Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
File: _o6FIymApj8NTfWwSRY-P9AvVLM.mft (raw, json)
Hash identifier: lCS68UEApOIHbUrfFTgzGWn3T7TxrDKErW9w0EkHVz0=
Subject key identifier: B0:1B:0D:7B:77:B5:63:02:FF:C4:39:11:F6:8E:06:B0:8D:DD:AA:8E
Authority key identifier: FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
Certificate issuer: /CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Certificate serial: 0199240D5D6A6A94C57DB1AAAD48AEFF6337
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
Manifest number: 0AEA
Signing time: Sun 07 Sep 2025 12:01:19 +0000
Manifest this update: Sun 07 Sep 2025 12:01:19 +0000
Manifest next update: Mon 08 Sep 2025 12:01:19 +0000
Files and hashes: 1: 7IkFNxuEd7zYMJ5GFmWYCrb0D3k.roa (hash: EbQqPJKQBhTvoE7/qrp3Wi8FH8cq4X28q+E9y9x/db0=)
2: _o6FIymApj8NTfWwSRY-P9AvVLM.crl (hash: KPzpDrQuaI1VP7HucvMOGNRkgev7o+RbmU+OfgcciG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:5d:6a:6a:94:c5:7d:b1:aa:ad:48:ae:ff:63:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Validity
Not Before: Sep 7 12:01:19 2025 GMT
Not After : Sep 8 12:01:19 2025 GMT
Subject: CN=b01b0d7b77b56302ffc43911f68e06b08dddaa8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:25:06:da:41:94:6b:55:e8:cf:2a:6e:1c:6d:
24:aa:61:08:f1:3c:4c:df:27:94:3c:19:a5:96:b3:
60:4a:09:75:70:28:be:00:eb:9c:d8:4f:91:cc:21:
40:97:ac:05:52:48:79:0a:25:ca:77:61:df:5f:16:
e8:37:2b:9a:66:3b:67:de:98:6e:9b:00:82:6a:4d:
85:54:93:8c:3b:57:d4:c0:0d:11:18:5d:86:82:ba:
2c:c4:b9:e4:bd:0f:3a:63:5d:38:f2:0c:d4:3a:9f:
ca:37:6c:8a:52:19:e3:6f:3a:81:af:a7:c4:de:67:
f0:b6:46:ee:43:75:e8:06:38:00:a2:42:1f:2a:98:
29:b0:d4:ce:b8:91:bf:15:f6:2a:ef:bc:44:69:0c:
4f:e9:79:dc:ee:be:0a:47:b4:b6:5b:70:72:90:93:
d0:82:1c:a6:63:cb:35:a7:b7:09:b8:7a:eb:81:20:
0c:8f:97:13:5f:11:79:23:08:ee:a8:e7:52:35:9e:
52:88:ff:88:0e:be:f2:f5:26:64:f6:48:84:c1:60:
1b:f7:33:d1:91:64:64:d0:1e:68:a1:9e:d4:2e:89:
ab:3e:bf:55:0a:83:e3:28:a3:1f:b0:f8:fe:04:5d:
32:99:99:1d:ad:f6:95:7e:bb:e9:dd:26:95:c5:3a:
71:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:1B:0D:7B:77:B5:63:02:FF:C4:39:11:F6:8E:06:B0:8D:DD:AA:8E
X509v3 Authority Key Identifier:
keyid:FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:67:bf:84:46:6e:c0:bc:d8:27:b5:88:82:28:b5:c0:cd:39:
81:5d:6b:29:ae:ca:b0:85:1a:93:cf:c4:49:03:39:b0:56:ca:
e0:8b:36:40:06:4b:04:ba:83:8a:2d:e2:d6:99:fa:6b:45:5b:
88:ed:26:07:55:e6:1a:ab:d9:42:ab:5f:e3:02:e5:9a:2c:8c:
c2:5b:75:8c:7b:03:70:f0:27:25:c2:63:78:66:eb:f1:e4:dd:
99:d1:6c:ee:c7:d3:54:91:2d:aa:9c:a9:40:14:92:83:ff:51:
0a:8a:5b:ff:71:38:4b:1d:09:89:15:69:32:67:3b:d7:e3:98:
f9:fa:1a:ea:11:f6:bd:5e:f2:e3:15:08:8a:b3:03:3a:ca:db:
45:3e:9a:ab:ea:52:94:00:d2:41:96:00:35:ff:52:9d:aa:e9:
99:a7:d8:9d:d7:71:88:60:43:1a:40:60:9f:53:47:d9:55:e5:
be:e5:c2:3e:a3:9a:2e:3e:15:f6:17:a8:31:c9:d9:5c:92:20:
0c:0e:09:b8:13:5e:c5:b6:8a:da:dc:ca:c5:62:ae:fa:2f:bf:
66:01:82:85:35:15:bd:de:74:d0:d6:76:6f:57:69:f8:e4:2e:
78:e7:e3:51:84:36:54:05:fe:e3:91:07:7e:52:b9:69:e9:c2:
4d:06:17:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:44:23 2025 by rpki-client