Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
File: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft (raw, json)
Hash identifier: 30qUb7A/d+4F6Eyzl23OmrhDklnBi1xdgRH/Uja66W4=
Subject key identifier: C1:1E:CD:75:07:4A:01:E2:11:44:5F:9C:DD:BA:F7:DF:2C:DA:4E:D3
Authority key identifier: 7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79
Certificate issuer: /CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79
Certificate serial: 01992F6C2B4C48C8BE529E1A38D0C737B224
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
Manifest number: 0F51
Signing time: Tue 09 Sep 2025 17:00:42 +0000
Manifest this update: Tue 09 Sep 2025 17:00:42 +0000
Manifest next update: Wed 10 Sep 2025 17:00:42 +0000
Files and hashes: 1: 1skXawq2SahvYTA2mnEOEbVR1u8.roa (hash: nHycrkajnYAr9VibtJNGtsv2Ftb47ENenxgpTd+DfzI=)
2: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl (hash: 6+qn4b6NYiRkuo+gCnVLoTzAf1y4D2pSu31eX3pOCuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 17:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:6c:2b:4c:48:c8:be:52:9e:1a:38:d0:c7:37:b2:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79
Validity
Not Before: Sep 9 17:00:42 2025 GMT
Not After : Sep 10 17:00:42 2025 GMT
Subject: CN=c11ecd75074a01e211445f9cddbaf7df2cda4ed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f2:f8:64:7e:5f:df:8b:df:f6:9d:cb:2e:ea:
bf:06:34:b4:41:e4:a7:9a:24:13:ff:0f:10:fa:d3:
97:81:47:2c:33:4f:61:4f:04:08:82:9e:56:3f:03:
5b:fa:d4:45:0e:2a:2c:ed:cf:9f:af:d8:cf:80:d4:
c1:73:e0:d6:32:82:13:85:02:60:4a:a1:7b:68:ca:
11:89:65:4a:c1:2a:ff:f4:5a:3d:ed:55:3d:b8:df:
aa:17:f8:c2:ce:16:4f:38:08:d8:4a:22:d7:32:d3:
0d:c2:4b:79:f9:a2:65:af:fd:e8:7d:9c:db:f2:9c:
50:bf:ab:be:6b:64:1d:94:e0:8a:0a:d1:58:ba:b1:
43:ab:75:d0:20:3b:88:1b:06:32:48:d1:aa:02:38:
d0:07:9a:2e:eb:8d:d1:f6:71:20:54:3e:c8:5a:b8:
be:d7:6c:ae:af:25:83:f0:37:f1:84:65:27:87:35:
77:ba:5a:5f:1f:7e:9e:63:a7:1b:9d:6f:95:cb:7b:
76:c9:b0:92:6d:c2:88:fe:9c:d9:c7:bb:6a:8b:26:
af:23:fc:d6:51:16:d2:fb:d1:54:0c:07:b1:c1:a6:
e6:88:1e:a7:59:06:55:a4:8e:79:91:16:6c:e0:84:
4c:7f:0f:4c:f3:2a:ab:74:74:67:df:32:d2:f9:1b:
2c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:1E:CD:75:07:4A:01:E2:11:44:5F:9C:DD:BA:F7:DF:2C:DA:4E:D3
X509v3 Authority Key Identifier:
keyid:7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:97:32:3f:e5:62:25:46:fb:74:2a:39:7d:e1:a5:f9:f2:bc:
9d:ec:ed:46:33:36:9a:41:e6:cb:2b:d2:26:f7:45:31:be:a5:
7c:5b:38:98:19:25:e9:51:2f:8d:db:39:96:df:2c:f6:86:3a:
5a:68:93:9f:56:48:90:38:a8:c9:0f:5d:14:6f:70:cf:28:e3:
aa:99:cf:90:50:b8:19:dd:4f:84:73:33:bd:b5:dd:33:1e:e0:
50:48:f0:4f:1b:96:04:46:d5:6c:04:4b:98:ab:1a:1b:fa:a3:
04:89:98:ee:8b:a3:0b:fc:88:20:c8:00:10:d2:09:9e:09:c5:
65:34:5a:a8:7b:38:ed:23:b0:06:69:9d:66:75:de:b2:6a:a0:
29:63:f5:bd:03:78:0e:b9:68:57:47:70:ac:ee:51:bc:04:2f:
f7:61:ee:7f:b0:0c:74:15:48:c6:d6:4e:f7:a4:4a:08:0e:2c:
bc:94:0c:bc:45:12:d8:11:f4:ad:4d:0f:fb:16:96:f4:3d:e2:
62:de:52:17:d0:d3:5f:96:f6:55:b4:e1:21:fb:ca:65:94:8e:
d6:88:aa:cb:d3:4d:69:de:79:12:76:53:4f:36:d9:43:14:2a:
d8:f7:ac:4a:bd:44:c5:48:ad:9b:03:79:f8:50:20:78:51:09:
cc:41:fb:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkvbCtMSMi+Up4aONDHN7IkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNjZkMTllNTM4OGYxMmMxZDI4YTE2YzMyOGQ4NmMzNjRl
OWNjNzkwHhcNMjUwOTA5MTcwMDQyWhcNMjUwOTEwMTcwMDQyWjAzMTEwLwYDVQQD
EyhjMTFlY2Q3NTA3NGEwMWUyMTE0NDVmOWNkZGJhZjdkZjJjZGE0ZWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfL4ZH5f34vf9p3LLuq/BjS0QeSn
miQT/w8Q+tOXgUcsM09hTwQIgp5WPwNb+tRFDios7c+fr9jPgNTBc+DWMoIThQJg
SqF7aMoRiWVKwSr/9Fo97VU9uN+qF/jCzhZPOAjYSiLXMtMNwkt5+aJlr/3ofZzb
8pxQv6u+a2QdlOCKCtFYurFDq3XQIDuIGwYySNGqAjjQB5ou643R9nEgVD7IWri+
12yuryWD8DfxhGUnhzV3ulpfH36eY6cbnW+Vy3t2ybCSbcKI/pzZx7tqiyavI/zW
URbS+9FUDAexwabmiB6nWQZVpI55kRZs4IRMfw9M8yqrdHRn3zLS+RssjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMEezXUHSgHiEURfnN26998s2k7TMB8GA1UdIwQY
MBaAFH1m0Z5TiPEsHSihbDKNhsNk6cx5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9hY2U5YmQtZjMzZC00ODZlLWIzOTQt
ZjBkMDc1YTQzN2YxLzEvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9hY2U5YmQtZjMzZC00ODZlLWIzOTQtZjBkMDc1YTQzN2Yx
LzEvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcpcyP+Vi
JUb7dCo5feGl+fK8neztRjM2mkHmyyvSJvdFMb6lfFs4mBkl6VEvjds5lt8s9oY6
WmiTn1ZIkDioyQ9dFG9wzyjjqpnPkFC4Gd1PhHMzvbXdMx7gUEjwTxuWBEbVbARL
mKsaG/qjBImY7oujC/yIIMgAENIJngnFZTRaqHs47SOwBmmdZnXesmqgKWP1vQN4
DrloV0dwrO5RvAQv92Huf7AMdBVIxtZO96RKCA4svJQMvEUS2BH0rU0P+xaW9D3i
Yt5SF9DTX5b2VbThIfvKZZSO1oiqy9NNad55EnZTTzbZQxQq2PesSr1ExUitmwN5
+FAgeFEJzEH7Qw==
-----END CERTIFICATE-----
Generated at Tue Sep 9 23:49:32 2025 by rpki-client