Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
File: p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json)
Hash identifier: ZbYTLR6ydnvQcIyI+kcWVYfceF3rVy7EHtVFldc4EJU=
Subject key identifier: 1E:01:38:B4:B7:CE:73:D1:5D:ED:CF:35:89:24:BB:1E:6F:A4:E0:E7
Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
Certificate issuer: /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Certificate serial: 0198D51588B143BFB22C80CC15A8CC8B477E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 04:00:14 +0000
Manifest this update: Sat 23 Aug 2025 04:00:14 +0000
Manifest next update: Sun 24 Aug 2025 04:00:14 +0000
Files and hashes: 1: OgYJc9A280CynujJhuzMa0BI-4Q.roa (hash: MiNQpI1WP7M4DChXTEl99hg+v/DrVYZq8o6Yc8vjTOw=)
2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: YLBhcDJikjgoSa0qYHyWU1ssNVNzCmNOUjaLjXQArLY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:88:b1:43:bf:b2:2c:80:cc:15:a8:cc:8b:47:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Validity
Not Before: Aug 23 04:00:14 2025 GMT
Not After : Aug 24 04:00:14 2025 GMT
Subject: CN=1e0138b4b7ce73d15dedcf358924bb1e6fa4e0e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:49:fa:c0:c1:08:c4:cf:b3:19:aa:cc:4b:18:
93:0d:eb:1f:4a:af:56:25:b7:4d:83:b5:ef:54:68:
55:9a:30:5b:4b:7f:5c:41:4d:08:6a:40:75:dd:ae:
c4:17:ba:10:22:be:e8:24:2e:9c:08:1c:c3:08:a5:
2d:54:1c:24:1c:64:e7:2e:b2:f5:3c:47:85:c3:d9:
67:6d:8b:6c:1f:d3:fd:8b:16:82:fc:1f:93:10:c9:
0e:f1:d2:47:ff:ae:0c:e8:c9:d3:3f:b1:06:fb:25:
39:7d:88:42:95:b5:a1:ac:d4:89:c2:7e:38:b1:60:
c0:16:39:4c:6f:0a:e1:62:99:ef:53:c3:a6:ef:78:
f8:81:2e:24:c8:cb:ae:63:c7:4f:44:12:e4:b5:74:
96:c6:28:f7:5e:4e:8f:aa:11:de:4a:64:33:17:cb:
a1:5f:5e:2a:54:53:06:db:81:bf:9f:84:21:15:df:
a6:6c:cc:32:5e:e4:cb:de:ee:6f:1e:02:0b:84:53:
45:e7:df:6c:cd:83:68:63:ee:8e:15:b5:32:7b:ba:
a0:4f:72:95:c0:0e:ea:35:35:69:0e:5d:0f:1f:ae:
3b:92:51:72:d4:1e:70:ff:46:d7:2a:36:14:0c:a1:
ce:8a:27:22:bd:c3:5b:38:1b:6f:f5:4e:1b:9f:76:
51:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:01:38:B4:B7:CE:73:D1:5D:ED:CF:35:89:24:BB:1E:6F:A4:E0:E7
X509v3 Authority Key Identifier:
keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:80:cd:8a:2d:33:bf:34:b0:66:15:7c:49:c6:43:46:23:01:
a2:14:06:4a:23:7b:b6:c5:d7:e1:2e:f0:9f:2f:6f:47:eb:65:
69:eb:2d:0c:29:91:32:ab:ea:0d:67:e7:14:4d:ee:46:f9:a7:
d0:3e:3a:5c:25:6c:af:a6:96:30:73:6f:71:91:ed:f2:ae:11:
4e:82:c2:64:47:cf:b7:f3:4b:6e:6e:ec:f9:8e:29:46:60:dd:
3a:16:fe:75:0c:9f:3f:ed:61:e6:e7:a7:7c:4d:c8:1b:44:e8:
f5:92:7d:1a:10:1b:82:1d:01:52:08:22:b3:85:a7:3f:a5:ed:
64:ea:00:44:95:5c:28:85:0e:70:36:2c:18:1e:39:76:ac:a1:
d5:55:f4:73:18:7e:1a:fd:60:17:fc:30:ae:b8:29:1e:fc:95:
00:5f:d9:78:bb:bd:c4:98:fb:3a:3a:57:50:43:ee:24:c5:91:
ea:f8:0f:f8:c5:6b:45:af:12:f4:79:35:ad:8c:1f:c6:40:9a:
33:37:fd:c8:e6:10:d8:9d:56:35:bc:41:dc:3f:e4:36:07:ff:
fe:1d:a5:9b:87:9f:9a:5f:ed:a8:9e:79:a0:a5:1d:28:70:ea:
ce:f1:66:8e:42:62:85:cd:79:6f:c0:be:07:70:e0:13:66:5c:
6b:09:5d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:25:58 2025 by rpki-client