Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
File: Mm9RyiOYIQP_40-YkNC3To-nga8.mft (raw, json)
Hash identifier: oVgUKLajezWpirBkwuaOzMCwmK5RFoPLVe2wGv2vxlQ=
Subject key identifier: 85:67:61:A9:D7:21:54:2A:1D:0E:28:3A:02:68:01:25:64:6B:5A:1F
Authority key identifier: 32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
Certificate issuer: /CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Certificate serial: 01989FDEC326BC7DAC5833A3B87181CED419
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
Manifest number: 0692
Signing time: Tue 12 Aug 2025 20:00:32 +0000
Manifest this update: Tue 12 Aug 2025 20:00:32 +0000
Manifest next update: Wed 13 Aug 2025 20:00:32 +0000
Files and hashes: 1: Mm9RyiOYIQP_40-YkNC3To-nga8.crl (hash: CDOE5GEw/VBXV8b4ACgeTBeq4ILdtMO659mBNVDse90=)
2: XS-Ybz0hvV9BojCYEUiidWOyx20.roa (hash: rQhYc9pPbBgv4YgNdF82ibLtydUp9AsYJJ57Y6MS2So=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 20:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:de:c3:26:bc:7d:ac:58:33:a3:b8:71:81:ce:d4:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Validity
Not Before: Aug 12 20:00:32 2025 GMT
Not After : Aug 13 20:00:32 2025 GMT
Subject: CN=856761a9d721542a1d0e283a02680125646b5a1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:84:a1:bf:8a:b9:cb:53:19:58:a7:32:d7:77:
61:02:e7:3b:62:00:ca:5a:58:00:57:a9:4d:8d:9e:
1e:07:c0:fb:01:72:03:8d:d8:95:6d:23:ad:95:1d:
89:bf:a7:e0:7d:4d:e5:7f:98:89:3a:7f:88:2b:26:
80:36:43:4c:34:97:17:6f:9f:4e:85:c7:a5:be:86:
a7:e3:84:80:69:e1:72:35:22:33:75:25:dd:fb:e2:
47:9c:60:eb:76:e7:46:bd:39:b9:69:70:30:a0:29:
81:cf:30:4d:12:48:c9:25:8c:53:85:fc:39:66:d9:
1b:70:fe:79:38:7e:71:c1:78:e0:20:a5:3e:0f:8c:
56:93:7f:4a:fb:a6:54:8d:15:e8:df:f7:f0:09:40:
45:c4:fa:eb:5f:cb:fb:df:45:35:56:53:52:fb:cb:
04:62:b7:c2:1a:65:32:17:84:c0:2d:46:41:8f:cd:
fd:dd:3d:db:f3:d3:84:54:dc:07:bd:43:74:d5:31:
c9:a6:2b:d2:4c:bb:91:2d:69:19:a0:79:41:02:3d:
22:1a:c5:0b:00:e2:4d:fc:f3:c9:c0:6b:51:cb:ac:
8c:54:a2:87:a1:8b:b1:21:d6:33:b3:c6:93:9f:51:
3d:19:b3:40:0d:95:44:c8:62:b1:18:08:28:25:7b:
b1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:67:61:A9:D7:21:54:2A:1D:0E:28:3A:02:68:01:25:64:6B:5A:1F
X509v3 Authority Key Identifier:
keyid:32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:73:16:8d:3c:8a:d4:04:70:d9:d2:13:47:fc:8d:e9:98:8f:
b5:bb:c0:46:b2:8a:97:dc:e1:a8:91:7d:e0:3b:f8:2d:30:a9:
a9:57:2b:15:6b:d4:30:66:23:b3:42:d8:19:81:8b:c8:71:a1:
bd:59:9c:45:a0:d9:c5:b6:a4:8e:93:06:ed:b9:d6:9e:51:44:
8b:4c:85:ac:31:8e:01:42:78:6f:9c:bb:96:b1:ab:81:e4:ba:
a6:8b:c2:cb:7b:27:c2:48:03:ad:16:00:96:02:5a:bf:bb:b4:
77:41:36:68:33:f2:e2:e3:56:6e:0c:84:bc:83:c6:9d:85:dc:
68:48:35:2a:9a:2c:98:ab:58:94:09:c8:c0:e7:c5:1c:02:48:
14:e8:ec:57:f7:ab:0d:86:53:37:af:b7:fd:d3:84:05:34:b1:
73:a7:62:d5:79:97:b1:1d:d6:4b:7a:63:df:b9:ed:bb:79:8e:
ea:84:99:f8:ee:66:dc:85:09:ee:7a:9a:49:4d:18:e9:e8:13:
ae:bf:29:8e:68:01:69:cb:4a:03:09:e2:58:21:5d:7b:18:7e:
81:d9:55:d3:36:2e:4e:42:69:4f:43:08:93:89:9c:d1:c8:8f:
a8:ec:ad:97:e5:b8:f8:6c:e5:e8:c7:ec:2e:99:b9:a7:b0:45:
be:38:3c:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:28:43 2025 by rpki-client