Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
File: rmRaywIXx0oP004XpT297lbwEeU.mft (raw, json)
Hash identifier: mx8yJXs6i9EbwE/LGB2fYQtfI1D1sTKPYlVWpWAscVs=
Subject key identifier: 79:2E:F6:65:85:CE:30:3E:D4:B3:17:F7:85:69:33:7A:F2:E0:0C:D6
Authority key identifier: AE:64:5A:CB:02:17:C7:4A:0F:D3:4E:17:A5:3D:BD:EE:56:F0:11:E5
Certificate issuer: /CN=ae645acb0217c74a0fd34e17a53dbdee56f011e5
Certificate serial: 0198D73ADCD2D3174818BF1C84BB6C26B4B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
Manifest number: 1042
Signing time: Sat 23 Aug 2025 14:00:15 +0000
Manifest this update: Sat 23 Aug 2025 14:00:15 +0000
Manifest next update: Sun 24 Aug 2025 14:00:15 +0000
Files and hashes: 1: 9gPdnlu8pzrUW3Ji0sxUHZw4ZQ4.roa (hash: tZpT15jv998HP7FRsRavbx2dzEDkME8mtW6HPMKG8Zg=)
2: rmRaywIXx0oP004XpT297lbwEeU.crl (hash: WQnR0wPhrXPlvQXxA+6fZDzTGkr1fiWQQKCqk6A6GaE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3a:dc:d2:d3:17:48:18:bf:1c:84:bb:6c:26:b4:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae645acb0217c74a0fd34e17a53dbdee56f011e5
Validity
Not Before: Aug 23 14:00:15 2025 GMT
Not After : Aug 24 14:00:15 2025 GMT
Subject: CN=792ef66585ce303ed4b317f78569337af2e00cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:74:83:9d:2e:03:d8:77:d1:b5:80:06:6a:9a:
0f:49:21:df:db:e0:29:6f:12:1a:3c:d5:e9:89:08:
0b:92:7d:b2:a0:fe:26:a9:d5:85:f3:46:62:50:83:
69:c5:8a:92:30:e9:1a:59:c5:1d:95:04:ea:cd:35:
47:67:17:4c:54:ab:6e:3c:fa:b1:89:bf:34:ff:68:
57:55:9f:45:45:77:78:ef:ca:ab:62:6a:6a:d8:21:
21:99:79:dc:de:99:ff:b3:56:89:9e:e0:5d:6c:95:
56:09:23:0c:ac:ec:26:6b:61:bf:d5:f0:ec:b8:c5:
e7:1c:10:a1:af:16:bf:e6:99:a9:80:c2:7c:05:46:
ed:b0:90:9a:f0:57:9e:14:eb:8d:f3:3d:bb:3f:a4:
fc:5b:e2:2a:24:e5:7f:f5:6c:82:42:66:bb:fc:84:
91:43:bd:ab:ce:02:72:57:62:75:86:a8:a2:f0:7f:
e7:e3:27:79:6e:49:ae:b6:b2:8c:b5:dd:ec:cb:68:
03:3d:5b:a7:dd:17:46:49:77:f7:99:df:22:82:f0:
e6:d9:85:73:49:37:f1:78:7a:6d:3f:ff:59:61:a8:
78:66:d0:10:cf:1d:13:c6:fe:45:d1:82:6c:9e:f0:
77:5f:64:5a:46:94:71:5f:69:40:04:f4:c1:2d:77:
68:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2E:F6:65:85:CE:30:3E:D4:B3:17:F7:85:69:33:7A:F2:E0:0C:D6
X509v3 Authority Key Identifier:
keyid:AE:64:5A:CB:02:17:C7:4A:0F:D3:4E:17:A5:3D:BD:EE:56:F0:11:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rmRaywIXx0oP004XpT297lbwEeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/0ed33a-1f1d-4281-ab39-40890130dd18/1/rmRaywIXx0oP004XpT297lbwEeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:3f:dc:23:f0:5d:2b:fe:96:0a:df:6e:d1:0c:ee:e1:3f:63:
e9:47:54:5a:70:dd:e4:b0:67:84:78:4e:c4:84:38:45:de:b4:
74:ab:d2:8b:88:1f:4f:9b:10:d7:b1:14:27:bf:bc:81:38:67:
a3:e6:25:7e:86:47:d1:3e:2f:56:33:13:54:71:b7:98:28:d6:
12:7d:72:e7:af:82:57:ec:04:48:fc:71:50:cc:49:c7:cc:fc:
b4:30:32:68:93:9c:b6:90:db:51:93:a8:04:b5:6b:f1:3a:56:
c3:98:e0:6f:d0:74:85:96:fb:5f:19:09:8c:b8:17:c2:c2:32:
54:f8:43:6b:e3:dc:ec:b9:86:92:17:82:0d:b8:27:9d:d0:6d:
64:bf:69:98:45:3b:8b:ea:fd:91:86:34:31:83:8c:48:c7:8c:
9c:9e:d6:cd:72:83:15:eb:56:94:f2:99:7c:57:0b:36:90:65:
03:3b:c9:54:cd:22:16:1f:f2:74:5e:22:02:1b:85:09:a4:e9:
1b:6d:7d:f6:13:73:98:4e:93:2f:f5:bf:a1:a8:fc:8b:ce:dd:
06:60:36:fb:aa:f2:00:89:79:84:bd:45:c1:dc:13:34:bb:21:
40:2a:4a:03:df:59:a6:3f:56:ef:14:55:a8:af:4d:f3:e9:08:
b1:90:c5:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:23:04 2025 by rpki-client