Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
File: v99XKOyr1W70Y3NWlVhmylRoaRo.mft (raw, json)
Hash identifier: z0QTwoexEQEeezwf/Jh6gtDYr3L3aLERuxnw/XtOEuo=
Subject key identifier: 15:0E:4B:1F:BE:48:5D:86:0A:D4:7E:5E:B1:74:F1:2D:0C:4B:43:EE
Authority key identifier: BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
Certificate issuer: /CN=bfdf5728ecabd56ef4637356955866ca5468691a
Certificate serial: 01988FFE2D900E8FDDD22650B0024C521D27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
Manifest number: 0248
Signing time: Sat 09 Aug 2025 18:00:56 +0000
Manifest this update: Sat 09 Aug 2025 18:00:56 +0000
Manifest next update: Sun 10 Aug 2025 18:00:56 +0000
Files and hashes: 1: 5ZRHOA8DDg_XhJ8JjCvhTOGiC1w.roa (hash: eWpgjaoVJC0L+xFRvzTJa/HrtM2zzM7SykfE1sq9g2I=)
2: v99XKOyr1W70Y3NWlVhmylRoaRo.crl (hash: 7rIS3xqBsubfLeYkLBeKSE2w53vPXoBpG11RmxJudPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:fe:2d:90:0e:8f:dd:d2:26:50:b0:02:4c:52:1d:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfdf5728ecabd56ef4637356955866ca5468691a
Validity
Not Before: Aug 9 18:00:56 2025 GMT
Not After : Aug 10 18:00:56 2025 GMT
Subject: CN=150e4b1fbe485d860ad47e5eb174f12d0c4b43ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:96:b1:cf:44:dd:a9:52:09:e4:25:3f:3f:0d:
04:10:c7:9e:bc:70:86:28:c9:23:8a:0d:ea:4b:70:
64:4d:5a:35:fc:4e:f4:0b:76:4c:13:e3:2e:f0:8e:
ec:b0:fa:7d:4b:9f:17:f8:d9:a8:73:25:02:6f:9f:
e9:95:e9:14:e4:09:d5:10:c4:0e:23:88:37:6a:9b:
f1:36:5c:be:75:41:db:8d:c4:88:1b:f4:aa:cd:d3:
1f:f4:99:4e:64:97:61:91:b8:77:57:5d:ff:19:39:
62:68:0a:30:91:a5:f6:e1:72:f9:71:96:33:8f:d2:
f6:53:45:a6:1a:66:60:e4:7a:82:8d:f4:95:9c:7f:
b0:a7:55:fd:9a:bc:24:92:1a:d3:30:47:c6:f2:98:
e5:e6:41:f0:8f:6a:26:c5:a6:33:c3:d6:38:9e:52:
9b:73:1a:6d:d7:2f:ae:a6:45:ef:89:db:a1:33:fd:
e1:31:f9:b8:9a:89:23:18:55:bf:7c:cc:fb:77:36:
dd:e2:c8:ac:68:51:0f:1b:2e:f3:bf:cb:cb:1d:44:
74:27:78:40:78:31:e1:23:dd:64:80:b5:de:28:72:
b9:34:ef:6a:0e:9c:2c:be:d1:22:24:24:f7:07:0c:
87:d0:a0:2e:38:b1:f2:65:cc:68:2c:f0:7a:4d:38:
ce:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:0E:4B:1F:BE:48:5D:86:0A:D4:7E:5E:B1:74:F1:2D:0C:4B:43:EE
X509v3 Authority Key Identifier:
keyid:BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:5d:46:12:1e:6c:2d:d3:e7:bb:ff:1a:63:09:1b:ce:41:91:
02:9b:67:4a:b2:61:64:e9:74:af:04:60:8f:80:c0:0f:5b:72:
c9:1d:ed:42:a0:2f:d9:6d:87:66:cd:ec:96:ee:7b:f0:3e:75:
4f:11:9f:c2:3d:10:88:f4:ce:98:59:d1:2d:6b:de:0b:d0:d7:
bf:00:76:91:c3:ce:f3:ee:a6:a0:0a:42:ef:f2:07:9c:b3:a1:
7b:74:1c:0b:c7:84:fe:e7:d6:9a:8a:28:27:86:13:59:f4:0c:
71:fb:05:75:05:9e:03:85:43:47:22:ca:b3:02:cb:21:28:c8:
b7:1d:4c:78:ed:50:2f:cd:c9:08:fd:e4:7e:ea:6b:ca:f6:ea:
e1:2a:10:68:73:0f:72:c2:94:3f:c8:6b:12:da:d1:7f:b9:9b:
4a:e0:37:dc:78:08:36:93:7b:e3:e0:3a:7f:b8:91:3b:8c:fb:
9a:98:c3:19:03:92:93:ce:b7:74:96:6b:8f:f4:e7:1b:49:76:
c2:09:ba:85:f8:3a:60:35:a3:e9:d7:55:e5:55:f3:03:65:20:
22:02:93:52:33:38:00:49:87:0f:70:93:09:c4:15:1b:6d:69:
86:98:4e:17:ef:96:70:47:d9:07:eb:b8:ec:41:99:cf:e7:13:
ea:5f:81:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 03:48:28 2025 by rpki-client