Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
File: r8GT7hHlRxYWn5TI-THq4fyFSSE.mft (raw, json)
Hash identifier: kwJgyYPI2LsHYavYwN6MQFQdt1hnVeFjpHP2MiNch+M=
Subject key identifier: 63:A1:FD:55:DC:42:32:9F:A9:20:23:0B:BA:09:D0:A7:CD:81:55:93
Authority key identifier: AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
Certificate issuer: /CN=afc193ee11e54716169f94c8f931eae1fc854921
Certificate serial: 0199161AD167F4E713D3568E4D5B7D5048D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
Manifest number: 0BBE
Signing time: Thu 04 Sep 2025 19:01:20 +0000
Manifest this update: Thu 04 Sep 2025 19:01:20 +0000
Manifest next update: Fri 05 Sep 2025 19:01:20 +0000
Files and hashes: 1: AaiQ-SNQmt6l5xOeIk4PwVHWfh4.roa (hash: 6CQTrWnDAV45WpOAHO1NfVL9iDI/ELlZY8vizp+bA9s=)
2: r8GT7hHlRxYWn5TI-THq4fyFSSE.crl (hash: 5ngff0ehCZjZlCQjoNp2G+PVW+sDPmXCEvzQLR+NWms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:1a:d1:67:f4:e7:13:d3:56:8e:4d:5b:7d:50:48:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afc193ee11e54716169f94c8f931eae1fc854921
Validity
Not Before: Sep 4 19:01:20 2025 GMT
Not After : Sep 5 19:01:20 2025 GMT
Subject: CN=63a1fd55dc42329fa920230bba09d0a7cd815593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:74:83:e8:89:0b:73:bf:d5:b6:48:32:fc:2f:
75:61:d9:43:ae:e0:5f:9e:8e:72:c9:27:36:af:2e:
24:08:80:94:0a:d6:76:0e:f0:f8:dd:95:49:44:c1:
73:db:bc:9b:18:f9:df:3d:fb:95:ff:d4:ce:ee:ea:
ca:6e:6e:be:ac:99:5f:1e:d5:7c:bd:ef:ae:c3:e3:
d1:8e:c0:18:b1:0a:0e:7a:29:5d:8d:8f:36:75:cd:
c4:7a:8c:52:d7:0a:53:f7:78:32:13:0e:15:84:e2:
a1:0b:46:ad:31:68:09:74:e8:90:75:44:3f:e9:cf:
a1:90:47:2e:9b:cf:f2:06:8c:67:9a:27:df:7d:6e:
a0:62:af:ae:36:68:b4:82:9d:ab:85:ff:bb:22:61:
b0:fc:08:85:d6:dc:46:dc:36:f9:87:39:3f:0d:c1:
74:b6:02:f7:48:76:cf:de:07:67:3d:94:25:41:56:
ad:1e:69:ad:d3:f5:75:54:18:03:91:ed:d6:a2:0c:
b8:f3:76:f6:f1:c4:f3:ad:1b:06:8a:41:0f:20:5f:
85:f6:e5:22:99:71:fc:bc:b3:37:26:0d:9f:e5:3e:
d0:f8:8a:00:01:94:8a:1b:bd:10:54:64:0a:34:f0:
ac:40:69:1f:66:ed:8d:30:32:fc:df:51:6b:19:60:
7d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:A1:FD:55:DC:42:32:9F:A9:20:23:0B:BA:09:D0:A7:CD:81:55:93
X509v3 Authority Key Identifier:
keyid:AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:01:4d:8a:20:db:64:b7:8e:85:54:85:1e:ba:c1:31:1c:66:
7a:4a:a1:67:66:bc:e3:86:1e:f7:c5:cb:2e:a2:a1:73:9d:2c:
6a:c7:fb:5a:35:84:06:b1:14:82:e9:7c:15:4d:d0:b9:40:ec:
10:7a:0c:9e:1d:62:db:97:ad:98:4b:7c:cc:76:dc:ec:c0:58:
34:60:d0:c9:80:7c:ad:f8:5a:5f:54:73:54:8e:34:d4:73:4c:
22:43:68:d0:4d:e3:49:05:99:7c:56:30:d2:75:4b:8c:33:56:
84:64:96:15:6a:10:71:fb:ce:1b:79:0b:ae:81:bb:41:54:7a:
06:1f:99:b9:a0:2b:30:73:f8:1e:ff:59:12:8d:57:95:97:8e:
db:89:b0:66:d5:fb:0b:fc:35:9f:88:67:1f:2d:79:de:0b:4a:
3e:a0:48:be:5e:42:47:6c:30:09:d4:22:53:63:cb:e4:02:c3:
ce:7e:44:13:f1:41:76:fc:c7:ac:3f:8e:6c:5b:05:f3:fb:8c:
54:7d:9e:2a:c3:70:62:5c:7d:e7:52:d9:2e:50:de:51:c2:21:
26:a4:a2:51:c7:68:42:72:80:a7:f3:1d:31:52:d1:6b:f4:20:
7d:11:8d:81:16:9c:0e:89:56:c6:78:c9:33:81:b0:94:fc:52:
1f:df:aa:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 04:27:15 2025 by rpki-client