Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
File: toF3Ytn8jxGwHPUjS25DHPvsG80.mft (raw, json)
Hash identifier: 6mISedsyN4v7Ho9yWtMLSSQNxVjTTpuCLEpIpyVTwmA=
Subject key identifier: 50:2C:54:E3:F5:CD:9A:60:82:7A:DB:E1:0A:46:37:0D:A3:25:A3:BE
Authority key identifier: B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
Certificate issuer: /CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Certificate serial: 0198D4A793BE0EF80050EB7B170BF2CE41DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
Manifest number: 09A9
Signing time: Sat 23 Aug 2025 02:00:08 +0000
Manifest this update: Sat 23 Aug 2025 02:00:08 +0000
Manifest next update: Sun 24 Aug 2025 02:00:08 +0000
Files and hashes: 1: iFeMzfeEdL5eLiPhJVZH9fOR9os.roa (hash: Hluf44L3umjh9a1sEhuox24mM0+jKftFeuevrlqeW6M=)
2: toF3Ytn8jxGwHPUjS25DHPvsG80.crl (hash: mHDQ8G6MKveazSNG8bW4s7O/T62A8zl1qi3us3Cd5GE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:93:be:0e:f8:00:50:eb:7b:17:0b:f2:ce:41:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Validity
Not Before: Aug 23 02:00:08 2025 GMT
Not After : Aug 24 02:00:08 2025 GMT
Subject: CN=502c54e3f5cd9a60827adbe10a46370da325a3be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0a:cd:ce:a2:9b:a2:f8:e4:2b:6e:68:91:5d:
8a:95:35:1d:8b:8a:48:2d:1a:60:9c:d8:69:c6:87:
1a:8d:15:21:b3:a2:7f:41:cb:94:ab:1a:85:39:ba:
56:c1:a9:37:e2:1e:54:4c:92:1d:18:04:c0:e0:93:
11:18:24:1e:91:ce:d9:22:c2:f2:0f:3f:3d:79:54:
77:c9:21:0f:a8:cf:9d:a1:c1:9a:c0:6c:54:23:85:
1b:34:46:39:e3:9a:02:76:df:8b:31:c8:65:69:65:
49:87:73:9a:30:aa:24:65:9c:76:24:57:e5:66:0f:
3e:13:2e:fb:52:c9:c1:2d:ab:07:53:2e:36:0e:10:
0d:08:ba:a1:54:81:bc:3f:c1:ef:5d:1e:43:73:f5:
e8:6c:55:cf:2f:8f:f7:8f:dc:98:ff:b6:ca:30:95:
cb:de:da:f0:b3:ff:2d:54:2a:cc:b1:05:e4:3e:07:
36:d0:26:d3:2e:b5:0a:6d:46:68:78:c5:7a:92:5a:
c4:f3:eb:95:a2:aa:07:92:b1:0e:ff:5c:1f:b6:a1:
e0:33:55:3d:76:8f:13:29:de:08:58:d7:68:0f:9a:
72:dd:49:46:ef:7f:be:62:3a:f7:ff:c2:c7:ce:ae:
c5:16:1c:31:85:4a:60:98:3e:c8:28:1d:dc:1b:c3:
c8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:2C:54:E3:F5:CD:9A:60:82:7A:DB:E1:0A:46:37:0D:A3:25:A3:BE
X509v3 Authority Key Identifier:
keyid:B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:8b:40:a9:18:70:f4:98:5e:27:ae:27:57:a2:3f:e0:6b:1c:
e0:7d:da:ea:ec:a3:8a:62:77:96:2c:3f:e4:34:37:88:2f:18:
a3:ec:62:5d:6c:3f:70:98:03:96:bd:e6:40:48:38:91:2f:ee:
f1:3b:64:df:8e:b5:0c:d8:8d:a6:1b:f6:eb:88:06:e2:32:57:
ae:e8:3c:09:12:33:eb:f7:73:c3:99:cf:23:44:f4:d8:ff:e2:
da:c8:eb:95:0c:55:b6:1c:86:50:ab:62:76:0e:db:c6:84:6c:
dd:7d:a3:aa:bf:8e:0c:11:36:0f:0f:a3:ae:8d:20:69:29:59:
bb:b2:47:4b:c8:7c:82:d7:36:68:7e:8e:40:c6:db:b3:db:43:
71:ba:58:46:d1:66:21:be:e9:9f:de:ea:e9:79:85:e9:52:f2:
ad:04:01:1a:60:aa:ce:6f:cf:af:6d:74:cd:53:5b:f1:c2:d5:
7c:82:bd:1f:96:5d:42:d8:42:81:fc:62:86:b1:f0:06:92:38:
70:fd:cc:36:fe:1b:8c:85:7b:6d:b0:c1:6f:95:18:c6:80:43:
c0:b1:4f:3f:27:ce:e2:31:c9:c2:2d:b6:e5:f3:30:2d:e9:52:
32:61:93:04:32:55:f0:e6:95:3a:5b:ee:16:40:d9:eb:a9:17:
95:9f:b3:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:31:09 2025 by rpki-client