Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
File: gh8Shdd1qfWJJD6shErcWridl8k.mft (raw, json)
Hash identifier: mgzbO+hJchzuT0vsM6G/Ncwi9BotmnhJwws9XycLEGk=
Subject key identifier: 82:62:4A:2D:10:6A:55:7C:25:F1:2C:BE:B2:6E:FB:4A:DD:93:13:86
Authority key identifier: 82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
Certificate issuer: /CN=821f1285d775a9f589243eac844adc5ab89d97c9
Certificate serial: 01988054B216EE04FD236FDB392AF183859A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
Manifest number: 0AC2
Signing time: Wed 06 Aug 2025 17:01:30 +0000
Manifest this update: Wed 06 Aug 2025 17:01:30 +0000
Manifest next update: Thu 07 Aug 2025 17:01:30 +0000
Files and hashes: 1: 9ZpW1MFLfzhcDdO5wTaJpRND5LI.roa (hash: eD8scxSV/Ipj3PNHolMKD1Dy5Nq6O0rfumsVRuff780=)
2: gh8Shdd1qfWJJD6shErcWridl8k.crl (hash: j2jVfSjbnSHrmKRc/2I2KW5Oi/lowfYoajed1bSsu6U=)
3: yGExv6aT2zwwq4E64R4PQ7ZXbjU.roa (hash: UK4ZT9heAIw8jcnXNcqfBznXiBKMuH0NwH/ajGH3z/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 14:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:54:b2:16:ee:04:fd:23:6f:db:39:2a:f1:83:85:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821f1285d775a9f589243eac844adc5ab89d97c9
Validity
Not Before: Aug 6 17:01:30 2025 GMT
Not After : Aug 7 17:01:30 2025 GMT
Subject: CN=82624a2d106a557c25f12cbeb26efb4add931386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b8:ec:44:dc:46:61:44:83:0c:c5:3b:3f:2f:
13:ab:c9:37:76:21:e4:f5:24:3a:6a:81:68:9c:da:
b8:ef:f4:5e:2c:47:9d:d7:65:0a:3a:43:ab:68:3f:
64:c8:87:40:0a:c1:99:00:f6:37:98:43:65:1b:a8:
e7:7c:a2:91:8f:c1:25:79:3b:9b:3e:90:dd:5a:a0:
24:7b:b1:0d:1a:7f:a3:7f:f8:6b:89:c7:25:b2:91:
f9:ee:ca:96:fa:ec:98:5d:3f:e7:77:ac:87:ff:50:
c4:6a:43:c4:e0:8d:0d:e0:12:e1:c3:96:a7:38:6a:
bf:af:a4:64:fd:81:1d:00:fc:19:45:ec:23:35:4c:
d4:10:07:a9:c7:35:95:0a:31:71:06:49:59:55:0f:
9f:8e:b2:a9:ef:86:f9:65:19:48:a4:b6:57:67:0d:
91:ae:d8:85:29:8a:8f:e0:1f:0e:6e:f3:ac:f4:81:
5c:c3:e5:fd:62:ee:ad:e1:65:62:83:19:2a:88:e7:
ca:da:e7:e7:5d:e8:57:dd:dd:71:1f:57:57:e2:ff:
66:bd:55:0e:99:fd:0b:43:ff:72:d4:0a:5f:53:b0:
5a:dd:5a:75:de:41:f1:3c:d6:26:64:a0:73:4d:f7:
59:cb:ce:8c:f6:8a:01:9f:24:42:3a:81:66:68:2c:
a2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:62:4A:2D:10:6A:55:7C:25:F1:2C:BE:B2:6E:FB:4A:DD:93:13:86
X509v3 Authority Key Identifier:
keyid:82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:58:46:76:5b:7b:3e:6b:d2:b9:fb:67:29:2b:99:82:3c:bf:
4e:8f:3b:11:f5:aa:54:19:27:63:88:dc:2e:4e:12:8a:eb:9c:
c9:7d:ae:cb:fa:c3:56:bb:f3:ae:86:09:a5:83:a3:c9:98:e1:
bb:e0:d4:02:bf:6e:73:cd:1d:e6:c1:f5:6b:87:78:e7:89:34:
d1:ae:f4:2a:bc:a8:cd:3e:24:31:34:3f:de:d5:35:d8:2f:82:
f6:05:b9:bb:63:fc:94:40:b3:f2:04:1f:7e:cf:76:65:b4:44:
25:64:b9:2e:06:37:45:e3:a2:0e:ac:68:db:8d:83:90:83:38:
ec:39:88:9f:f7:44:5b:cd:9e:d3:4f:f9:62:0a:b9:25:40:3b:
d8:60:41:e8:b7:d5:96:d0:78:5f:25:d9:66:5c:1a:e1:3e:7e:
16:cf:8f:1a:cb:10:2e:48:82:5d:9f:7e:5c:7e:76:34:07:db:
24:58:de:38:5e:bf:5e:83:75:5c:6e:e6:b9:b0:52:88:e8:16:
d5:9b:b2:f2:bc:8c:d5:ce:20:25:0b:82:67:e4:7e:76:01:01:
04:df:3f:1e:66:87:3c:7f:50:07:09:3f:ec:4e:57:8f:60:31:
9b:38:57:64:12:29:99:4d:a8:52:e5:85:ce:57:70:3f:71:88:
42:ea:98:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 19:26:24 2025 by rpki-client