Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
File: rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft (raw, json)
Hash identifier: kHkKYbDOGITl+SStE1KrRDdkr/jDhToAAtu8iljiyA8=
Subject key identifier: A0:A9:F7:A3:23:35:BD:CD:77:33:9A:22:40:80:7F:DF:E0:21:48:2D
Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Certificate serial: 0198D73BD30495337FE07AF89AE2CE8D2E1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
Manifest number: 1663
Signing time: Sat 23 Aug 2025 14:01:18 +0000
Manifest this update: Sat 23 Aug 2025 14:01:18 +0000
Manifest next update: Sun 24 Aug 2025 14:01:18 +0000
Files and hashes: 1: 1xef8JB14kgVdYbFNM-Oq6W7NWA.roa (hash: 2TgMpFsN8snCYIhnDbb3K1R/JLwOpv09B4vLRv33njY=)
2: 30aIeplMe8B5nuWPNxNW6K-OtBY.roa (hash: 3pRxuzSCfGIU8i4yLQxNrHj04RZktWd0aRH2mX3pOUo=)
3: 5R2_zC5O_WNYOAGlu7by2_fhzYo.roa (hash: Eq+hBI8YGdr0edeJFDWardc1U5Cf7U1rPC+h2snaoOY=)
4: mG-NGr5UJw8Bdsm31xr0LARp3LM.roa (hash: Ez+x2KZ41CLnIqO9c7EUA1U/u9pzX46TWaq6peZ65/4=)
5: nqdZW8VS3cJABsENIPnwko2Hihc.roa (hash: IhzETIut1wHzF58gkob1Irj0rHur1kgwouWb5+riuAI=)
6: nrBcJclJWWQmSFgHdkkN2rl4iMo.roa (hash: LHzeWYsmA5iX5RkIBuodpJrYuHeqFeRrX4/36Bp1azQ=)
7: rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl (hash: TLgqI6MDi3et9pzOQeq4q89ObhZKLQCCOSiLh49IFog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:d3:04:95:33:7f:e0:7a:f8:9a:e2:ce:8d:2e:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Validity
Not Before: Aug 23 14:01:18 2025 GMT
Not After : Aug 24 14:01:18 2025 GMT
Subject: CN=a0a9f7a32335bdcd77339a2240807fdfe021482d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:93:66:79:a2:e6:28:c1:de:fa:af:13:dc:2d:
92:fa:13:7e:f8:ab:27:f3:01:d5:5c:68:4b:7b:a9:
0d:f6:3f:7e:e4:73:fa:54:e5:9b:ae:6f:66:0c:bf:
e2:df:b8:44:ae:05:41:a8:bb:ef:d9:80:5d:20:ce:
ae:b0:8e:78:b7:23:8c:95:7d:f9:6e:a3:89:c0:d0:
67:73:e7:b4:0b:19:14:f2:49:5c:86:9c:b2:2c:36:
d0:50:63:3e:3d:75:77:5d:81:ae:9a:1a:62:f2:30:
59:8e:3e:a4:f4:c8:e6:e0:12:7d:e8:10:ca:19:96:
ef:7c:ef:56:a9:2f:fd:e9:5d:2d:be:d1:a1:40:17:
83:d3:37:ed:12:7e:7b:98:e9:c3:c1:1b:69:6d:64:
1f:ba:5d:53:2a:58:39:83:60:1d:bd:9f:8f:16:50:
37:d8:95:6a:9f:ce:91:8a:3c:9e:98:8b:d8:6f:f9:
99:5a:44:87:22:b6:09:89:fe:6f:ab:0d:9d:6b:48:
bf:77:f4:1a:b4:b0:c2:8c:dd:a8:67:68:4c:fe:ac:
d5:78:06:fc:03:b1:48:f3:69:b3:5f:27:f5:54:a8:
04:99:f4:18:da:2c:19:05:66:e4:37:27:47:56:5e:
29:6b:49:0d:c3:84:fd:37:99:35:ca:71:92:3c:38:
77:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A9:F7:A3:23:35:BD:CD:77:33:9A:22:40:80:7F:DF:E0:21:48:2D
X509v3 Authority Key Identifier:
keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:43:df:be:97:8d:68:13:48:66:b6:4a:a8:8d:27:b0:65:c0:
27:6d:3e:22:09:bb:14:c2:cd:dc:fe:20:95:38:5d:ef:a0:a6:
a1:1a:a8:2e:3f:77:fd:39:dd:d2:00:2b:8e:b2:be:a5:62:e3:
a1:d1:ee:30:9a:e4:d5:29:75:f6:dd:c5:88:94:c2:a3:a3:3e:
de:18:07:e4:ff:9c:57:a6:24:38:26:ae:23:30:f3:62:bb:5c:
4f:21:31:d6:9d:cc:28:2d:e3:37:b9:74:9f:44:d2:30:70:f5:
a6:8f:2b:a0:41:8b:bb:83:d9:04:d8:62:47:25:de:9a:b7:2c:
34:85:d6:04:89:4e:64:6e:ea:db:65:e1:58:a0:58:29:f0:bc:
07:e4:46:71:20:9f:f8:ea:11:56:d4:69:0d:03:fb:36:3f:1a:
79:4d:7c:e7:b2:d6:c5:3f:67:6c:9a:39:db:c5:67:e2:5c:08:
ba:80:04:aa:98:df:10:33:a1:46:6b:b5:5c:4f:ad:5f:5d:c4:
10:4f:fc:8a:ee:91:fe:c7:75:e3:cf:fc:31:d8:b9:93:6c:bb:
90:69:1e:ce:38:9d:25:13:7e:c6:d1:6e:a7:95:42:5e:b8:97:
26:09:65:5e:86:cb:15:80:d2:d4:f4:49:1e:1f:cc:15:9e:c6:
5d:e0:e6:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:45:05 2025 by rpki-client