Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
File: sICdwHvAd1GY8vMVVBUvNWqD93A.mft (raw, json)
Hash identifier: hWzjG3zPHNanm6gKTgdBZ5XGwKgCaGnIMv+1l6PyQZM=
Subject key identifier: 7A:F9:55:C5:3A:0D:3F:AB:B9:BA:2E:F6:2E:84:F7:B9:1E:98:47:34
Authority key identifier: B0:80:9D:C0:7B:C0:77:51:98:F2:F3:15:54:15:2F:35:6A:83:F7:70
Certificate issuer: /CN=b0809dc07bc0775198f2f31554152f356a83f770
Certificate serial: 01987CE54C6AA50B1C8014CA7B9950F68206
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sICdwHvAd1GY8vMVVBUvNWqD93A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
Manifest number: 15AF
Signing time: Wed 06 Aug 2025 01:00:58 +0000
Manifest this update: Wed 06 Aug 2025 01:00:58 +0000
Manifest next update: Thu 07 Aug 2025 01:00:58 +0000
Files and hashes: 1: _vqUTJBaKVA__-YzImtaOgUdlPc.roa (hash: WjwzW+i6IqptZA1G2R9oYtf2Xiry6o+GVW/+RmHCnfA=)
2: sICdwHvAd1GY8vMVVBUvNWqD93A.crl (hash: JxErPVCf96HPigqqKnC4saXg5IghbZ03gPDzwFmUjt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
rsync://rpki.ripe.net/repository/DEFAULT/sICdwHvAd1GY8vMVVBUvNWqD93A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:e5:4c:6a:a5:0b:1c:80:14:ca:7b:99:50:f6:82:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0809dc07bc0775198f2f31554152f356a83f770
Validity
Not Before: Aug 6 01:00:58 2025 GMT
Not After : Aug 7 01:00:58 2025 GMT
Subject: CN=7af955c53a0d3fabb9ba2ef62e84f7b91e984734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:85:de:35:46:fa:07:20:9a:80:9f:8a:ab:37:
b1:3a:2f:fd:d8:6e:76:71:e4:ea:76:3c:5b:6c:42:
19:1f:20:32:00:94:54:fd:ed:74:30:9c:8a:2a:a3:
7f:38:64:90:7f:1e:41:c9:e8:13:49:2e:87:ff:92:
47:34:b9:84:6a:da:55:70:f3:67:8b:7c:c8:9c:fe:
59:ad:c1:db:1c:32:14:f0:93:fc:c3:98:91:4a:af:
1f:aa:3d:08:97:75:dd:1f:76:b7:53:91:bd:94:14:
e4:7f:f5:b8:59:85:6d:4d:b5:8c:5c:f0:45:9b:80:
24:c6:fa:59:25:fb:df:03:c1:f2:0d:bb:02:b7:61:
19:e5:1e:35:7e:4b:51:09:a9:5b:bf:51:f2:40:f2:
f7:32:35:57:54:9f:a3:07:1f:89:3c:b5:1f:7b:23:
cc:5a:2e:b9:41:ad:f2:9a:79:dd:9b:01:16:88:68:
c5:5b:c9:c2:2f:f1:64:29:22:f8:f6:1f:fa:ac:38:
76:21:44:41:c4:ba:72:c6:d5:4f:3e:6a:a0:70:22:
2d:3d:f2:79:52:25:ab:d0:07:2f:0b:30:51:75:05:
e0:c5:e0:e6:d6:39:a7:69:35:16:36:2b:e2:9c:39:
50:9e:e0:58:19:a7:97:45:e2:a1:da:95:e7:ce:c1:
f0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F9:55:C5:3A:0D:3F:AB:B9:BA:2E:F6:2E:84:F7:B9:1E:98:47:34
X509v3 Authority Key Identifier:
keyid:B0:80:9D:C0:7B:C0:77:51:98:F2:F3:15:54:15:2F:35:6A:83:F7:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sICdwHvAd1GY8vMVVBUvNWqD93A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:75:51:b3:61:ae:e0:e3:9a:1e:c1:3f:5c:c7:4c:2c:d8:ca:
fa:3e:83:5c:84:c2:06:25:25:70:58:c5:f3:06:6a:07:ff:5e:
eb:1d:94:d3:5e:fb:3a:2e:94:52:83:3d:53:d4:46:d8:f0:d2:
b0:80:84:a0:94:d1:00:7d:85:b0:cb:f7:4d:84:f3:c9:c6:3e:
1a:b4:c7:9f:a7:07:60:75:4f:3f:6d:ac:75:d5:89:47:ae:ec:
8b:d6:de:ce:47:85:5b:30:e5:08:47:d1:c0:7c:44:ad:53:c5:
a7:fc:d4:8c:9d:4e:77:bc:13:03:52:7f:5c:e4:26:d7:91:47:
88:51:3c:b7:30:cc:b1:51:09:dc:b4:ec:9f:fb:06:f9:f9:40:
41:03:9c:ca:aa:30:fc:48:90:3c:f5:7d:e9:db:e2:21:4d:41:
5d:d0:98:2c:da:16:41:5e:58:3a:b5:16:88:6e:12:e6:c1:be:
d3:97:fb:54:60:da:74:f7:63:c0:a8:c6:a5:66:02:0b:e7:52:
b0:55:d0:6b:9a:62:ff:7e:73:cf:8e:2d:2e:a0:a4:1f:f0:d2:
65:68:ba:b5:db:79:7a:2f:24:8b:39:21:f0:02:6a:c4:5e:00:
65:2a:80:0a:15:5d:41:e1:4f:8a:30:cf:21:b9:5e:fa:65:71:
95:70:e1:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:40:44 2025 by rpki-client