Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.mft
File: Fv4NAkzduvhoIpEiFYlxRysky00.mft (raw, json)
Hash identifier: gBFsXjTUcQSfYFNGGXKF5xnz91vYjsxlgrMHF7y4lCY=
Subject key identifier: 4E:F4:98:7B:1A:1E:02:50:83:C1:51:FB:41:B8:96:5E:4D:A8:40:D0
Authority key identifier: 16:FE:0D:02:4C:DD:BA:F8:68:22:91:22:15:89:71:47:2B:24:CB:4D
Certificate issuer: /CN=16fe0d024cddbaf868229122158971472b24cb4d
Certificate serial: 01987C77A55B2850559B6DBC124F1E269A8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fv4NAkzduvhoIpEiFYlxRysky00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.mft
Manifest number: 161C
Signing time: Tue 05 Aug 2025 23:01:12 +0000
Manifest this update: Tue 05 Aug 2025 23:01:12 +0000
Manifest next update: Wed 06 Aug 2025 23:01:12 +0000
Files and hashes: 1: Fv4NAkzduvhoIpEiFYlxRysky00.crl (hash: WEfA1e/OCOwwXXMWVmG+/6nGG4jAv7pPa1Jh3EH/fwI=)
2: ThZzWFH5INkQ7ymiA_IBq-KPEM4.roa (hash: dM5mDKUs0Ppdg4qZBmK0UY+RheCcm2hY4o7VfDpWvQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fv4NAkzduvhoIpEiFYlxRysky00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:a5:5b:28:50:55:9b:6d:bc:12:4f:1e:26:9a:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16fe0d024cddbaf868229122158971472b24cb4d
Validity
Not Before: Aug 5 23:01:12 2025 GMT
Not After : Aug 6 23:01:12 2025 GMT
Subject: CN=4ef4987b1a1e025083c151fb41b8965e4da840d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:45:e7:8a:9c:ea:e0:ca:46:f3:e6:a4:1f:73:
8c:5c:64:83:6d:8e:3e:51:57:23:d7:27:02:40:78:
a6:e8:25:be:af:1b:63:c8:16:91:8b:f3:87:6d:dc:
1f:a8:a1:96:77:89:80:71:97:b7:55:97:3e:15:6a:
23:82:ea:b0:e2:70:b1:86:fb:31:0c:f3:de:26:88:
ee:8e:66:34:a3:c9:8e:e2:c0:ef:83:78:67:37:47:
28:8e:0d:0e:2e:57:a0:07:0d:1f:6d:d4:9b:96:5d:
8d:ef:a3:85:68:8b:99:25:a2:43:80:c0:2b:68:f0:
96:9f:90:b2:4d:8c:bc:23:de:46:f2:4f:52:9c:ea:
e1:fc:ce:a1:9c:29:7b:eb:52:03:d6:cd:76:d5:09:
b4:a5:d8:12:ce:bc:3a:4d:e9:2a:a7:15:97:bf:68:
0d:ab:be:a0:ff:d5:f1:4b:86:86:9c:16:9a:54:86:
c6:59:3b:20:b8:e2:82:be:e2:ae:9b:58:3f:8d:de:
cb:69:2e:3e:41:5c:fc:3a:73:b1:85:7e:ef:2b:fb:
70:5c:1c:c5:61:94:19:ae:9b:1f:4f:2b:70:32:f8:
23:ed:f0:db:24:36:1c:a6:d7:4f:2c:77:a9:2b:0f:
9b:78:01:6b:36:b2:21:5c:10:fc:ba:e4:bd:81:43:
f6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F4:98:7B:1A:1E:02:50:83:C1:51:FB:41:B8:96:5E:4D:A8:40:D0
X509v3 Authority Key Identifier:
keyid:16:FE:0D:02:4C:DD:BA:F8:68:22:91:22:15:89:71:47:2B:24:CB:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fv4NAkzduvhoIpEiFYlxRysky00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:cd:03:f1:36:34:a0:ce:8a:b4:c5:b0:0e:db:56:8d:71:79:
a7:6c:fe:18:04:e7:62:cc:d7:20:b8:59:bd:a2:0a:64:17:f0:
95:55:cb:81:97:a6:cd:e4:4f:0d:cf:0d:8d:be:48:f8:59:34:
b4:d5:7c:db:df:69:04:d1:5e:b4:f2:79:19:25:c4:1f:11:81:
4d:55:72:4d:47:ea:46:f8:7d:89:0e:a1:e4:bc:5c:29:ef:6b:
23:04:91:14:03:81:a8:c6:9c:63:14:f1:f2:dc:5a:cc:23:d1:
32:0f:33:4d:6f:e8:95:d1:e0:4f:e3:2c:a2:23:14:c7:47:ae:
9b:94:09:50:2e:77:7d:bc:48:0e:00:ca:ab:a4:7f:71:7a:84:
db:e4:7c:33:3c:21:0a:a0:5d:90:22:8e:3b:06:4f:4f:15:1c:
aa:3e:08:ab:d6:5e:b7:1e:85:49:45:72:8e:7a:eb:b8:12:dc:
67:c6:fd:d6:f3:36:74:7f:86:38:41:15:e6:b9:33:a8:83:e6:
81:2e:01:82:a5:a4:42:19:be:cc:64:37:f7:90:46:f6:53:44:
26:7d:d9:09:14:00:48:50:ca:3f:a2:71:df:42:1b:31:33:d6:
fb:f7:62:2a:40:43:3a:e8:e5:d7:b4:4d:85:b9:0e:80:0f:63:
ef:bd:29:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh8d6VbKFBVm228Ek8eJpqPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2ZmUwZDAyNGNkZGJhZjg2ODIyOTEyMjE1ODk3MTQ3MmIy
NGNiNGQwHhcNMjUwODA1MjMwMTEyWhcNMjUwODA2MjMwMTEyWjAzMTEwLwYDVQQD
Eyg0ZWY0OTg3YjFhMWUwMjUwODNjMTUxZmI0MWI4OTY1ZTRkYTg0MGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg0Xnipzq4MpG8+akH3OMXGSDbY4+
UVcj1ycCQHim6CW+rxtjyBaRi/OHbdwfqKGWd4mAcZe3VZc+FWojguqw4nCxhvsx
DPPeJojujmY0o8mO4sDvg3hnN0cojg0OLlegBw0fbdSbll2N76OFaIuZJaJDgMAr
aPCWn5CyTYy8I95G8k9SnOrh/M6hnCl761ID1s121Qm0pdgSzrw6TekqpxWXv2gN
q76g/9XxS4aGnBaaVIbGWTsguOKCvuKum1g/jd7LaS4+QVz8OnOxhX7vK/twXBzF
YZQZrpsfTytwMvgj7fDbJDYcptdPLHepKw+beAFrNrIhXBD8uuS9gUP2UwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE70mHsaHgJQg8FR+0G4ll5NqEDQMB8GA1UdIwQY
MBaAFBb+DQJM3br4aCKRIhWJcUcrJMtNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnY0TkFremR1dmhvSXBFaUZZbHhSeXNreTAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy80NjE2ZDctZTgwOC00ZTQ3LWE2NDYt
NWIyZjkwZGY3OTZkLzEvRnY0TkFremR1dmhvSXBFaUZZbHhSeXNreTAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy80NjE2ZDctZTgwOC00ZTQ3LWE2NDYtNWIyZjkwZGY3OTZk
LzEvRnY0TkFremR1dmhvSXBFaUZZbHhSeXNreTAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMM0D8TY0
oM6KtMWwDttWjXF5p2z+GATnYszXILhZvaIKZBfwlVXLgZemzeRPDc8Njb5I+Fk0
tNV8299pBNFetPJ5GSXEHxGBTVVyTUfqRvh9iQ6h5LxcKe9rIwSRFAOBqMacYxTx
8txazCPRMg8zTW/oldHgT+MsoiMUx0eum5QJUC53fbxIDgDKq6R/cXqE2+R8Mzwh
CqBdkCKOOwZPTxUcqj4Iq9Zetx6FSUVyjnrruBLcZ8b91vM2dH+GOEEV5rkzqIPm
gS4BgqWkQhm+zGQ395BG9lNEJn3ZCRQASFDKP6Jx30IbMTPW+/diKkBDOujl17RN
hbkOgA9j770pVw==
-----END CERTIFICATE-----
Generated at Wed Aug 6 04:05:16 2025 by rpki-client