Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
File: cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft (raw, json)
Hash identifier: uHSd4Qipco4hqBpsEnEdpyjI+rXy9cB9EIsOIgZB1lQ=
Subject key identifier: F2:22:72:8C:49:A4:AA:FE:4F:9B:09:3A:EB:F4:A9:D8:BC:5B:69:F5
Authority key identifier: 70:80:29:A6:74:17:7E:FD:99:25:22:75:09:46:18:C0:C9:CF:BD:1D
Certificate issuer: /CN=708029a674177efd99252275094618c0c9cfbd1d
Certificate serial: 019927B297E7DBC405DF4F5B1224481D369F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
Manifest number: 063F
Signing time: Mon 08 Sep 2025 05:00:39 +0000
Manifest this update: Mon 08 Sep 2025 05:00:39 +0000
Manifest next update: Tue 09 Sep 2025 05:00:39 +0000
Files and hashes: 1: cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl (hash: /aNQpbQcDwRXbXpf2XEE0NDAYcZikGt9nWtip7wr1nQ=)
2: gf0Xy6qbBLzQzsLjIlFfh_7JZjk.roa (hash: Ah/uhPrNkgzcI+es99gluPPaRScN93x4JTQmt+pb9V0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 01:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:27:b2:97:e7:db:c4:05:df:4f:5b:12:24:48:1d:36:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=708029a674177efd99252275094618c0c9cfbd1d
Validity
Not Before: Sep 8 05:00:39 2025 GMT
Not After : Sep 9 05:00:39 2025 GMT
Subject: CN=f222728c49a4aafe4f9b093aebf4a9d8bc5b69f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:07:40:42:5f:e7:4e:c1:e0:ab:ce:2b:e3:e5:
7e:df:a3:18:b6:27:ac:f6:96:03:2c:f1:b5:a0:8c:
6f:09:a6:b0:88:a9:21:b2:1a:2c:d0:61:08:7c:2d:
e9:96:21:a9:0c:58:2b:c0:4f:a4:6c:29:39:21:60:
9d:29:a3:49:da:fc:de:d2:46:80:9a:e9:7a:16:d2:
97:47:0c:9f:95:48:4d:05:bb:68:73:38:8f:90:cd:
d4:a8:53:6e:4e:dc:44:c0:fa:8d:9f:4e:92:25:62:
7d:7a:28:82:26:39:dc:46:64:8f:85:c1:ea:11:6c:
12:8f:a6:de:ef:2f:e0:2f:2a:3d:69:bb:e7:cb:e1:
3d:04:36:63:3c:1e:1e:38:72:49:9c:94:e4:e1:5b:
9d:47:d3:3a:e7:68:42:01:bb:e5:22:9e:0a:fe:e0:
aa:64:38:5c:0a:2b:97:cd:56:a8:2f:7d:d1:60:f0:
d2:e1:80:7c:f3:2d:2f:1f:b0:66:74:b3:da:82:21:
46:f6:ef:92:1d:0c:dc:cf:3b:20:a6:f5:e3:e3:cf:
5a:59:8b:34:98:03:11:30:e4:68:69:a8:1f:8c:2f:
7d:a1:7a:51:3f:b9:21:89:3b:a6:23:58:15:a4:f1:
7b:c0:d2:f4:0c:dd:72:e2:79:16:e9:da:b8:52:82:
43:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:22:72:8C:49:A4:AA:FE:4F:9B:09:3A:EB:F4:A9:D8:BC:5B:69:F5
X509v3 Authority Key Identifier:
keyid:70:80:29:A6:74:17:7E:FD:99:25:22:75:09:46:18:C0:C9:CF:BD:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:1d:8f:73:86:71:01:98:15:33:ef:33:e3:30:01:9c:7c:df:
9e:f8:a4:11:93:6b:ef:d9:57:f7:1b:e0:56:cf:dc:46:a2:e1:
c3:70:93:c0:88:28:f6:22:cf:19:08:72:ca:f5:94:97:a3:54:
dc:0e:5c:28:e6:fd:13:ac:ce:dc:30:21:09:f8:f2:0f:88:00:
46:4d:49:36:61:18:f3:12:20:aa:24:8c:1c:0f:2f:db:7e:65:
ea:ac:0a:91:52:39:06:7f:48:a5:73:c4:65:73:7c:8c:12:41:
f2:35:22:31:c5:3a:3a:e3:3b:47:5f:29:37:79:e0:07:29:06:
51:e1:c6:5e:58:b9:5b:d2:8c:10:9b:f7:ff:03:f6:c6:ab:56:
3a:06:94:6f:2b:b2:5d:63:c4:32:94:99:e7:90:41:3f:29:d8:
a8:49:4f:59:7d:54:f7:da:8f:8c:4f:da:3e:d6:4c:e0:9d:f2:
85:db:37:e5:06:d5:a0:4a:93:ad:56:dc:a1:a1:d9:3d:91:79:
e3:8e:da:88:37:80:c0:46:71:59:c3:da:cb:56:d1:da:15:92:
aa:31:6f:d4:f6:1b:b0:3a:5a:ab:0d:d9:35:73:01:a1:a5:83:
ec:21:a4:04:15:79:1f:d7:df:1b:7d:95:44:9e:ef:a4:f1:2e:
c1:7b:88:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 08:53:31 2025 by rpki-client