Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
File: 86GuCwfNBe4khPTuvNRWhHNHNBQ.mft (raw, json)
Hash identifier: l00smfQIMoXLdNjOwhQvhSG0tBuMhUbR856wIA8loGA=
Subject key identifier: 17:C1:27:67:4C:DC:F6:FD:04:85:02:AF:A9:10:38:92:D6:3F:AB:6B
Authority key identifier: F3:A1:AE:0B:07:CD:05:EE:24:84:F4:EE:BC:D4:56:84:73:47:34:14
Certificate issuer: /CN=f3a1ae0b07cd05ee2484f4eebcd4568473473414
Certificate serial: 0199221EAA17A688947A0FC1B4706AF9B587
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
Manifest number: 1675
Signing time: Sun 07 Sep 2025 03:00:58 +0000
Manifest this update: Sun 07 Sep 2025 03:00:58 +0000
Manifest next update: Mon 08 Sep 2025 03:00:58 +0000
Files and hashes: 1: 0yNiuwlEmaGi-GMVCrhtb0jD684.roa (hash: 0JYmDVSwa/kA2DCdsSlQFjDnGZq4KcJ5IykJE11qOfk=)
2: 86GuCwfNBe4khPTuvNRWhHNHNBQ.crl (hash: 3amOmWL8ty+O3o68an+b1ncr3agirOxQ1Bn4i5n/uVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:aa:17:a6:88:94:7a:0f:c1:b4:70:6a:f9:b5:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3a1ae0b07cd05ee2484f4eebcd4568473473414
Validity
Not Before: Sep 7 03:00:58 2025 GMT
Not After : Sep 8 03:00:58 2025 GMT
Subject: CN=17c127674cdcf6fd048502afa9103892d63fab6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3e:cc:6a:f8:47:48:ac:2c:0d:42:84:f7:ef:
30:fc:a1:f9:a1:34:be:e3:b0:c3:cd:a3:7a:7a:92:
86:b1:f0:bb:ed:67:dd:3c:a7:10:db:1f:fe:b0:63:
98:ee:55:13:ef:73:90:fd:c1:c7:76:b4:6e:44:dd:
93:e5:a0:2a:fe:7b:6f:7f:48:55:18:78:5a:14:ff:
19:58:17:f9:3b:cf:34:06:ee:1f:2d:c3:57:25:eb:
ea:cb:1e:e4:f4:a1:d4:28:fb:9c:e5:5f:17:28:81:
7e:ce:8e:2e:f4:dc:a5:4b:92:46:2d:70:61:62:07:
60:4c:0a:8f:62:4a:15:f5:0a:59:23:0e:d6:c6:a5:
3a:3c:59:8b:ae:60:4a:43:e0:41:51:f3:f4:e6:1f:
d9:62:a7:49:3e:12:a7:2b:90:83:9e:7f:2b:a2:06:
0c:c6:e5:73:34:e3:6d:99:f2:7c:3a:e2:b2:1c:e8:
9c:ec:66:6f:f3:44:f8:29:5a:cf:4d:17:ff:52:cd:
39:dc:64:07:cb:86:1c:9c:56:0c:f7:7b:a7:fb:5f:
b4:58:2e:29:50:d5:c3:3d:ec:e1:c0:98:9b:1f:9e:
dd:a2:d9:85:47:1a:22:cf:67:87:57:ea:c9:14:a9:
ba:39:d7:25:42:f8:bf:d6:3d:a2:a4:0d:83:ea:1c:
2b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:C1:27:67:4C:DC:F6:FD:04:85:02:AF:A9:10:38:92:D6:3F:AB:6B
X509v3 Authority Key Identifier:
keyid:F3:A1:AE:0B:07:CD:05:EE:24:84:F4:EE:BC:D4:56:84:73:47:34:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:92:7d:ba:b2:01:d7:07:54:99:39:27:86:6f:bb:46:07:4a:
0a:9d:ce:5a:61:a9:81:df:a9:89:ae:2e:65:27:ed:78:b3:c5:
51:f4:ed:99:d9:1b:26:16:53:51:8b:70:d1:01:f0:52:28:a7:
a7:c3:5e:44:f0:28:ee:a7:ea:a7:6c:88:c2:21:71:09:c1:4e:
07:07:2f:ab:b8:05:92:1f:a2:bc:d2:c7:b6:21:66:2a:c6:ae:
e9:2d:21:73:e5:39:cb:61:54:e0:4c:36:26:cb:af:60:80:f8:
a5:cd:8f:08:c3:0e:50:26:30:39:1c:e0:62:67:4e:6b:ed:f3:
11:2c:17:46:c1:e1:4d:3c:5b:36:57:ee:e1:d2:af:0a:fa:c8:
35:03:90:83:a5:b3:80:80:0a:5e:9a:1a:83:84:36:eb:2e:d0:
86:73:6b:cf:37:cd:12:ae:80:84:ac:fe:6c:8a:e7:f3:80:2c:
7a:38:06:04:65:04:13:10:e3:0a:9c:5a:bb:75:75:24:7c:38:
b5:ab:d2:ce:6e:f2:03:59:28:cf:eb:ff:0f:59:eb:a5:64:ff:
09:60:df:b1:d9:17:e0:b0:fa:99:8f:d8:79:d1:c2:9c:cf:a9:
e7:05:57:c5:06:d1:d9:3e:f0:38:3a:9b:28:d1:9e:9b:6f:bc:
8f:97:66:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:31:05 2025 by rpki-client