Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json)
Hash identifier: fbVk5azjcHS5A5FNnfCbcmgpxTZaN/tKjP8RIGilS/4=
Subject key identifier: BD:D6:52:B1:CD:54:17:3E:5D:CA:FA:7D:43:D1:98:81:62:35:5A:BE
Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Certificate serial: 0197C9F02E0BFF7729DD8773A2CCA705A776
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
Manifest number: 0CA5
Signing time: Wed 02 Jul 2025 07:00:50 +0000
Manifest this update: Wed 02 Jul 2025 07:00:50 +0000
Manifest next update: Thu 03 Jul 2025 07:00:50 +0000
Files and hashes: 1: 1-boXqKY_Hyoe19Z5JIZ3K6AJj94.roa (hash: a5qc0h3BhqmeqSpAZh7GFmd10hjtqvPl4/lqfepgblo=)
2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: vVV1O/A/nj8zF1ppvaK4RlNVUqYij0ora3CRXvJTAJE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 07:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:f0:2e:0b:ff:77:29:dd:87:73:a2:cc:a7:05:a7:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Validity
Not Before: Jul 2 07:00:50 2025 GMT
Not After : Jul 3 07:00:50 2025 GMT
Subject: CN=bdd652b1cd54173e5dcafa7d43d1988162355abe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4c:dc:9a:52:b3:5b:9f:5a:a7:70:18:b4:1f:
5a:4b:c6:c9:a2:01:e9:d4:9b:9f:e0:29:f5:40:22:
e9:c2:2c:bc:87:20:56:0d:13:f5:18:40:ec:05:bc:
5c:5e:5f:37:f0:a3:77:31:bc:f4:82:cf:f6:77:92:
03:19:3c:1e:2e:5b:a7:cf:46:1d:13:5a:ae:ee:95:
73:98:ce:ee:bb:75:33:ad:0f:6a:d2:63:80:73:69:
b0:ef:33:4f:a8:b9:70:9e:f8:2c:09:ea:5a:0d:4a:
5c:1a:4d:70:e7:0d:50:fe:6d:6d:cd:ad:e4:ce:8c:
ea:59:85:80:c4:d0:a3:2b:37:e6:45:51:49:90:36:
87:d1:5e:fe:ec:ab:03:8b:a6:7e:03:eb:c6:21:69:
0d:14:de:2c:34:cf:94:c8:93:f8:24:26:ee:5e:8e:
5f:a1:5c:cf:87:14:5a:4a:6b:91:78:df:60:d6:d1:
c0:b6:06:88:47:40:e8:27:34:f1:64:c3:1e:be:94:
8d:c4:59:5b:82:e6:44:bc:af:c8:14:4b:20:be:c9:
97:d3:04:ad:a5:6b:4d:c0:7e:70:49:8c:2f:3f:d9:
65:d6:e9:db:62:70:8e:59:8b:e7:c9:73:a4:d5:a5:
45:7d:dc:be:61:6b:fa:9c:31:6e:53:ea:26:14:a2:
b5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D6:52:B1:CD:54:17:3E:5D:CA:FA:7D:43:D1:98:81:62:35:5A:BE
X509v3 Authority Key Identifier:
keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:6d:dc:11:c8:10:56:e6:bd:3f:6d:d3:e7:62:60:0c:2b:83:
c3:2c:5c:5b:eb:9c:de:aa:38:32:06:45:f9:b4:ae:e0:1d:c7:
a8:43:fc:cb:a9:70:df:03:d1:83:fc:00:b0:8f:3e:29:d4:f8:
21:a9:70:6a:b0:22:26:f5:2d:1d:bf:98:e7:4b:0e:11:17:69:
3d:d3:3b:b1:fd:9f:84:45:37:52:2b:b7:83:fc:35:30:5c:7f:
3b:3b:3e:d5:56:27:65:d9:59:ba:5b:89:19:65:48:42:c5:cc:
93:1c:26:14:bc:f1:09:75:63:e7:52:9b:f5:de:66:c9:6b:6e:
c4:c2:2d:97:5a:07:15:89:6c:01:d7:ac:9c:1e:56:2c:8f:bd:
e9:ba:8b:76:46:19:96:63:bb:5e:b3:19:02:19:2f:eb:dc:f2:
93:6d:78:e6:30:a8:dc:15:99:7b:15:b6:77:68:4a:2d:bb:e5:
86:8d:75:81:ec:90:03:2d:3a:d2:74:69:60:c1:9c:72:ba:ed:
16:3e:f4:e2:93:d5:ff:4f:fb:06:1d:71:2a:74:92:02:64:47:
01:dd:fc:61:ff:2e:dd:4d:c0:e5:3e:68:51:bc:a0:5a:2d:19:
6d:c6:de:3b:1f:cc:c8:d8:2e:e5:1c:ed:00:b4:2f:43:12:db:
8b:1d:ed:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 14:47:52 2025 by rpki-client