Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft
File: 25ebiYwPWDTLyDimmgXjq-jAKQM.mft (raw, json)
Hash identifier: K0oaGEbKF95+qdxtJoZ1D1GffTAV0+rDLUMmLGd+uqE=
Subject key identifier: 6A:D4:B3:56:BC:5C:F3:EA:F8:98:0C:FB:4B:0C:7A:F7:3E:EC:42:5F
Authority key identifier: DB:97:9B:89:8C:0F:58:34:CB:C8:38:A6:9A:05:E3:AB:E8:C0:29:03
Certificate issuer: /CN=db979b898c0f5834cbc838a69a05e3abe8c02903
Certificate serial: 0199590CB5F5CE1C2E0BAE3A653CA6BD1939
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft
Manifest number: 0A20
Signing time: Wed 17 Sep 2025 19:00:29 +0000
Manifest this update: Wed 17 Sep 2025 19:00:29 +0000
Manifest next update: Thu 18 Sep 2025 19:00:29 +0000
Files and hashes: 1: 25ebiYwPWDTLyDimmgXjq-jAKQM.crl (hash: cMFxn4rB9sqMUA2561MaInegtKNusEMgl7XdYVB5Tlg=)
2: kQI24cv0NZjcs-NoEtkNWQr945M.roa (hash: lv4kdfvUyBf5e1wmjHgM1hbCJlTmhLUys8Yvw75WiAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Sep 2025 15:33:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:59:0c:b5:f5:ce:1c:2e:0b:ae:3a:65:3c:a6:bd:19:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db979b898c0f5834cbc838a69a05e3abe8c02903
Validity
Not Before: Sep 17 19:00:29 2025 GMT
Not After : Sep 18 19:00:29 2025 GMT
Subject: CN=6ad4b356bc5cf3eaf8980cfb4b0c7af73eec425f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:75:0d:96:04:3c:17:a9:33:6c:da:3a:db:05:
ef:bd:a2:6a:63:b4:f1:7a:e1:f1:7c:91:5e:32:36:
03:11:a3:89:9b:8b:21:68:c5:05:73:27:71:54:64:
7a:62:5d:2a:51:97:bd:7d:40:17:27:ad:41:82:6c:
eb:2d:1a:87:44:ba:ff:44:5f:24:16:5e:1a:55:ec:
c1:1b:57:56:4a:34:48:9c:0b:e8:a0:8d:3e:b3:de:
06:f2:07:56:98:c4:9f:22:65:9f:cf:98:29:42:a3:
3b:72:1a:c7:e2:90:3e:ed:dd:29:a9:bd:a8:99:71:
56:63:cd:de:8d:15:4a:25:b5:9f:ae:c7:5b:c5:a6:
1a:aa:be:41:dc:e4:15:89:20:3c:7a:c5:a1:c3:6b:
ad:88:79:a1:cf:7c:e6:9b:3c:89:26:2b:d3:cc:db:
04:ef:b4:1d:5b:c3:28:d6:ab:c0:03:f8:57:e0:1f:
3a:4a:b0:1e:d7:91:29:d3:4e:8d:e2:8d:80:fe:31:
b5:25:db:02:ba:9f:76:fc:a5:68:3a:42:2d:a5:e3:
a9:3c:72:8d:ad:92:da:58:60:4e:f3:80:83:04:bc:
2e:17:b8:be:0a:bd:95:24:4b:7c:cd:aa:bb:fa:a3:
e9:25:ed:f1:b0:46:f3:09:7e:e3:f4:8f:85:0b:8d:
41:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:D4:B3:56:BC:5C:F3:EA:F8:98:0C:FB:4B:0C:7A:F7:3E:EC:42:5F
X509v3 Authority Key Identifier:
keyid:DB:97:9B:89:8C:0F:58:34:CB:C8:38:A6:9A:05:E3:AB:E8:C0:29:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:8b:51:b9:ca:4e:11:3a:ed:d1:7e:09:e7:52:bb:3c:15:75:
a3:a4:1c:29:ba:78:b1:16:70:f4:1f:ab:31:d9:2f:1d:29:e3:
67:63:8d:91:c9:14:20:02:43:04:ca:94:05:13:44:4e:d1:7c:
a9:45:c0:d0:0c:19:7c:95:47:0e:02:8f:a9:6f:34:c6:3d:59:
b9:0b:98:d0:e1:b9:e3:5a:52:23:2c:6a:26:66:e0:75:a3:81:
e0:d6:07:1d:0f:9e:1a:ee:94:bf:33:fc:f2:2a:e6:5f:3f:9f:
4e:aa:18:99:7a:8c:98:8c:95:1d:4a:5d:7f:9b:7b:41:13:a7:
b2:a2:31:a1:f9:8c:70:7f:a0:58:22:4d:74:74:4f:e9:24:74:
67:5c:0b:b9:3c:94:dd:f8:68:fd:10:e1:bf:59:1c:3a:c1:c7:
f5:32:00:46:d3:f1:b6:44:fb:4e:23:ed:57:a9:37:e2:d5:81:
8a:92:24:51:db:46:97:c6:e2:01:07:57:4a:a2:0b:ae:db:53:
5c:de:7e:5b:07:c2:ae:35:98:8c:ce:0f:98:25:67:03:e1:60:
5e:c6:52:12:d1:92:47:c0:fd:dc:9c:2e:97:cf:9c:b0:23:4a:
9c:aa:fc:dc:ec:d6:0f:b6:41:73:d2:19:94:e2:42:0a:55:9b:
af:a7:28:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 17 21:51:43 2025 by rpki-client