Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
File: rN3HO1mh_N7iLiWCTUCswnKGqlI.mft (raw, json)
Hash identifier: Gp0XVR1R1/aK2YUg7Z4nbLu0wgilMVVgLP7h+xH2t08=
Subject key identifier: 06:69:1C:92:1B:20:1D:8B:03:DE:D7:18:E1:35:E8:EF:02:15:43:AB
Authority key identifier: AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52
Certificate issuer: /CN=acddc73b59a1fcdee22e25824d40acc27286aa52
Certificate serial: 019887D6CEF35DEE53CAC2BCBE2FAE25774C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
Manifest number: 0276
Signing time: Fri 08 Aug 2025 04:00:58 +0000
Manifest this update: Fri 08 Aug 2025 04:00:58 +0000
Manifest next update: Sat 09 Aug 2025 04:00:58 +0000
Files and hashes: 1: 9BGILAnZ0E1buckVknM_BD_9cHw.roa (hash: B/wVfv0goOmUGD/dZEjtMoprzU5nQZjGpEWlTzk5/cI=)
2: rN3HO1mh_N7iLiWCTUCswnKGqlI.crl (hash: qBdBZgAqWiTAKg/0r/3+tx7GcZnR679VaSEGR7vYQYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 04:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:d6:ce:f3:5d:ee:53:ca:c2:bc:be:2f:ae:25:77:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acddc73b59a1fcdee22e25824d40acc27286aa52
Validity
Not Before: Aug 8 04:00:58 2025 GMT
Not After : Aug 9 04:00:58 2025 GMT
Subject: CN=06691c921b201d8b03ded718e135e8ef021543ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a4:da:9b:64:6b:21:61:c7:34:fe:e7:12:35:
4e:ad:59:66:24:1b:08:7c:5e:c3:a2:cd:99:bf:12:
c2:4e:85:2e:4d:60:94:3b:0e:9b:18:8e:97:ff:d1:
30:c5:35:6b:73:c6:c3:89:c9:74:2e:7b:f7:35:e3:
8a:64:d5:cb:20:bc:86:5c:3d:f1:fe:43:15:46:ed:
3c:21:23:6d:34:c0:dd:a5:f4:83:53:58:10:3e:ec:
52:40:40:66:85:e4:bf:a0:06:a3:7c:65:56:73:2e:
10:86:eb:24:f8:71:bc:75:99:27:14:d6:77:db:be:
e1:ef:1a:f4:d1:85:81:0e:09:ad:a1:73:68:8d:a0:
37:ab:88:3a:4d:72:61:20:2b:f2:27:cd:49:20:2d:
ef:36:dc:4b:49:bb:16:a4:12:6d:0a:22:06:8f:6d:
9b:ed:03:72:53:54:aa:24:66:d5:bc:da:6d:ed:7d:
d8:08:68:90:1c:94:f2:03:ff:cb:10:ec:c1:ec:32:
d8:dd:51:7d:9e:c9:5b:23:51:1a:07:cd:f6:8c:73:
1e:82:ef:a8:7a:14:4f:f2:25:6b:0d:45:f8:47:57:
92:33:c6:92:32:22:e5:e3:5e:ca:2f:f6:ac:28:e1:
6c:41:7e:7a:2e:2f:7e:9c:b7:a5:c2:e9:9b:32:e4:
fd:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:69:1C:92:1B:20:1D:8B:03:DE:D7:18:E1:35:E8:EF:02:15:43:AB
X509v3 Authority Key Identifier:
keyid:AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:05:e7:b7:23:54:c5:ba:c0:a0:ef:30:8c:02:d1:a6:ac:25:
e7:f7:d3:3f:65:98:c4:88:03:9c:08:70:db:51:48:9e:0b:1c:
c7:e2:74:c6:2b:5f:c4:8e:45:e7:b1:7f:f3:70:00:fa:77:ad:
d7:63:95:2f:86:6f:c8:47:e3:54:1c:24:63:0d:f5:9c:c5:32:
03:8a:66:16:76:97:eb:e2:7b:d0:be:2b:6d:ad:95:99:5b:6d:
51:ba:26:09:db:f4:49:cb:0a:e4:96:1e:cc:c6:ce:c5:71:7c:
a7:b3:eb:52:8c:74:ad:cd:17:b5:67:f2:9e:74:df:be:22:f0:
e2:43:79:69:f7:d0:53:17:39:4d:64:bd:7e:21:be:e3:a6:16:
62:99:60:ae:8a:c5:8e:24:ed:f3:2e:a2:eb:be:47:07:8f:bc:
4b:51:eb:16:d0:13:b3:fe:ea:cf:ab:f7:f8:c7:50:58:b7:15:
8e:c9:03:c7:12:b6:8b:68:ba:9c:ca:d6:43:e7:e9:5d:d7:55:
40:4f:3c:64:a7:61:c5:11:b0:5a:ac:d5:09:61:8f:96:b1:73:
0b:24:82:96:1f:4a:24:69:8f:49:dc:15:3e:e7:f0:0d:b5:bb:
d6:9b:c1:40:47:ed:55:73:ec:55:d7:1a:62:5d:a8:8b:10:77:
bf:79:69:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 12:49:26 2025 by rpki-client