Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
File: FoYA36ydPRp15mMNaXEC8vITLEg.mft (raw, json)
Hash identifier: /jtHtjh4pfC6tTb16PI0H31jSNzWiwvBXVz5AUdtW9E=
Subject key identifier: 89:57:A3:E0:A5:46:68:CB:97:BF:36:5A:E9:43:E2:01:66:39:9C:AC
Authority key identifier: 16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
Certificate issuer: /CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Certificate serial: 0198D583C01981F6CC0829366B060EF0864C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
Manifest number: 1656
Signing time: Sat 23 Aug 2025 06:00:38 +0000
Manifest this update: Sat 23 Aug 2025 06:00:38 +0000
Manifest next update: Sun 24 Aug 2025 06:00:38 +0000
Files and hashes: 1: FoYA36ydPRp15mMNaXEC8vITLEg.crl (hash: aW/yR9/iZdkF6NuGO5CDrHnuOjczr3XloorquaDw5kw=)
2: UUcKOryc_ykhvD7v1VUPE00sScs.roa (hash: dAexA2neb3HcfI1bNYdykFIadotQ4NdMRRVIE6QTBe4=)
3: q7sVZrLDAVZQekWMRkAvaSDSl9g.roa (hash: RRTQ5jExs41DvyGCsYtTzal7l6KRuDTnah7ylDN5VEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:c0:19:81:f6:cc:08:29:36:6b:06:0e:f0:86:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Validity
Not Before: Aug 23 06:00:38 2025 GMT
Not After : Aug 24 06:00:38 2025 GMT
Subject: CN=8957a3e0a54668cb97bf365ae943e20166399cac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:63:8a:2f:91:d6:86:7f:d9:79:e7:d6:8a:c2:
08:3e:13:64:35:78:1e:e8:d4:2c:1f:e3:fb:f9:1b:
d6:18:69:83:aa:fe:d0:e5:be:32:3f:34:ca:96:6d:
b9:85:0a:9b:ee:ba:07:4f:e1:fa:1a:43:cb:3e:71:
7c:d1:c5:4d:bb:9e:4d:d1:38:24:8e:d8:87:81:e9:
b0:bd:8a:27:8a:df:46:46:ef:98:09:4e:9c:a7:ea:
b8:35:42:8d:2b:4e:1d:8c:e9:5a:3b:f1:57:ea:c9:
cd:5e:ca:23:4f:0d:d5:71:50:ef:89:c6:be:b0:0e:
33:4e:5a:27:c5:a3:4d:37:e4:d7:f7:09:7e:ab:fe:
a9:4e:09:c7:cc:0e:b0:65:41:0a:55:7b:9a:96:22:
bc:c0:91:8e:c6:4e:ec:2a:2b:ed:1e:43:87:6a:37:
5b:ae:81:21:88:a1:5d:31:f7:58:0b:7a:78:6e:5b:
32:33:85:c9:97:a4:3c:e1:79:b3:2e:c1:7e:17:95:
b9:31:23:ac:9f:c4:f6:fd:b8:4b:36:fd:90:c2:e7:
34:d5:93:9a:84:86:fb:f0:d1:49:0b:73:3b:fa:c2:
cc:3b:96:c1:aa:67:22:31:f2:4a:8b:eb:30:a2:c8:
a0:14:0c:bd:27:09:92:f9:17:7f:48:64:98:fb:85:
0a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:57:A3:E0:A5:46:68:CB:97:BF:36:5A:E9:43:E2:01:66:39:9C:AC
X509v3 Authority Key Identifier:
keyid:16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:b3:0f:5f:16:aa:35:5c:49:6e:4b:6b:72:fd:ba:99:f8:3c:
54:e6:63:82:d5:d3:36:01:8b:83:5c:07:cb:04:9a:df:2f:9d:
28:d2:2f:7e:f6:3c:54:64:f6:08:9f:56:6f:86:7f:86:33:e1:
89:60:79:27:3e:4f:94:de:9a:1a:35:a0:31:52:7e:e0:ff:d8:
85:ee:66:1c:04:54:5f:6c:e7:1c:02:a5:39:02:23:79:2f:75:
e8:12:f0:eb:48:e6:db:c4:16:ba:f6:fc:49:cc:cf:aa:0f:f1:
81:ad:77:5a:d7:2a:3e:88:b3:48:28:f8:38:76:8e:9b:b2:e4:
ef:72:d5:8f:ca:d5:03:f6:08:50:34:8b:40:1b:53:6c:74:66:
48:9c:db:48:a3:6f:6f:7e:4c:82:b4:49:39:c5:e2:60:11:b7:
d1:e2:cc:42:34:ad:26:6b:9b:e4:0d:2e:6c:56:90:4f:c0:e2:
6a:40:3f:d7:af:40:4a:2e:b3:14:cc:89:a1:93:07:5b:18:11:
fd:ed:87:2d:fe:4f:df:77:6e:5e:3d:6f:2c:a3:a4:df:64:7a:
02:ce:09:a6:a9:cf:3f:83:61:e9:d8:74:5e:74:6c:84:98:40:
d6:3d:e5:05:61:44:27:71:f6:fb:d7:2c:d5:c5:d6:9e:a5:9d:
39:8a:e2:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:34 2025 by rpki-client