Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
File: fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft (raw, json)
Hash identifier: hW9thjRmWkrjbdtLQYAMEHdDKHRR7y3dwDwLHyeepjI=
Subject key identifier: 8B:35:5F:AF:89:A7:2B:47:D2:86:47:13:63:4A:E7:37:87:C4:C8:79
Authority key identifier: 7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
Certificate issuer: /CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Certificate serial: 019956E8A57DBD6571439B94153ECE28B846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
Manifest number: 168A
Signing time: Wed 17 Sep 2025 09:01:51 +0000
Manifest this update: Wed 17 Sep 2025 09:01:51 +0000
Manifest next update: Thu 18 Sep 2025 09:01:51 +0000
Files and hashes: 1: JcAhZrilsZkvSyojajHWDjOF_6I.roa (hash: W7eqhWRP/GcuUd5Q71f0zaMk5StnfS4hfdbNGseVYE0=)
2: fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl (hash: pZfiO1uaQt22q/MGXUiczh3s8dyjeVOqYYUqx88uYzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Sep 2025 09:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:56:e8:a5:7d:bd:65:71:43:9b:94:15:3e:ce:28:b8:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Validity
Not Before: Sep 17 09:01:51 2025 GMT
Not After : Sep 18 09:01:51 2025 GMT
Subject: CN=8b355faf89a72b47d2864713634ae73787c4c879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5d:b0:0c:ed:f7:51:61:06:34:d2:f8:2e:ea:
f7:a0:a1:e7:9e:14:2f:31:73:c7:46:20:d2:3e:59:
d3:9d:79:28:c8:c7:d9:37:be:3f:c8:e8:4d:f3:db:
ad:b3:fe:76:52:c0:36:b0:c4:b6:8e:58:45:82:86:
38:b7:5f:5a:3d:51:40:f0:f4:13:11:81:d7:aa:24:
b0:d6:1f:f3:b0:9e:47:e1:47:a8:40:35:67:59:35:
08:1f:c4:27:b0:03:16:b8:a0:db:cc:2b:5c:64:7f:
b4:09:d1:8a:0f:af:cf:36:1f:4e:e1:18:87:75:48:
e0:d4:b1:24:42:20:76:39:17:79:34:4a:61:04:24:
70:a0:22:f7:ac:f5:12:99:8a:47:d5:b3:17:c5:05:
9f:37:92:88:b7:0e:51:28:d9:ca:aa:c6:82:bc:a9:
18:ac:9b:06:44:a6:61:40:76:1c:d6:df:84:c7:d2:
75:9a:47:d4:9a:98:b5:b9:69:14:fd:58:99:e9:40:
51:d7:fa:2f:b5:49:5f:ff:42:dd:e0:4f:97:6c:e0:
09:aa:a9:9b:5c:36:43:b1:7b:0c:ff:e4:0f:fe:76:
9b:90:ca:cd:2c:ad:f7:44:96:98:8c:05:3d:8b:64:
29:3f:26:a8:ba:7c:37:f7:77:9f:b3:2b:cc:fc:27:
94:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:35:5F:AF:89:A7:2B:47:D2:86:47:13:63:4A:E7:37:87:C4:C8:79
X509v3 Authority Key Identifier:
keyid:7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:8c:7a:eb:f0:1b:b9:1b:04:b7:8b:94:25:82:5f:15:93:e8:
b6:d2:4e:74:c0:52:1b:05:ea:27:e4:95:e5:44:23:e0:da:6a:
90:b7:6c:a1:ed:dd:8b:d2:3e:db:49:5f:55:b3:da:2f:60:4e:
e8:8f:66:ff:bc:4b:12:59:9a:91:45:9e:0a:5e:f6:e6:40:c0:
72:0b:c1:7f:4b:f8:b1:04:01:2c:21:96:66:81:ae:62:8b:84:
d5:67:61:27:d3:82:c5:91:f2:4c:e9:a9:ab:12:86:c6:a2:ce:
06:02:a1:91:98:51:58:9f:19:a1:ea:f2:fe:ea:91:db:e1:94:
a0:e4:e5:76:9d:ee:14:0f:81:bc:0b:fc:9d:f7:8d:cd:34:4a:
82:db:45:83:67:6b:8b:f8:27:11:22:a4:cf:77:03:83:a2:81:
2a:47:d0:80:e7:83:57:72:88:23:fe:2c:28:46:c8:ef:63:b3:
1b:f9:37:bb:15:a7:a2:93:b0:d6:18:36:a5:ea:78:69:39:77:
7f:8d:7c:38:70:c1:ee:97:6a:af:13:3d:ee:3b:2b:d4:b3:86:
39:1d:d5:d5:9d:15:d9:da:dd:85:ab:28:c7:ba:db:ed:1c:65:
f4:d9:e4:89:c7:90:66:4e:53:78:6b:75:d8:3e:a8:21:79:06:
f5:43:f9:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 17 17:01:10 2025 by rpki-client