Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
File: rpPMjMqB-gDcU-e4B46RtcEbou8.mft (raw, json)
Hash identifier: NpUSlpfUmcg31UPWQDGT3bMPXXkg7yk9SDrt7Kc+AAY=
Subject key identifier: ED:55:9E:58:B0:26:F8:45:4C:4E:8B:A9:78:CC:DF:05:51:8F:FF:56
Authority key identifier: AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
Certificate issuer: /CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Certificate serial: 01994E89FABE6DD71788884FDB18CB12CB8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
Manifest number: 1191
Signing time: Mon 15 Sep 2025 18:01:29 +0000
Manifest this update: Mon 15 Sep 2025 18:01:29 +0000
Manifest next update: Tue 16 Sep 2025 18:01:29 +0000
Files and hashes: 1: crHez21ajs4tpxPy7D0FO2U5bxU.roa (hash: gCTLggUH/wf+1HoWxwo5Fpy8idWpj7d4gVSkhA0S2qM=)
2: rpPMjMqB-gDcU-e4B46RtcEbou8.crl (hash: umIuyW/xJmLTeZkVXU0UoTaRCOHVqVrfwfuIcRn1tYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 17:04:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:4e:89:fa:be:6d:d7:17:88:88:4f:db:18:cb:12:cb:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Validity
Not Before: Sep 15 18:01:29 2025 GMT
Not After : Sep 16 18:01:29 2025 GMT
Subject: CN=ed559e58b026f8454c4e8ba978ccdf05518fff56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9d:cd:1b:ca:40:e6:69:c1:12:9e:64:57:ec:
36:f2:5a:2c:05:57:2e:c8:07:b9:15:a1:9c:40:c8:
9f:41:8e:55:32:36:a3:7c:c0:17:40:68:89:65:f1:
d7:57:6a:9f:5a:31:a8:22:9a:aa:1b:2f:85:cc:41:
26:5f:f9:ec:8c:b2:a2:04:79:4d:58:c0:3e:3f:52:
a2:5b:28:4f:08:22:7a:d7:fb:14:9a:55:7c:2e:f2:
23:d0:1d:7d:e8:80:c2:bb:09:cf:94:d6:27:22:1e:
00:05:cd:dc:8a:3c:b9:01:40:a3:72:e5:4a:47:0f:
0c:e4:34:08:41:ae:37:cb:f6:b9:cc:31:c1:46:6c:
21:2c:7f:12:e6:53:0e:cf:96:73:5e:f5:ae:17:a6:
e4:95:0c:fb:66:67:35:e2:33:4b:f1:0f:ed:5d:1d:
88:24:86:cf:f2:d9:52:d0:a6:cf:16:04:c5:7e:bb:
fd:53:a6:75:ec:35:1c:e3:07:b3:b0:92:0d:c2:4c:
5b:6f:0c:58:66:f9:5e:a7:c5:2c:62:33:d2:14:4b:
a9:36:c6:e8:0f:6e:f9:f2:3c:05:04:3a:26:69:0c:
f5:a7:9e:cf:fb:7f:39:73:1b:96:5f:45:46:89:57:
7f:3a:ed:ed:14:c5:81:7c:c2:6a:7d:65:95:13:74:
01:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:55:9E:58:B0:26:F8:45:4C:4E:8B:A9:78:CC:DF:05:51:8F:FF:56
X509v3 Authority Key Identifier:
keyid:AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:ed:6c:80:ee:9d:5d:fb:24:df:79:a5:0d:62:0f:ca:d5:f2:
57:f8:4d:d9:4c:e4:ac:7b:1b:72:1b:9c:d9:a2:01:62:8b:6d:
cd:c2:3a:db:5c:05:84:98:01:c2:25:0a:d6:ed:f9:fd:bc:80:
bd:87:43:d4:3a:c7:10:99:7c:f2:f4:8e:8f:3a:58:7d:f4:08:
d6:ef:12:9e:ea:ec:a3:57:2e:a7:20:70:9f:cf:84:f8:0b:7e:
23:bf:b3:7c:86:10:bd:37:59:de:db:f6:d8:dd:8b:35:df:8e:
3e:25:94:7a:52:ea:ae:4b:56:fb:a2:45:a8:98:e5:85:56:fb:
36:bb:e5:1d:eb:aa:58:0a:16:8d:8f:c0:a8:1e:da:cb:f1:9b:
20:ba:4d:cf:66:c6:6c:b1:e9:fe:00:7f:ed:1d:14:1b:d7:fb:
5b:a6:2d:47:95:7f:43:69:b8:ea:1c:66:f7:b2:98:75:4d:dd:
8a:28:de:88:3e:43:5d:6d:40:fe:00:aa:32:c9:f1:ad:6f:2f:
f1:de:9f:68:fc:6b:07:db:f3:ee:10:13:c3:72:52:b8:b3:7b:
e9:1c:e3:da:92:b2:55:cc:df:55:33:c9:62:4e:24:9c:86:90:
f0:7d:10:a5:e6:be:db:e5:e2:0d:24:1d:55:a7:b9:65:9e:2d:
29:e7:57:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 00:10:06 2025 by rpki-client