Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
File: ThXfaIw66uP2he1Es5bCGYOVhh0.mft (raw, json)
Hash identifier: WAOnPPWFxmR6h6WAlj4Ko4mcwQcMuAhpyH3qoSXbVT0=
Subject key identifier: D4:0C:20:38:45:41:86:38:0D:2D:61:92:08:3C:40:A9:C6:A3:38:37
Authority key identifier: 4E:15:DF:68:8C:3A:EA:E3:F6:85:ED:44:B3:96:C2:19:83:95:86:1D
Certificate issuer: /CN=4e15df688c3aeae3f685ed44b396c2198395861d
Certificate serial: 01987E6611F7D46C1DFA909ED3D9A3CAEDA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
Manifest number: 0BC6
Signing time: Wed 06 Aug 2025 08:01:15 +0000
Manifest this update: Wed 06 Aug 2025 08:01:15 +0000
Manifest next update: Thu 07 Aug 2025 08:01:15 +0000
Files and hashes: 1: B5ArzT5S5sMxKfyjCyP1n1jxI-I.roa (hash: GYazD0XUED0Lzoqp0JRsmv1Wdv3MWiNL0orAYJkGs0s=)
2: GTFBgv2tNjcuxAQIe01brH4jwTk.roa (hash: Mc8ui7CXRHASlbfIuKweFLL2cR+DG52g7wgx3xsTD/U=)
3: MVWQHZ7poQZSNaxcXHSkE1cM3ac.roa (hash: tbC0zEQlc9n1vwOMWAcwfJO+Pz8J+NOLSdpR6f+1vt4=)
4: SeVKeWDlifWewWLGV-ux3X3eP-U.roa (hash: iAr3BiSouxw0/1U0gfsb+0eTpsmeqPEqcNVOd7duq/I=)
5: ThXfaIw66uP2he1Es5bCGYOVhh0.crl (hash: hhHtdleyvK26WtIQayYVqdPOCWgMrpmtDV9ETTYAN3A=)
6: o0qUAT_TgmtKEJ1FtjKHFmcq_g8.roa (hash: jAvBf+l4Sh8bF638zbQb1GW8ZMXk7btIZOLQzFqdpZg=)
7: r34i9MogSBxeDWHyGIhH_hkNvH0.roa (hash: /LsOtQwuG5S1pPv/GDxv95WqbubjE7D9iX5jL74tvxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:66:11:f7:d4:6c:1d:fa:90:9e:d3:d9:a3:ca:ed:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e15df688c3aeae3f685ed44b396c2198395861d
Validity
Not Before: Aug 6 08:01:15 2025 GMT
Not After : Aug 7 08:01:15 2025 GMT
Subject: CN=d40c2038454186380d2d6192083c40a9c6a33837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e4:fd:6a:ff:e7:0f:60:01:af:0d:13:62:cd:
f4:73:83:64:af:22:a7:f1:0d:8e:41:91:0f:08:39:
6e:75:79:10:67:d3:47:44:54:03:63:9d:30:f3:2b:
84:52:a4:49:c6:76:e8:d6:e6:f9:00:2e:3b:47:6b:
4e:6f:06:f3:e8:95:a8:d8:ef:78:3b:4a:14:68:8b:
93:86:b0:9a:c2:fe:3c:59:d0:3d:f6:ec:4e:8e:b8:
d0:df:b7:13:8d:6e:ea:9a:a5:49:85:ff:23:af:c2:
53:ad:89:6e:31:c6:7b:27:bf:55:4a:77:da:66:cc:
e5:bc:7d:26:c2:56:44:71:0c:79:79:0c:18:33:fb:
75:e4:bd:e1:70:fa:9b:2e:31:a6:fd:c8:eb:22:40:
17:10:b9:9e:45:59:b1:ce:a2:60:83:ea:a4:f4:26:
70:34:98:ab:68:ac:94:e7:7f:56:1e:24:e5:fd:43:
b8:58:38:5c:62:66:f1:77:e3:bc:be:28:4e:6d:6f:
34:27:2a:f5:b9:ac:79:3b:3c:c5:ca:80:d1:a8:00:
61:97:50:16:15:e3:12:27:f4:99:04:34:33:e5:f0:
a9:e2:62:a4:1c:c7:51:bf:4a:37:a9:c2:d1:00:df:
c9:7f:8d:89:1d:36:4a:de:27:c5:6d:9a:b0:5d:12:
19:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:0C:20:38:45:41:86:38:0D:2D:61:92:08:3C:40:A9:C6:A3:38:37
X509v3 Authority Key Identifier:
keyid:4E:15:DF:68:8C:3A:EA:E3:F6:85:ED:44:B3:96:C2:19:83:95:86:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:5d:77:03:3a:73:86:bc:8c:32:47:ac:d1:3b:86:0a:57:fe:
4b:f8:3a:67:ff:39:af:e0:77:9c:5d:af:95:51:72:d4:2b:8a:
33:42:c4:bd:ac:49:ca:bd:f4:58:19:30:07:98:be:6b:4d:1d:
03:6d:bd:8f:cd:35:71:34:4e:5c:0d:d6:65:9f:6a:8e:db:60:
d8:f4:35:61:90:65:9f:83:3e:4e:f2:e3:97:ec:9c:0b:cf:64:
c9:20:59:92:f7:d5:25:cd:5e:73:b3:81:71:0e:22:6f:9b:84:
c5:d4:db:50:98:9b:24:a8:5d:29:a3:0b:75:9e:30:e8:64:dd:
b1:d4:14:42:1f:c7:f2:15:78:ff:4a:8b:79:ad:0f:34:47:46:
5a:00:1c:44:d5:9c:ca:f2:ae:9a:78:00:da:da:82:d2:91:19:
35:67:0e:4f:1c:0c:b7:8c:3f:bc:18:8f:7d:5a:55:fd:ad:1b:
df:8d:fd:b2:83:d7:2c:cf:bf:44:42:28:3c:e7:99:8a:af:9d:
37:29:38:23:2e:64:b4:c8:88:e6:49:a8:1b:b0:1c:22:e2:9b:
41:8b:67:55:68:37:1a:0c:b2:18:cd:fb:4b:18:93:3f:0f:37:
62:59:4d:24:93:45:8a:83:b1:4f:79:ce:25:65:bb:82:e9:3b:
e8:04:21:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 10:17:45 2025 by rpki-client