:
fe:0a:21:2d:6c:a9:a9:38:28:6a:ad:87:ea:d9:66:
42:e2:cb:8c:03:86:5a:9f:a6:37:7f:aa:d5:19:da:
2e:36:7c:7b:fa:80:9d:b9:89:a1:87:bc:b9:22:1d:
44:6f:34:c6:d0:33:af:7c:42:83:66:64:2e:ed:4e:
8a:cd:a0:e9:b0:ec:36:ee:56:4f:f6:bc:27:03:1f:
57:c3:b1:f7:86:9f:33:3d:dd:b1:15:a9:1a:bf:1d:
dc:d8:99:f9:1a:13:a6:b5:4f:eb:77:e2:bf:1b:ef:
40:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:BD:01:67:A9:1C:59:85:B6:15:34:D2:A6:24:7C:A0:C8:D3:B7:F7
X509v3 Authority Key Identifier:
keyid:B1:26:7A:51:AC:B6:6F:29:91:BE:A5:24:3F:E3:88:06:89:71:A1:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sSZ6Uay2bymRvqUkP-OIBolxofE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d74ca2-3de6-4b69-a000-94d1b89f8cb2/1/sSZ6Uay2bymRvqUkP-OIBolxofE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d74ca2-3de6-4b69-a000-94d1b89f8cb2/1/sSZ6Uay2bymRvqUkP-OIBolxofE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:4e:a1:41:38:37:c7:84:6e:f4:7f:75:a6:59:96:31:ba:37:
36:6d:98:f7:c9:b4:57:c3:64:3f:9a:83:fd:ea:0a:3b:6e:ab:
7f:9b:8d:a4:81:bf:78:0e:bc:1b:01:0c:7a:1e:a9:72:6e:b3:
ee:34:bd:7a:f7:bb:d2:8a:53:b7:35:fa:d8:b1:e6:98:3f:42:
be:ec:5c:7b:8b:07:31:64:79:aa:cf:9f:d3:f2:54:b1:1e:99:
58:fb:30:e3:27:4b:55:a2:85:e0:8a:34:bf:cd:a5:3c:41:dd:
72:33:ac:af:1b:5c:7c:a7:03:ac:33:c3:f7:85:f6:b8:92:c5:
92:33:9f:6e:b5:13:9b:f1:02:4d:c1:cc:e2:1c:f1:a1:05:3e:
b0:74:4f:8e:1c:6e:8c:55:cc:86:ba:ae:74:89:fb:de:77:69:
94:3b:ac:be:c2:44:43:e1:be:c2:81:9f:91:86:dc:5c:f8:6a:
74:b2:f6:ae:f2:e7:46:8b:df:8a:50:fb:44:43:08:14:30:c4:
04:b4:b3:29:1f:e7:93:4e:52:ba:a6:0d:5d:f7:8c:bc:a7:46:
55:c2:5b:77:e8:f1:41:1a:3d:ff:d6:10:5f:67:76:dc:31:2e:
85:81:a4:9e:2f:45:4b:d8:ca:56:ba:81:91:aa:b0:26:62:d0:
75:2c:48:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:27:01 2025 by rpki-client