Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
File: _o6FIymApj8NTfWwSRY-P9AvVLM.mft (raw, json)
Hash identifier: KUUyOwoBjRMUmnDWn/eN/1OOqB9cG1dVqNKIpu3xuc4=
Subject key identifier: 6C:7E:06:91:81:58:7E:48:77:08:88:A8:E9:0B:75:30:1B:19:8F:D4
Authority key identifier: FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
Certificate issuer: /CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Certificate serial: 0198D4E020CF8B79EACDDF589D66DDED53ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
Manifest number: 0AC1
Signing time: Sat 23 Aug 2025 03:01:54 +0000
Manifest this update: Sat 23 Aug 2025 03:01:54 +0000
Manifest next update: Sun 24 Aug 2025 03:01:54 +0000
Files and hashes: 1: 7IkFNxuEd7zYMJ5GFmWYCrb0D3k.roa (hash: EbQqPJKQBhTvoE7/qrp3Wi8FH8cq4X28q+E9y9x/db0=)
2: _o6FIymApj8NTfWwSRY-P9AvVLM.crl (hash: tEYGS50bJgLMzgrkSuYn/71eLOsPg/np8iE7czp8dvU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:20:cf:8b:79:ea:cd:df:58:9d:66:dd:ed:53:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Validity
Not Before: Aug 23 03:01:54 2025 GMT
Not After : Aug 24 03:01:54 2025 GMT
Subject: CN=6c7e069181587e48770888a8e90b75301b198fd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a4:f3:39:78:0b:b4:0f:2f:e0:30:71:c0:9b:
92:38:ed:d2:a1:38:18:ca:0a:db:e8:79:52:58:ef:
9d:10:66:37:46:94:c8:36:e6:9f:9a:d4:9f:4f:b3:
f9:4d:3a:cc:40:9d:41:73:a1:b9:22:53:75:dc:b4:
b1:61:ef:4c:ca:a5:11:3e:c1:18:8e:66:7a:4f:2e:
8f:d2:40:28:2b:37:04:16:d4:2c:6f:99:a7:9b:f6:
96:d1:88:3f:4c:d2:3b:c4:de:f3:ea:7a:d6:df:90:
99:95:76:a4:e1:ad:71:48:71:fe:c3:04:39:c1:66:
06:99:11:7c:b7:c2:f9:2b:9c:3e:0e:4b:d7:a1:86:
9e:96:fe:c7:2e:dd:62:1e:a5:ba:08:59:6c:91:2a:
86:40:93:ec:83:54:95:78:d6:0a:0d:56:af:f2:54:
61:de:65:da:1f:d1:44:e5:3f:6a:d5:fc:ac:90:17:
7f:7f:f8:47:75:e9:54:0a:5c:02:d6:ba:6e:18:90:
da:ab:f5:e6:fd:0b:e3:40:d9:ad:98:58:2b:e4:9c:
45:58:c7:87:f7:62:f9:dc:b9:cd:b4:fa:07:69:5a:
ab:e0:5b:ad:01:a5:a6:f0:c4:38:06:6b:85:ed:6a:
35:a6:13:fd:4f:2c:83:ee:fc:87:41:98:fb:85:49:
7b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:7E:06:91:81:58:7E:48:77:08:88:A8:E9:0B:75:30:1B:19:8F:D4
X509v3 Authority Key Identifier:
keyid:FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:41:31:09:52:3e:ff:4c:49:72:20:55:1d:dd:cb:29:a9:9b:
72:7f:ea:9a:ed:23:b3:fb:f0:36:37:0b:af:9f:33:3a:65:8e:
6d:16:63:e9:2b:da:f2:6a:22:54:6a:8c:03:e4:2e:06:e8:4b:
46:0c:2b:56:4a:5a:ec:4e:21:5b:0a:ab:4d:15:cc:13:03:c1:
35:a4:53:0b:71:79:0c:e8:30:81:a5:5d:d6:c0:31:c0:da:d8:
53:9e:4a:2b:c9:4f:7c:5c:dc:80:9e:c5:a2:df:8a:b9:53:5c:
b7:45:fb:86:01:ad:dc:b3:04:e5:63:f0:ed:75:d7:6d:74:ef:
db:ba:7c:5b:4f:d8:a3:66:6d:e4:b6:97:d1:4e:86:4f:12:46:
d9:00:ef:bd:e2:a6:9e:48:a8:61:ef:3d:a1:66:ea:5d:4a:ad:
84:17:1e:37:c2:0b:51:21:3f:4b:45:a6:52:43:11:eb:17:01:
e9:e3:10:4c:e9:bb:03:31:39:d2:b0:69:73:4c:c0:fb:7b:49:
64:8f:eb:8f:92:14:41:f4:ac:ff:df:62:9f:f1:54:02:78:c3:
ca:f4:ad:c3:26:55:9f:6e:ce:ea:26:37:f8:a7:89:61:e9:6d:
52:92:51:5c:5c:e7:0f:a7:a2:8d:14:b0:41:dd:ec:5d:89:54:
f0:80:2b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:59 2025 by rpki-client