Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
File: gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft (raw, json)
Hash identifier: FOByH0rTyD6OuULMCTNRokh1fmSH228Y8PzihXNUaa8=
Subject key identifier: 6E:9E:CE:56:13:18:06:3C:31:CE:B0:C8:79:81:D9:82:50:0D:63:20
Authority key identifier: 81:66:03:83:85:B3:43:D5:5E:76:B7:28:EF:E2:3C:07:31:78:76:68
Certificate issuer: /CN=8166038385b343d55e76b728efe23c0731787668
Certificate serial: 0198D73B32FE301A6E022DC4EF22A8D2D526
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
Manifest number: 0F4B
Signing time: Sat 23 Aug 2025 14:00:37 +0000
Manifest this update: Sat 23 Aug 2025 14:00:37 +0000
Manifest next update: Sun 24 Aug 2025 14:00:37 +0000
Files and hashes: 1: 2iJw4EQoXKQlcgvYyAFZ8L2PyY4.roa (hash: iiK5pamhZGxd1XFCTcN85Gnci+JOI25h5MBN1jWndgw=)
2: gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl (hash: qCpywKNGuerL5HCrR1CWurKZEvtzhtyF/OSTNa0Swl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:32:fe:30:1a:6e:02:2d:c4:ef:22:a8:d2:d5:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8166038385b343d55e76b728efe23c0731787668
Validity
Not Before: Aug 23 14:00:37 2025 GMT
Not After : Aug 24 14:00:37 2025 GMT
Subject: CN=6e9ece561318063c31ceb0c87981d982500d6320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:92:99:cb:84:bc:78:16:3a:7e:1b:17:55:4a:
3f:9f:dd:8c:df:0d:cc:43:4c:98:23:58:83:18:35:
1b:c5:c8:29:2b:50:a2:92:00:8b:9e:35:eb:60:37:
19:31:c1:a6:57:7a:7e:38:09:0e:1d:90:73:b5:d0:
7c:39:8d:15:70:f7:ac:bf:cf:8c:cd:0b:28:6e:6e:
76:47:d2:d4:d8:e6:3b:2d:3e:ac:7b:b0:c6:bf:fe:
61:71:99:9c:b9:1c:1e:31:b4:84:9e:ba:a5:85:21:
1c:b6:25:41:10:4a:ca:3a:93:3f:96:ca:46:f4:fe:
47:9a:a3:21:52:c5:51:e2:d5:39:14:e1:7f:cf:45:
e9:69:7e:15:c3:de:42:ad:a8:a4:ba:ef:48:c3:66:
eb:5b:e0:1d:96:32:d1:0e:dd:74:1e:74:b6:eb:05:
85:f0:56:23:57:ed:1e:dd:7d:54:72:13:45:6e:5d:
dc:ba:53:eb:7f:be:43:60:39:e0:9b:f7:56:31:7e:
25:f2:77:9a:37:10:9c:e1:ae:54:32:4d:14:9c:56:
2e:ea:57:c2:97:72:cd:68:78:37:0d:13:93:b8:44:
1c:e7:62:6d:43:db:d9:bc:ba:e3:2c:99:7e:7f:bf:
82:3f:87:6c:a2:33:79:29:d4:2b:2f:a7:44:a7:d4:
59:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:9E:CE:56:13:18:06:3C:31:CE:B0:C8:79:81:D9:82:50:0D:63:20
X509v3 Authority Key Identifier:
keyid:81:66:03:83:85:B3:43:D5:5E:76:B7:28:EF:E2:3C:07:31:78:76:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:62:74:89:b0:60:a6:aa:2d:3f:e9:fe:a9:22:64:39:ea:70:
3f:7c:98:6c:da:65:4d:52:ad:14:dd:f0:18:42:4e:59:3a:da:
32:f9:73:af:61:88:ac:74:36:c4:9d:df:2c:be:01:23:b0:4b:
c9:e0:77:5c:f0:0b:7e:bc:5c:44:68:b8:7d:f3:dd:cb:61:81:
1f:fc:71:d5:de:ba:25:18:e6:53:41:fa:0b:ca:4a:78:ee:41:
ad:e3:4c:4e:8e:c9:99:cc:c5:a2:d9:4f:a8:d4:a8:3d:21:a2:
48:48:c3:92:c4:81:0f:6a:7d:9a:73:73:c9:42:ac:6a:1d:23:
1a:cf:85:62:e5:21:51:e7:d3:12:31:b5:71:8c:1c:3c:22:0e:
cc:2e:8f:69:63:7c:27:85:6f:ba:e8:40:5a:53:ee:d4:4f:16:
f4:29:4a:45:52:1a:51:a8:5b:1c:37:7f:0c:64:d4:50:fa:3c:
36:39:97:1b:22:b6:49:d6:8f:b2:b9:0e:af:80:44:2e:10:e7:
ae:0a:f6:fd:d9:fb:fd:aa:58:22:1a:c7:ed:a3:be:89:24:1e:
8c:31:03:fd:7e:bd:66:3b:71:76:9c:35:08:b0:98:f5:38:d8:
31:53:a4:9a:54:74:cf:6e:20:9b:5e:0d:4c:2a:97:28:e2:7e:
4d:c4:7a:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:38:48 2025 by rpki-client