Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.mft
File: aP4jOevgl_9pirMOW2PswhoqI6s.mft (raw, json)
Hash identifier: BnvSeDdpPzQkkPK2iYfIC4ofQ2p3ZmVOF5SKTnerQlk=
Subject key identifier: A4:A3:55:82:8C:FE:91:F4:F6:B0:8D:87:92:EB:A4:1A:E0:C0:75:4B
Authority key identifier: 68:FE:23:39:EB:E0:97:FF:69:8A:B3:0E:5B:63:EC:C2:1A:2A:23:AB
Certificate issuer: /CN=68fe2339ebe097ff698ab30e5b63ecc21a2a23ab
Certificate serial: 0198C6EE668CBE2D175399595A9AFAA3A381
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aP4jOevgl_9pirMOW2PswhoqI6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.mft
Manifest number: 050A
Signing time: Wed 20 Aug 2025 10:02:49 +0000
Manifest this update: Wed 20 Aug 2025 10:02:49 +0000
Manifest next update: Thu 21 Aug 2025 10:02:49 +0000
Files and hashes: 1: 9V1tND3zl52dvTGUP5zkoYgjSzk.roa (hash: ZFwBT8PQBALn0UQygkKFbmysfnKpnWDyHSFsXkqI3os=)
2: aP4jOevgl_9pirMOW2PswhoqI6s.crl (hash: ibGNnGyS/4e5V/+nZneTfb2gauP9ONzJx4zyw+gJwW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aP4jOevgl_9pirMOW2PswhoqI6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c6:ee:66:8c:be:2d:17:53:99:59:5a:9a:fa:a3:a3:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68fe2339ebe097ff698ab30e5b63ecc21a2a23ab
Validity
Not Before: Aug 20 10:02:49 2025 GMT
Not After : Aug 21 10:02:49 2025 GMT
Subject: CN=a4a355828cfe91f4f6b08d8792eba41ae0c0754b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c0:8b:2b:ae:61:a7:6c:3f:67:f4:a9:e2:36:
ef:ad:cc:e8:01:9e:f8:da:a6:f6:62:d1:43:6b:f1:
23:3c:d3:9f:43:6e:0f:35:cf:42:de:68:a1:2d:60:
03:a3:84:3e:79:dc:09:56:f1:5e:67:f2:aa:b4:89:
03:6b:6e:57:91:0c:e8:aa:1d:7d:ff:3c:9f:77:85:
26:dd:7c:9d:df:16:cc:14:ba:4e:4e:30:9a:89:23:
21:12:ea:4a:99:ee:f4:a7:e5:79:01:4c:35:98:1d:
ce:cd:11:8e:b8:bd:ec:81:91:56:e1:1b:f7:0e:fd:
f0:82:ee:28:2f:a3:6f:94:a7:9f:87:6a:e9:a9:21:
8c:a7:15:56:8a:7f:9e:cd:54:4d:2a:19:4b:a4:41:
34:03:63:1a:46:80:60:61:d5:a2:8c:3b:ae:59:46:
47:eb:a4:0c:45:c8:aa:c1:67:31:4f:a0:3d:06:dc:
d4:43:71:3c:21:4e:00:b5:cb:b2:14:53:10:b7:60:
66:fd:a9:7d:5c:aa:ed:7d:5c:9d:7c:51:f9:63:7a:
4c:35:a9:d7:4a:00:2a:d7:f1:08:8c:41:c7:2f:0d:
91:b4:d5:85:7c:68:c5:35:77:bf:65:2e:af:3c:b3:
32:b1:a9:76:c6:77:da:44:71:0e:7b:d7:b4:89:99:
3b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A3:55:82:8C:FE:91:F4:F6:B0:8D:87:92:EB:A4:1A:E0:C0:75:4B
X509v3 Authority Key Identifier:
keyid:68:FE:23:39:EB:E0:97:FF:69:8A:B3:0E:5B:63:EC:C2:1A:2A:23:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aP4jOevgl_9pirMOW2PswhoqI6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:b9:40:b2:1a:a3:bd:e2:96:d6:15:cc:ae:d5:4a:82:64:1b:
61:b6:d6:cb:10:5c:f4:0c:a3:4b:20:fd:97:b3:30:9d:ac:e4:
82:6d:c0:ae:d6:16:09:45:d4:b9:36:03:b9:4c:1a:30:dd:f6:
e0:52:be:e4:bb:73:ed:db:5b:1e:2c:80:41:8f:1b:a9:5c:0c:
ae:f3:e9:7f:48:f3:60:25:5d:72:9f:52:1c:86:ce:91:85:11:
c6:b9:08:3d:6d:ec:bf:c6:e7:84:e6:f3:3f:07:1c:e4:ec:04:
fa:99:79:09:30:a4:c5:98:7c:67:b1:67:f5:f4:84:8d:2f:e8:
4a:cc:30:c7:67:3e:d4:e8:53:10:45:59:1a:41:4a:83:43:a5:
a1:0a:8c:8c:a5:5f:74:ea:bd:d9:6e:80:14:e8:41:b2:04:af:
b0:e5:76:2b:70:3f:fd:68:7f:e4:19:dd:b5:c6:50:1b:05:4e:
ca:53:70:51:2b:de:49:2f:91:a0:0a:4c:fa:45:58:db:94:c9:
0b:d4:7d:f4:61:5d:92:03:ac:37:7c:12:a0:ff:83:8d:ea:00:
f4:fd:96:4a:b9:b8:29:0b:79:a3:bb:50:3c:f1:34:2f:f1:a3:
b6:9a:56:47:af:62:d1:94:75:67:cf:28:50:4d:c6:c1:fd:cc:
78:26:db:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 20 13:40:32 2025 by rpki-client