Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
File: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft (raw, json)
Hash identifier: xYurLRqUQbTi7u2J+6iP5m72tXFqo2J3SHwJAasChAg=
Subject key identifier: 84:37:56:8F:6A:28:69:B3:DC:E9:E9:D7:89:87:74:90:2E:D8:E8:80
Authority key identifier: AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
Certificate issuer: /CN=ae7f187c12782fc4d844762235993329c4563a0d
Certificate serial: 01987DF81B8C2994F2B4A6A89A91148063DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
Manifest number: 0C39
Signing time: Wed 06 Aug 2025 06:01:08 +0000
Manifest this update: Wed 06 Aug 2025 06:01:08 +0000
Manifest next update: Thu 07 Aug 2025 06:01:08 +0000
Files and hashes: 1: 9SHpbhL3XuwxiKnoCroL_5tpXVo.roa (hash: xPrIpxk+JNMXsVLk++89joWnIkf6ad6w3ouFrsF8d/w=)
2: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl (hash: Ate8tO0M8ulZOADnnotKF/AN8bNsINRRfCQocxtNfKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 06:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f8:1b:8c:29:94:f2:b4:a6:a8:9a:91:14:80:63:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f187c12782fc4d844762235993329c4563a0d
Validity
Not Before: Aug 6 06:01:08 2025 GMT
Not After : Aug 7 06:01:08 2025 GMT
Subject: CN=8437568f6a2869b3dce9e9d7898774902ed8e880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b5:03:8d:46:b4:26:90:01:5c:6c:21:c7:49:
ae:60:03:20:c9:04:b0:10:80:63:40:3e:1b:54:08:
43:21:49:66:a1:2e:88:a6:7d:17:f1:f7:17:05:f4:
b9:ea:6c:c5:09:66:1e:af:ce:3f:3f:be:eb:3b:65:
a5:2c:64:8a:9f:28:23:aa:43:0d:44:d1:ae:bc:e3:
04:21:6c:f1:32:70:ea:ea:c0:4b:04:65:82:4a:6f:
98:2b:e7:82:50:fc:d2:13:78:be:9c:6e:32:3a:8a:
e5:2b:b2:da:80:f6:cc:10:9a:6f:ce:7f:e7:65:96:
d2:7d:fd:a0:d0:a4:0c:ce:1f:ba:7e:ad:27:5e:c8:
36:58:5b:3e:64:a4:3d:be:2e:ee:82:05:3a:67:bc:
3a:f7:6d:c5:5b:79:ac:f2:88:0d:a4:8a:50:e6:3e:
ef:6d:a3:a7:9c:4d:88:7f:e7:8c:c6:39:10:40:5a:
e3:40:97:0c:08:3b:b0:a4:92:19:0b:e2:88:46:78:
93:2a:fc:a4:28:1b:07:c3:d4:15:87:4c:ad:6b:c6:
26:19:e2:9d:16:78:b2:77:bb:ec:5c:f1:d0:54:8c:
04:b4:15:3a:ac:12:ae:1e:e4:64:d4:12:fa:3e:66:
da:45:5b:e6:67:39:f7:6f:05:1d:af:10:84:62:29:
c0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:37:56:8F:6A:28:69:B3:DC:E9:E9:D7:89:87:74:90:2E:D8:E8:80
X509v3 Authority Key Identifier:
keyid:AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:fe:ef:a4:7b:4a:c5:05:ef:57:23:bc:51:4b:23:b9:98:f7:
4e:b3:9c:b1:83:28:f4:4d:15:ec:28:da:49:36:99:26:98:17:
19:93:7d:cc:35:c4:20:07:86:ed:2a:49:db:bb:2c:6c:65:80:
5b:ce:76:48:58:1d:96:92:a0:c4:ad:3f:e1:46:8e:c9:d8:ca:
ca:0d:4d:9f:0e:25:84:7b:ec:5f:1f:ff:33:4e:4e:04:5e:aa:
20:22:5b:3f:ec:1a:03:7c:1d:c1:56:09:70:26:fb:4a:72:1b:
73:25:6f:28:2a:18:23:b4:4a:90:82:53:f5:15:62:81:29:22:
9b:c8:27:47:9e:34:ca:e7:65:15:1c:a1:92:ec:22:d2:b8:31:
be:70:89:51:a6:e7:45:20:45:0e:b5:39:54:fa:a5:a2:65:43:
42:02:c6:ee:c8:d6:b7:c1:13:a2:60:38:46:54:5a:9d:5e:48:
db:40:ec:5b:f8:e4:e9:b1:50:08:f7:c0:c1:0d:04:89:26:7a:
4c:aa:6e:82:34:a2:e3:59:05:fa:49:79:bf:67:c3:d6:b2:b5:
f0:2f:78:12:fa:c5:09:d8:04:3a:f8:84:ca:75:4e:51:18:a7:
6f:10:b6:4e:f3:fa:9e:9c:e1:b8:8d:ac:05:eb:bf:f7:25:57:
f3:c2:67:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9+BuMKZTytKaompEUgGPaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlN2YxODdjMTI3ODJmYzRkODQ0NzYyMjM1OTkzMzI5YzQ1
NjNhMGQwHhcNMjUwODA2MDYwMTA4WhcNMjUwODA3MDYwMTA4WjAzMTEwLwYDVQQD
Eyg4NDM3NTY4ZjZhMjg2OWIzZGNlOWU5ZDc4OTg3NzQ5MDJlZDhlODgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7UDjUa0JpABXGwhx0muYAMgyQSw
EIBjQD4bVAhDIUlmoS6Ipn0X8fcXBfS56mzFCWYer84/P77rO2WlLGSKnygjqkMN
RNGuvOMEIWzxMnDq6sBLBGWCSm+YK+eCUPzSE3i+nG4yOorlK7LagPbMEJpvzn/n
ZZbSff2g0KQMzh+6fq0nXsg2WFs+ZKQ9vi7uggU6Z7w6923FW3ms8ogNpIpQ5j7v
baOnnE2If+eMxjkQQFrjQJcMCDuwpJIZC+KIRniTKvykKBsHw9QVh0yta8YmGeKd
Fniyd7vsXPHQVIwEtBU6rBKuHuRk1BL6PmbaRVvmZzn3bwUdrxCEYinA7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIQ3Vo9qKGmz3Onp14mHdJAu2OiAMB8GA1UdIwQY
MBaAFK5/GHwSeC/E2ER2IjWZMynEVjoNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm44WWZCSjRMOFRZUkhZaU5aa3pLY1JXT2cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9jOGY2NDctZWQ3OS00MmQ5LThkZjYt
MDU4Nzc2MDRhMDFkLzEvcm44WWZCSjRMOFRZUkhZaU5aa3pLY1JXT2cwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9jOGY2NDctZWQ3OS00MmQ5LThkZjYtMDU4Nzc2MDRhMDFk
LzEvcm44WWZCSjRMOFRZUkhZaU5aa3pLY1JXT2cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWv7vpHtK
xQXvVyO8UUsjuZj3TrOcsYMo9E0V7CjaSTaZJpgXGZN9zDXEIAeG7SpJ27ssbGWA
W852SFgdlpKgxK0/4UaOydjKyg1Nnw4lhHvsXx//M05OBF6qICJbP+waA3wdwVYJ
cCb7SnIbcyVvKCoYI7RKkIJT9RVigSkim8gnR540yudlFRyhkuwi0rgxvnCJUabn
RSBFDrU5VPqlomVDQgLG7sjWt8ETomA4RlRanV5I20DsW/jk6bFQCPfAwQ0EiSZ6
TKpugjSi41kF+kl5v2fD1rK18C94EvrFCdgEOviEynVOURinbxC2TvP6npzhuI2s
Beu/9yVX88JnVQ==
-----END CERTIFICATE-----
Generated at Wed Aug 6 16:04:07 2025 by rpki-client