Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.mft
File: 2afNm3hyoceqJis_rRqQdlAlKDI.mft (raw, json)
Hash identifier: qtgjyzWa2AlN09Ymul1hfiIYaJ73iXxMm/6urCIFuiY=
Subject key identifier: 0F:95:68:08:F8:87:76:48:21:77:43:B2:57:24:0C:DA:F8:AA:83:C4
Authority key identifier: D9:A7:CD:9B:78:72:A1:C7:AA:26:2B:3F:AD:1A:90:76:50:25:28:32
Certificate issuer: /CN=d9a7cd9b7872a1c7aa262b3fad1a907650252832
Certificate serial: 0198D5160920B5E68647D34D6E36F41A6372
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2afNm3hyoceqJis_rRqQdlAlKDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.mft
Manifest number: 046F
Signing time: Sat 23 Aug 2025 04:00:47 +0000
Manifest this update: Sat 23 Aug 2025 04:00:47 +0000
Manifest next update: Sun 24 Aug 2025 04:00:47 +0000
Files and hashes: 1: 2afNm3hyoceqJis_rRqQdlAlKDI.crl (hash: GcA+MX5yYGGWLZbHCVU3ilJO0gwlz5e6ugRobahtbqc=)
2: 8xRb-DPzCzHiHinhBGSiJKFCfq0.roa (hash: A9plqAZ6tW823XWa6YGs85LIMKZtOqJdz/q0S+8zYRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2afNm3hyoceqJis_rRqQdlAlKDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:09:20:b5:e6:86:47:d3:4d:6e:36:f4:1a:63:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9a7cd9b7872a1c7aa262b3fad1a907650252832
Validity
Not Before: Aug 23 04:00:47 2025 GMT
Not After : Aug 24 04:00:47 2025 GMT
Subject: CN=0f956808f8877648217743b257240cdaf8aa83c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:da:6b:64:51:43:e9:cc:29:ee:41:28:7e:95:
84:c6:b2:55:e1:6b:61:56:6d:83:eb:28:ec:a9:85:
a6:f2:8a:3d:d7:83:71:c0:92:c2:83:bf:b6:5e:c2:
e4:62:60:e7:c6:eb:f7:51:c4:78:b5:cd:db:5b:f4:
61:5f:9a:12:44:5d:a4:b5:45:56:5a:ca:26:79:53:
eb:7c:9d:c7:34:6f:b5:3a:5e:5d:7c:dd:6e:0a:fb:
da:4b:63:dc:ab:ce:1d:30:aa:94:3e:92:b2:d5:dc:
eb:78:35:9c:e3:85:c0:a7:aa:0a:bc:4e:01:78:33:
8d:4f:43:63:68:f9:c6:4e:99:f9:1e:19:6d:a4:71:
ef:5f:64:9f:9e:ed:7f:2d:ee:72:49:43:e9:61:8b:
83:e4:e9:bf:73:87:65:f6:84:e8:11:10:38:35:b9:
92:35:7e:c2:c7:c3:6d:61:5d:39:2b:69:e2:78:2b:
18:70:42:2f:dd:24:c2:91:2a:da:37:d0:8d:28:6a:
e7:83:be:e0:a8:b8:a1:f5:df:8e:9e:14:68:bd:99:
ad:68:e4:7d:63:84:f8:f9:c3:06:4d:c9:db:21:37:
c8:3d:cc:41:64:b6:9f:04:c3:af:98:61:8e:e0:5a:
31:d1:98:e6:18:7f:47:09:27:df:24:ce:aa:e1:4b:
81:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:95:68:08:F8:87:76:48:21:77:43:B2:57:24:0C:DA:F8:AA:83:C4
X509v3 Authority Key Identifier:
keyid:D9:A7:CD:9B:78:72:A1:C7:AA:26:2B:3F:AD:1A:90:76:50:25:28:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2afNm3hyoceqJis_rRqQdlAlKDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:96:dc:75:d0:29:d9:9e:7d:2a:ca:9c:67:85:88:5c:e4:1b:
7c:60:22:4b:42:14:10:a1:c7:23:db:e4:32:f8:35:ac:4e:1d:
9a:6e:01:93:37:47:7f:7a:ef:59:87:8a:10:e2:46:9b:68:1e:
c0:d0:04:67:bf:3f:8d:14:33:de:6e:d6:07:9b:8a:35:3a:20:
5d:f3:70:84:74:5e:42:24:9f:30:45:6e:cc:f2:7a:55:c4:c8:
f7:6f:c1:1e:58:22:fe:50:e8:c3:2b:98:d1:98:8b:4a:af:4f:
1f:41:2d:31:96:cc:73:69:ee:98:6c:a0:0d:b0:43:dc:1a:4c:
cd:b2:94:c8:4c:31:d0:d0:31:33:be:8f:8a:e0:96:96:25:f1:
40:a0:13:3e:3c:ab:e3:64:1e:44:50:38:c4:f5:60:bc:82:9a:
1e:64:e0:bd:57:be:f6:3a:7a:a9:38:b5:a5:d3:78:24:5c:51:
3b:1a:2f:c3:ba:f6:1c:54:69:45:1d:55:3b:8c:c4:44:d0:2b:
99:ae:6c:ac:c2:23:12:89:bb:4f:79:40:c6:b7:80:19:c2:7a:
e0:ac:67:34:9f:c6:22:a2:41:d6:36:e9:a6:ee:37:e8:04:dc:
ca:64:99:fe:ff:15:e6:2d:e9:63:b6:f8:0e:9a:61:95:58:0f:
08:18:e7:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:27:49 2025 by rpki-client