Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json)
Hash identifier: Z3RRXaYQ5wAbPMucUsnFgASZa4pYD+w2nxh1gYRB24k=
Subject key identifier: 7B:15:E8:EB:DB:29:6C:87:A3:E0:EF:66:FB:64:4A:C6:75:CF:8C:E1
Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Certificate serial: 019A22893F79D7E8D10A362CF1891CB62100
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
Manifest number: 0DDC
Signing time: Sun 26 Oct 2025 22:00:11 +0000
Manifest this update: Sun 26 Oct 2025 22:00:11 +0000
Manifest next update: Mon 27 Oct 2025 22:00:11 +0000
Files and hashes: 1: 1-boXqKY_Hyoe19Z5JIZ3K6AJj94.roa (hash: a5qc0h3BhqmeqSpAZh7GFmd10hjtqvPl4/lqfepgblo=)
2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: y/ibUxlCq+uAB8o0XUtOGYofOgDPMBT+qW4ueup4CII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:89:3f:79:d7:e8:d1:0a:36:2c:f1:89:1c:b6:21:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Validity
Not Before: Oct 26 22:00:11 2025 GMT
Not After : Oct 27 22:00:11 2025 GMT
Subject: CN=7b15e8ebdb296c87a3e0ef66fb644ac675cf8ce1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:84:40:1d:fd:cd:bb:70:6f:69:e9:76:67:82:
6c:0f:e4:59:e8:4d:e1:b2:07:79:bf:03:c0:a0:79:
36:81:4b:53:ec:17:40:01:74:1f:fc:7c:5a:03:65:
2b:ba:7e:10:70:ea:b3:fd:2a:c9:5c:f6:b8:dc:27:
5a:b6:0e:bd:44:27:57:d4:38:af:9c:a5:58:ad:8f:
58:f8:36:fa:14:a6:b1:be:57:03:23:c8:1e:ed:82:
9e:c8:a6:eb:d0:f4:7c:54:bf:e7:c3:1f:4a:a6:93:
41:ee:f9:4d:00:d8:bb:bd:04:31:39:c5:a0:9d:3d:
22:88:63:ed:ee:86:58:80:ad:bf:5d:a7:45:13:4b:
25:4d:55:ba:12:32:37:ba:3b:ae:e9:fc:29:99:ee:
30:dc:bc:38:6c:44:d9:40:7c:21:6b:e3:40:34:f0:
ac:18:e0:d7:97:a4:7b:07:66:2a:2e:32:d1:b2:6b:
1b:a5:7b:3e:1a:90:ff:d9:b4:e6:04:1b:2f:3f:d0:
16:d9:14:a8:d7:cb:31:fa:3c:55:7a:56:7d:bc:62:
57:7d:1c:f6:1c:b9:94:cb:2c:22:72:38:62:74:3c:
05:d9:d4:b5:f5:b7:02:41:02:b1:af:32:aa:21:ad:
8c:e0:e5:6e:8d:fd:b1:69:0d:45:d4:c0:50:92:7f:
4b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:15:E8:EB:DB:29:6C:87:A3:E0:EF:66:FB:64:4A:C6:75:CF:8C:E1
X509v3 Authority Key Identifier:
keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:9a:3c:9a:3b:2d:76:f3:1f:27:77:6f:3c:e0:a1:1c:85:18:
4c:ec:6f:75:ec:1f:10:21:5b:6d:47:f7:12:2a:4f:41:43:0d:
f9:cb:52:54:a0:ca:b8:e0:ee:cc:85:45:48:c6:6e:73:28:99:
28:c9:3a:8f:46:17:3a:ec:4a:87:15:17:57:6e:40:e0:fb:5f:
a5:99:c8:5a:a0:99:a8:bd:f8:df:ce:7e:03:03:bd:ae:4a:ce:
39:60:f0:75:47:32:1a:fc:0c:3a:5f:42:25:dc:c4:e8:0a:4c:
33:e7:3f:a9:c5:08:30:68:89:f6:8e:82:ff:b8:c0:b2:3b:c5:
2d:c0:b6:1f:5d:56:a7:b3:41:0f:d6:0e:88:12:b9:a4:4a:93:
2c:8d:88:25:42:1b:46:9f:50:c6:4f:58:71:b8:b2:9c:dd:7a:
c1:46:4e:7f:57:2a:81:e6:67:e5:4d:70:08:a5:b9:5d:f7:73:
4e:b4:67:8b:15:54:b0:f1:6d:d3:c7:fb:63:3f:1f:10:b5:82:
a6:f5:6a:9e:22:6d:da:4a:a5:82:5a:78:c2:49:49:95:8d:84:
a4:f0:50:5c:7d:6c:f3:ee:ac:fc:b8:3f:53:29:0c:4b:39:63:
a9:68:bb:58:70:e8:89:e8:3d:9f:55:f7:d4:9c:6a:f2:87:3f:
7c:ca:61:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:38:37 2025 by rpki-client