Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
File: rtyPMnpGGWTAqHqceAlAHFfIbUE.mft (raw, json)
Hash identifier: cdmSvQLsBSYLbZ2AQ6MtieD4ewnhhLUYCTOyClkm764=
Subject key identifier: 0C:9C:ED:D9:97:3D:90:B5:BC:AC:AE:03:1F:16:C6:F2:B7:F6:B1:CF
Authority key identifier: AE:DC:8F:32:7A:46:19:64:C0:A8:7A:9C:78:09:40:1C:57:C8:6D:41
Certificate issuer: /CN=aedc8f327a461964c0a87a9c7809401c57c86d41
Certificate serial: 0198CA5B88F4800B8E4D44F24CD25EF18826
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
Manifest number: 1643
Signing time: Thu 21 Aug 2025 02:00:53 +0000
Manifest this update: Thu 21 Aug 2025 02:00:53 +0000
Manifest next update: Fri 22 Aug 2025 02:00:53 +0000
Files and hashes: 1: 2r5V-jLaZB51UHtAh-bFMsh9deI.roa (hash: MKCPJpuTtJZg9qISSN6i7GBsMIxb/Qe56YUG3zY4d1Q=)
2: rtyPMnpGGWTAqHqceAlAHFfIbUE.crl (hash: yQS9bmri0nDYce1j7EAmFhne2rCHlKUyQtYt1qix8BA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 23:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:ca:5b:88:f4:80:0b:8e:4d:44:f2:4c:d2:5e:f1:88:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedc8f327a461964c0a87a9c7809401c57c86d41
Validity
Not Before: Aug 21 02:00:53 2025 GMT
Not After : Aug 22 02:00:53 2025 GMT
Subject: CN=0c9cedd9973d90b5bcacae031f16c6f2b7f6b1cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e1:01:14:7c:8e:26:32:64:f5:c4:e3:5c:9a:
11:9c:d7:84:68:6e:3d:09:14:8a:a0:b7:04:65:ec:
01:16:5e:af:61:a8:bc:1c:44:85:bd:fb:e0:5a:4e:
e4:59:d4:d4:c4:0e:11:58:5d:99:cd:00:63:f2:02:
b1:f8:dc:ea:cd:06:cd:b2:b0:7b:6a:4d:a3:e8:20:
06:a7:2b:1c:ad:b3:a3:ec:68:cd:a4:aa:d5:fe:07:
23:e6:d5:cd:4c:4c:bf:c2:3f:bf:58:8f:a3:74:1c:
7a:d3:1a:91:22:0f:e9:be:39:12:84:d4:9d:0f:62:
d8:c5:d2:be:5e:9d:c9:24:e4:b7:f9:2b:63:63:66:
93:70:06:7a:25:de:43:3e:67:ca:1e:1e:31:5f:b7:
4f:0d:ee:a5:3a:03:7f:90:22:34:2d:8e:98:4b:68:
05:12:4c:c3:66:f0:86:27:89:9c:9a:79:46:85:3f:
3f:a5:77:58:18:d2:59:aa:2c:50:d7:8a:9a:01:6a:
69:d5:7f:c5:48:be:c3:49:30:50:da:b7:43:df:14:
ad:ad:fd:17:b8:88:bf:a9:ed:6f:0d:49:92:86:e7:
ec:34:0e:43:ea:e4:fe:f3:db:52:e4:be:50:58:06:
ee:36:3c:41:8c:98:c5:50:a2:79:4a:21:63:3a:08:
79:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:9C:ED:D9:97:3D:90:B5:BC:AC:AE:03:1F:16:C6:F2:B7:F6:B1:CF
X509v3 Authority Key Identifier:
keyid:AE:DC:8F:32:7A:46:19:64:C0:A8:7A:9C:78:09:40:1C:57:C8:6D:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtyPMnpGGWTAqHqceAlAHFfIbUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0dc52-416e-4a02-8993-fbc5a1e382c5/1/rtyPMnpGGWTAqHqceAlAHFfIbUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:fb:b2:79:dd:b4:fd:33:76:a4:f6:c4:e7:1b:0e:5f:de:b9:
cb:ea:64:dd:f4:32:78:7b:78:06:6f:53:c7:b0:72:fe:90:0e:
35:5b:c8:0e:14:9b:71:b6:b0:74:fc:64:7b:eb:a7:7e:ed:f2:
97:b4:fd:02:be:55:92:09:29:b6:44:66:41:11:66:84:7b:8a:
ee:af:74:e4:dc:71:69:1e:9f:10:57:6c:6a:32:05:f7:c8:da:
6f:3c:bc:fa:4b:bc:26:22:97:95:99:53:09:8b:7d:df:e0:28:
8a:9e:ea:31:56:c9:0a:6c:a0:dd:12:36:1c:27:0f:01:e7:4b:
4a:68:e7:93:d2:3a:f6:ce:3f:94:19:63:b3:75:cc:1a:23:c8:
c3:91:63:29:e9:76:cd:59:30:55:92:fc:41:e3:02:da:f0:75:
65:ff:e5:19:a9:df:34:a3:c7:e6:5e:02:84:c8:7f:4a:90:14:
42:cf:78:a3:e5:71:d8:0d:16:96:bc:50:4a:76:db:47:00:17:
37:fd:79:cf:fa:bf:92:ca:2e:f0:af:94:1e:24:33:87:70:e0:
f6:69:f0:d6:1c:ba:70:de:dd:a0:d4:b8:27:e2:0c:15:05:17:
74:ab:f0:04:b3:70:33:51:80:70:0a:fd:40:3a:b6:be:bd:5e:
b5:24:98:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 07:54:44 2025 by rpki-client