Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json)
Hash identifier: hSI0ZPa1VU8WGGRKlryf/5iNyf0JMIdBGThhQkLMWz4=
Subject key identifier: DA:BF:8A:49:3E:B2:A8:80:F9:5F:4E:03:94:19:3E:5A:02:DB:18:7A
Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Certificate serial: 0198D6615146B218749087433D16A0641AFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
Manifest number: 0D30
Signing time: Sat 23 Aug 2025 10:02:38 +0000
Manifest this update: Sat 23 Aug 2025 10:02:38 +0000
Manifest next update: Sun 24 Aug 2025 10:02:38 +0000
Files and hashes: 1: 1-boXqKY_Hyoe19Z5JIZ3K6AJj94.roa (hash: a5qc0h3BhqmeqSpAZh7GFmd10hjtqvPl4/lqfepgblo=)
2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: oWTrGxlvTsGHsyznOUjmPzkB7TMJAxcITJEjVw2jwbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:51:46:b2:18:74:90:87:43:3d:16:a0:64:1a:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Validity
Not Before: Aug 23 10:02:38 2025 GMT
Not After : Aug 24 10:02:38 2025 GMT
Subject: CN=dabf8a493eb2a880f95f4e0394193e5a02db187a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1b:55:d2:6a:42:86:b0:d2:c4:2d:91:3b:c7:
0f:f8:00:6e:81:15:a7:90:e5:27:8a:43:39:c1:6f:
91:78:96:1d:3c:a4:fd:25:0c:40:a4:92:22:f3:ef:
42:65:62:4a:f1:0f:7a:63:43:4e:ad:bd:81:c6:4d:
f4:b8:ec:50:7a:e3:8d:99:df:51:ed:bd:ef:a2:09:
b0:48:32:a5:1c:a2:6d:a8:13:02:dd:cf:bc:bc:31:
a3:e0:2d:c3:ff:3c:e0:6d:23:54:9a:06:41:ea:9c:
bf:27:b6:6d:1f:a5:7a:05:1c:b4:bc:8a:33:7a:c3:
e0:20:44:f5:43:b7:3f:ef:6f:f6:68:f3:53:e4:e9:
66:d8:76:15:ae:c5:9f:7f:d6:2d:a6:39:86:bf:ab:
bb:8e:e3:0f:49:7f:99:f6:22:f7:6c:6e:62:70:1f:
53:44:83:a0:51:dc:9c:cb:ec:e2:06:e9:39:73:70:
b5:41:6e:3e:07:4b:f0:67:89:40:69:62:90:53:b2:
fa:fc:3d:2c:36:04:9a:50:f0:42:cb:86:08:ec:88:
77:17:d6:43:2f:47:06:3e:bf:93:c5:b8:38:ed:f8:
1a:58:e1:b2:9f:57:20:19:be:9b:36:b0:16:91:09:
85:70:36:91:73:bb:ff:91:be:46:93:90:cb:ef:e3:
0d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:BF:8A:49:3E:B2:A8:80:F9:5F:4E:03:94:19:3E:5A:02:DB:18:7A
X509v3 Authority Key Identifier:
keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:4b:64:ae:f2:e7:8f:c0:5a:63:a6:2f:ee:2f:63:28:54:64:
a9:1d:55:1d:9c:46:dd:4a:08:df:16:f9:2a:dd:b8:c8:72:d0:
7e:e7:dc:01:1e:4f:80:5d:99:11:af:e0:20:6c:b1:05:df:f9:
80:59:0d:21:66:15:0a:91:e5:f3:1d:1c:21:09:38:26:e3:24:
cd:1b:63:aa:68:5c:d4:d3:5f:60:2f:cc:1d:53:d5:f7:e7:80:
68:09:9f:2b:c4:3a:72:c9:62:6b:6d:c2:a5:35:c1:dd:43:e1:
7e:3b:27:5f:31:a0:a4:c9:86:a0:8b:42:a8:73:fa:ce:60:c3:
9e:f6:aa:04:25:8c:3c:53:c1:a2:9f:f7:34:42:0f:be:8d:a6:
ed:8e:9c:48:45:7b:8c:5f:76:ee:f9:dd:cb:b7:6d:84:39:2a:
44:48:e0:83:02:62:fa:a4:de:93:26:58:9c:5c:b2:c1:be:b2:
b5:e9:d5:e5:02:fb:5c:b7:9b:78:0c:36:58:1e:fa:2c:78:ad:
5a:1c:55:55:07:e6:05:96:7d:08:ec:e8:8c:1e:eb:dc:2e:c2:
bc:99:94:4a:3f:b2:76:85:a3:f1:b9:53:b3:67:7e:89:17:41:
f5:ed:ff:cd:cc:7e:b4:cd:0f:0c:39:1a:3a:18:2b:89:72:de:
6a:c9:82:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:30:10 2025 by rpki-client