Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json)
Hash identifier: 83slJGa4nSYr1rT59ZeBqWhqw2ZZ6Yy7UTsUR/TkY/I=
Subject key identifier: FD:17:5E:9A:DE:48:F2:92:1A:94:47:20:1C:8F:FF:1B:03:1F:02:3F
Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Certificate serial: 01993502118782C5107BAED90A411BDC494D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
Manifest number: 0D61
Signing time: Wed 10 Sep 2025 19:02:31 +0000
Manifest this update: Wed 10 Sep 2025 19:02:31 +0000
Manifest next update: Thu 11 Sep 2025 19:02:31 +0000
Files and hashes: 1: 1-boXqKY_Hyoe19Z5JIZ3K6AJj94.roa (hash: a5qc0h3BhqmeqSpAZh7GFmd10hjtqvPl4/lqfepgblo=)
2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: 1L7wG8YZ1PVrcFI1dCKy034pBgBk1RAzhfm0V738Ufo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 19:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:02:11:87:82:c5:10:7b:ae:d9:0a:41:1b:dc:49:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Validity
Not Before: Sep 10 19:02:31 2025 GMT
Not After : Sep 11 19:02:31 2025 GMT
Subject: CN=fd175e9ade48f2921a9447201c8fff1b031f023f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:62:70:35:8b:f8:58:4a:e6:2d:0b:42:1b:1a:
5d:89:4a:88:d5:e8:8a:19:d2:45:dd:8f:95:fd:0f:
b6:ce:54:64:a7:d4:3b:a4:01:66:9a:41:eb:e1:93:
a0:a1:41:73:09:48:ea:c1:84:9b:a8:06:32:40:bf:
07:75:fa:9f:56:5a:66:3c:ad:e0:50:5a:a1:c1:28:
04:d6:68:ea:6d:79:ff:70:52:9a:e0:55:a1:04:56:
a4:27:51:ac:a8:b1:8a:dc:e0:18:94:ea:d0:75:e7:
bc:22:0c:e1:0f:dc:2a:ae:1f:2c:c6:88:87:1a:d7:
da:74:37:c9:c0:13:39:fb:67:02:16:6f:5b:76:a7:
10:71:3b:e1:49:cc:a0:01:13:21:26:02:14:7a:ea:
8b:11:8d:3b:f6:8f:02:db:e8:73:85:7d:08:72:68:
6f:c4:29:cb:fb:1e:90:4b:b6:f5:87:1d:8d:d8:c8:
c5:15:32:bb:77:1f:8d:ed:a8:50:4c:75:8c:af:af:
fa:83:58:c5:e9:90:de:25:a1:20:23:c6:40:50:2f:
f8:fa:be:dd:65:2b:0c:b0:9b:61:b8:41:03:a2:e3:
d7:ad:04:e2:f3:0d:b8:b5:83:e2:b9:5c:be:12:cb:
a4:b8:c9:2f:cb:06:5d:c5:f5:ca:cb:0a:6d:f1:a7:
60:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:17:5E:9A:DE:48:F2:92:1A:94:47:20:1C:8F:FF:1B:03:1F:02:3F
X509v3 Authority Key Identifier:
keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:eb:9a:b1:a4:64:97:6f:0f:98:78:4d:5f:27:7d:15:c8:95:
60:18:20:b4:20:23:e0:fc:24:0c:10:d9:55:62:82:2a:f9:3a:
e7:18:49:55:da:62:87:cf:3c:2e:53:4d:32:1a:6b:86:5e:b6:
9c:60:14:76:01:cd:d6:d0:77:47:69:e7:1c:a1:6b:2f:d8:e1:
46:7e:07:43:3a:8e:91:39:c3:e5:23:cd:be:a2:59:c9:b4:62:
9b:45:f7:0f:85:bc:90:90:4d:31:7d:45:1e:19:74:38:51:03:
e9:31:8d:dd:f3:2b:54:01:06:f6:5a:3f:cf:96:a6:46:47:56:
7e:44:b4:e3:27:75:8c:e6:3c:03:fe:2f:cb:c0:43:b1:d0:00:
bd:2a:bf:b9:cd:0d:ec:23:79:e9:7b:01:0d:df:fb:36:d4:21:
4a:54:65:47:af:64:1d:4c:45:c0:bc:61:6c:36:13:e3:1a:e7:
c7:10:9b:48:c2:47:29:83:33:c6:89:df:89:6a:48:81:f8:e1:
13:22:02:0d:f8:98:1d:7a:12:26:46:b0:c1:18:2e:50:2f:c7:
30:f7:11:67:e4:ba:22:6a:19:e1:e2:74:d5:35:6a:78:13:e5:
7a:d9:29:b7:fc:0f:c8:52:f5:91:d9:3e:73:ef:df:85:d1:93:
72:6b:b4:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 04:31:35 2025 by rpki-client