Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
File: fdw2QUyZG_qNkvYCflMINwsitqY.mft (raw, json)
Hash identifier: JTAdI+fc+4RAxPpS3G1+YtC0zWbb/xgsrk+bZiGhBnU=
Subject key identifier: C8:40:83:24:DC:74:9C:84:0A:08:9A:8D:08:88:FA:7E:65:C6:70:EA
Authority key identifier: 7D:DC:36:41:4C:99:1B:FA:8D:92:F6:02:7E:53:08:37:0B:22:B6:A6
Certificate issuer: /CN=7ddc36414c991bfa8d92f6027e5308370b22b6a6
Certificate serial: 0198D5F16CFDBF694F59AAEA215B48974A01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
Manifest number: 07A0
Signing time: Sat 23 Aug 2025 08:00:25 +0000
Manifest this update: Sat 23 Aug 2025 08:00:25 +0000
Manifest next update: Sun 24 Aug 2025 08:00:25 +0000
Files and hashes: 1: fIi6Y7TMQAIgGM-S2BYF-rhLP0U.roa (hash: frVihHDK+8j5US3CUXtBypHsqdv++cToSbTh8ao+mTk=)
2: fdw2QUyZG_qNkvYCflMINwsitqY.crl (hash: Sv2VWPbWH4gyEGO+2S2liPDoqnlyFthC7TWJv7+Hp4A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:6c:fd:bf:69:4f:59:aa:ea:21:5b:48:97:4a:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ddc36414c991bfa8d92f6027e5308370b22b6a6
Validity
Not Before: Aug 23 08:00:25 2025 GMT
Not After : Aug 24 08:00:25 2025 GMT
Subject: CN=c8408324dc749c840a089a8d0888fa7e65c670ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:67:d6:fe:3a:a3:f6:0e:d3:b6:40:24:a4:44:
08:4d:1f:cb:4d:e1:43:f1:d0:b9:20:27:d6:af:6e:
b2:35:0e:4c:85:9b:95:2f:1f:d5:41:1e:a3:7e:7c:
2a:88:f2:c6:50:3f:58:cd:8c:27:dc:91:18:41:ef:
c8:08:03:8e:4e:76:e9:87:fb:c7:5b:0e:45:06:60:
e4:5c:9a:4a:ff:de:e9:0a:8b:75:1e:19:f5:05:36:
04:f4:60:fe:39:b6:b0:b5:6f:1c:a6:5a:4b:82:7d:
e7:28:e6:90:4e:30:18:b1:89:79:89:ce:1a:af:e8:
fa:6a:9c:b7:66:95:e4:32:27:3f:73:96:3d:53:69:
94:d7:31:2a:cb:84:d7:28:86:57:b4:3c:52:06:44:
c9:09:0e:4d:89:f5:39:f9:9b:85:6c:94:64:b0:25:
83:61:2e:86:b4:6d:0d:4a:bb:6f:7e:22:44:bc:07:
8c:32:4f:fd:71:c1:ae:4c:a9:67:93:b7:b6:63:2d:
56:68:c7:2c:75:39:2c:44:05:a7:ff:12:76:a5:d9:
76:e4:31:eb:8b:df:82:c3:d7:83:63:19:b9:5e:63:
4b:e4:7e:63:00:e6:8b:e9:e9:f5:29:65:c6:3e:b9:
f5:37:ff:29:84:94:77:5b:1d:57:55:f2:ea:c1:7c:
4a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:40:83:24:DC:74:9C:84:0A:08:9A:8D:08:88:FA:7E:65:C6:70:EA
X509v3 Authority Key Identifier:
keyid:7D:DC:36:41:4C:99:1B:FA:8D:92:F6:02:7E:53:08:37:0B:22:B6:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:99:03:92:67:f2:0d:cb:f5:46:a5:c0:a1:d6:70:5e:e4:6d:
9c:a3:7f:11:bc:96:e0:c9:b5:34:f8:05:13:c1:8c:52:29:2d:
87:2a:6f:cc:d7:fc:91:69:91:a2:4a:81:b8:e8:05:66:c5:7e:
19:74:f9:e1:37:cc:3f:96:8f:2e:3a:af:03:7e:bc:c4:21:3b:
08:f7:b5:3a:bc:d7:10:ad:58:4a:c6:bc:94:3b:5a:b4:3d:8c:
41:7a:40:43:c7:b2:63:47:95:fd:6f:16:15:99:53:2f:cc:c4:
bb:22:7e:7d:ef:01:f9:16:00:2d:92:67:32:5c:0b:99:cc:30:
30:b0:fd:13:c5:ac:22:0f:e5:6d:f4:93:c0:8c:ca:e9:09:31:
7a:ed:c9:44:a7:a2:6d:6d:18:ad:c4:7a:d3:c0:1e:0b:46:02:
90:45:89:54:cb:d1:6d:5a:4f:2a:37:83:a5:fb:4e:d4:02:ee:
1f:b5:13:32:ab:f0:f1:fb:5b:ea:9d:4b:df:7f:1f:4c:5d:0d:
33:62:f1:cc:57:67:de:21:26:80:0f:bc:a7:03:c8:c3:26:8b:
c9:01:fa:7e:71:e0:5a:44:62:54:26:31:4c:c6:24:b6:01:f9:
f0:8b:62:7d:ad:94:4d:53:98:ff:28:47:cc:03:7b:4d:a0:cf:
92:1a:b4:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:52:03 2025 by rpki-client