Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
File: w3URP9S_vTixBDhDwwkmoRDMD1E.mft (raw, json)
Hash identifier: 5SdvI3TWQGZFQtYhXGlhI48rVt9G7y52n5KJGpSwSCU=
Subject key identifier: B6:62:88:3E:73:7F:51:D8:ED:0E:72:44:B7:50:FA:C0:97:72:89:7B
Authority key identifier: C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51
Certificate issuer: /CN=c375113fd4bfbd38b1043843c30926a110cc0f51
Certificate serial: 0198D472D1C900A2F0C9820641327321E2BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 01:02:31 +0000
Manifest this update: Sat 23 Aug 2025 01:02:31 +0000
Manifest next update: Sun 24 Aug 2025 01:02:31 +0000
Files and hashes: 1: TPJl-AnyNAOqe20bKX-5t3SrM4E.roa (hash: X6UgSBrAhCQSnYi9DhkcF/hdYKpsagcSW2GIdlVKxUg=)
2: w3URP9S_vTixBDhDwwkmoRDMD1E.crl (hash: aH1K4D0MG0TRWyl7pwfVM+q94J/DEKng9vnUKVd7K8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:d1:c9:00:a2:f0:c9:82:06:41:32:73:21:e2:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c375113fd4bfbd38b1043843c30926a110cc0f51
Validity
Not Before: Aug 23 01:02:31 2025 GMT
Not After : Aug 24 01:02:31 2025 GMT
Subject: CN=b662883e737f51d8ed0e7244b750fac09772897b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:61:28:52:d3:cb:7b:2d:4b:21:6b:90:72:f5:
e9:9f:d3:88:6e:65:3f:e0:b1:0a:76:81:c2:2a:9e:
00:e1:82:fb:e1:67:26:30:21:6c:4b:d0:18:8e:21:
32:44:3f:1f:e2:a0:f6:40:7a:74:d4:c5:a7:a4:9c:
4c:e5:2b:c4:6d:da:81:24:5c:d1:d5:5f:11:75:bd:
d3:da:67:e6:e7:19:82:f6:76:0a:46:fe:d5:83:12:
09:34:21:c5:c1:a1:56:ab:56:38:b1:42:b5:55:49:
9e:a3:51:4a:45:c0:0a:c6:5d:54:cd:ef:e4:10:8e:
4b:e5:1a:41:46:94:ce:86:30:ad:ed:b7:ed:df:18:
8e:02:cf:d2:0f:19:3c:2c:b4:af:67:32:14:ee:bf:
08:1d:8f:ba:ae:68:08:27:f8:f7:f8:94:56:6b:b5:
fb:18:96:68:db:1f:49:f6:51:6e:4d:fc:77:af:e4:
49:a0:4b:73:30:7c:2b:e3:a2:1b:61:41:f2:93:ea:
50:38:5c:ee:ff:6f:51:01:7a:07:59:b9:3e:19:fd:
e8:22:2d:9c:b4:04:f7:32:b9:41:c7:03:06:59:82:
6e:fe:3b:b3:5d:32:5f:74:54:69:7d:78:c7:bd:9a:
b6:6c:1b:f0:c3:f9:72:70:85:b1:76:30:56:7e:eb:
8b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:62:88:3E:73:7F:51:D8:ED:0E:72:44:B7:50:FA:C0:97:72:89:7B
X509v3 Authority Key Identifier:
keyid:C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:ab:d7:f8:d8:ac:02:e4:3b:22:64:d5:1b:7c:36:e2:92:d5:
05:47:46:41:a4:06:17:a9:b0:69:ed:8b:11:ac:5e:37:9f:0a:
00:c3:86:ab:f6:4b:0a:1f:3d:fc:59:7b:ca:6c:31:c8:2f:6c:
9c:8f:2c:54:91:59:ad:99:3f:d5:57:60:20:c7:ba:d7:4b:6d:
55:87:c1:ae:fb:0f:7e:36:85:ff:59:39:c3:48:75:cf:64:70:
5e:c9:54:c8:b6:c5:62:0d:75:94:67:fb:84:af:96:eb:76:b5:
fd:bf:60:81:02:c8:a0:5e:c2:62:e9:6c:25:25:5b:c1:fd:f0:
8d:6a:59:9c:2f:f9:6f:60:d4:87:33:91:35:f4:c8:34:07:52:
d1:47:27:86:b2:0f:e9:0d:50:cc:aa:6e:f3:13:50:8f:f0:73:
f0:04:34:73:a7:91:2e:c3:00:13:98:14:7d:c5:e7:d6:cc:0e:
ba:51:a6:ed:1f:5b:e8:ac:ca:3a:35:f7:0e:73:5d:67:35:c6:
9d:dd:f7:18:8d:8a:aa:04:ea:d9:80:b2:2f:dd:77:30:ce:d2:
ea:fa:2d:81:de:6e:a2:b2:54:63:e5:c0:9c:ad:d8:64:bb:5a:
cd:74:7d:7b:38:d8:76:88:55:b0:e0:d2:5d:dd:7a:cc:5b:2d:
a1:c4:1f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:57 2025 by rpki-client