Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
File: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft (raw, json)
Hash identifier: KhFlXKBYQnoWjZUythpRfgQXXyKeWgUHW06S1CLUGng=
Subject key identifier: 85:8D:1B:FB:7E:2A:70:A8:CC:44:F8:CC:29:42:78:BA:A9:73:50:87
Authority key identifier: 97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
Certificate issuer: /CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Certificate serial: 0198D5836DA16FD1BA4C658948F617897B33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
Manifest number: 1044
Signing time: Sat 23 Aug 2025 06:00:16 +0000
Manifest this update: Sat 23 Aug 2025 06:00:16 +0000
Manifest next update: Sun 24 Aug 2025 06:00:16 +0000
Files and hashes: 1: 8lcVMAvDHKFVWpkIvW003vZxmno.roa (hash: b9AoL9a4Iwp34m1O6gUmOqwjFvFHDHYDPCqNWBeuTCY=)
2: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl (hash: YhaTK/BX3sn6S7vdjmVTGjBlXmscLSIstjxG0NOZAgk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:6d:a1:6f:d1:ba:4c:65:89:48:f6:17:89:7b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Validity
Not Before: Aug 23 06:00:16 2025 GMT
Not After : Aug 24 06:00:16 2025 GMT
Subject: CN=858d1bfb7e2a70a8cc44f8cc294278baa9735087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:9d:ff:ff:9f:d8:80:0e:00:6d:37:96:11:0c:
93:b3:a9:eb:fd:35:26:14:b9:a6:8f:ef:7d:21:ad:
57:22:66:03:67:53:48:3c:1f:e8:ca:65:41:c9:22:
51:3c:6c:99:83:d5:dc:74:7a:bf:c2:10:08:fb:4f:
66:34:91:21:cb:d4:1f:da:97:dd:0d:26:ec:cf:00:
b1:f8:8b:2e:7a:ad:0a:68:28:ab:ff:b6:1b:04:d8:
33:27:b7:c7:f8:9c:65:16:07:8d:cc:07:c1:0f:c1:
19:36:17:32:d6:00:0e:60:3d:91:ec:da:0f:50:0c:
36:28:3e:f0:12:9b:98:7a:92:e5:22:6f:e3:1d:a7:
b1:0d:6b:ad:2f:0d:8e:89:67:08:5b:8d:8e:82:92:
56:f0:24:fa:43:ce:30:9b:86:73:24:a0:2d:d2:b8:
3e:11:07:e4:6d:05:4c:62:f4:c3:4d:2e:cc:2a:39:
44:fd:3f:21:35:b4:a0:c0:5c:aa:13:3c:cc:1a:85:
ce:c3:d3:8b:58:bb:fc:2c:a1:48:4a:e4:c0:7d:59:
f1:67:9d:c0:1f:04:c1:d8:4a:8e:58:83:5d:6e:aa:
2c:08:c5:f4:15:93:9b:65:52:2a:de:48:3a:2a:93:
6b:8b:b9:79:48:7b:43:a0:44:f4:06:46:18:7d:6d:
e6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:8D:1B:FB:7E:2A:70:A8:CC:44:F8:CC:29:42:78:BA:A9:73:50:87
X509v3 Authority Key Identifier:
keyid:97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:00:bd:d3:17:0f:ed:8b:72:d9:0e:bb:05:44:a4:87:ae:b7:
c6:20:0f:2f:d7:fa:af:6d:b4:22:e5:8a:09:98:93:dd:51:6b:
81:0e:f7:94:09:1a:d7:34:90:ba:0a:03:d1:4d:69:84:dd:16:
08:f1:ba:ad:ab:e3:89:ef:09:31:cc:b4:fa:28:29:82:18:c6:
54:ec:c5:7f:60:a7:13:f9:0c:c1:c4:73:85:d3:63:ec:3e:9c:
ed:07:7f:54:db:7a:91:ba:f8:bc:84:90:80:a7:a5:68:27:cc:
dc:ee:a2:33:eb:c7:68:0e:03:1e:c0:c1:62:1a:24:9e:3e:64:
89:ce:b4:25:ab:db:ed:0e:0d:79:4d:77:88:6e:63:5c:18:56:
4c:89:12:4f:5f:df:68:58:b3:8f:b2:b2:1e:a3:ff:2f:cb:36:
a1:b1:25:5d:b2:b9:56:e8:56:de:ae:82:b6:ab:b9:4c:a8:73:
2d:2f:7d:07:88:c3:16:b2:c9:de:8c:fe:95:18:27:e8:62:2a:
36:90:d7:e6:4e:d6:33:58:fd:7d:01:36:5b:8f:51:b7:c8:e2:
cb:cf:cb:ee:6c:2c:92:85:34:08:ce:9c:15:9e:ad:45:c8:65:
14:1b:d6:e5:a3:d3:92:f5:5f:54:58:c4:0c:a1:b7:2e:e4:7a:
90:78:fc:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:53:07 2025 by rpki-client