Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
File: st8A84zO2SGXmTB2yzaFvzK8Xmk.mft (raw, json)
Hash identifier: 0+aTukVs+sW+LEY2sYVYmbpWw2PnqeFlhFoJ99xrCX0=
Subject key identifier: 9A:B9:80:DE:BD:D0:CF:0A:D4:CC:F5:32:52:D9:EC:02:C9:D4:6B:9C
Authority key identifier: B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
Certificate issuer: /CN=b2df00f38cced92197993076cb3685bf32bc5e69
Certificate serial: 0198936D1EF7ED5CAD575F1C409A5BA0C4E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
Manifest number: 1190
Signing time: Sun 10 Aug 2025 10:00:58 +0000
Manifest this update: Sun 10 Aug 2025 10:00:58 +0000
Manifest next update: Mon 11 Aug 2025 10:00:58 +0000
Files and hashes: 1: gbTQ5TFLqYdv3bxMQXRQSRcMIoc.roa (hash: rJ5djAjgxTYzs8j0EQsFjkKUrs3CGg0sgiibLKW68Ck=)
2: st8A84zO2SGXmTB2yzaFvzK8Xmk.crl (hash: NubqAhDnlSQuAHHsNE3TSl7xy9/zECThdLskWptGMHE=)
3: wu3L_A3dWSKUeaU4lbLH5tQFGhs.roa (hash: QMvHM8N7K9OdWcNx9rJFFp+Z7jXiktM21WFlvU4ZxMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:6d:1e:f7:ed:5c:ad:57:5f:1c:40:9a:5b:a0:c4:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2df00f38cced92197993076cb3685bf32bc5e69
Validity
Not Before: Aug 10 10:00:58 2025 GMT
Not After : Aug 11 10:00:58 2025 GMT
Subject: CN=9ab980debdd0cf0ad4ccf53252d9ec02c9d46b9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a6:4e:dc:ce:c0:16:17:d6:a4:4e:0f:59:48:
bd:b2:ac:b7:be:01:c4:cb:dc:d8:28:cf:06:34:83:
00:6e:45:69:61:43:ad:20:05:7e:79:4e:f1:4e:97:
fb:ad:89:41:4f:b8:17:83:e0:8c:fa:c0:40:05:d9:
69:bc:d7:7b:37:6a:3b:81:3c:e1:35:42:0d:a2:50:
d7:e6:2b:62:5c:d6:19:36:81:b0:6b:1b:08:61:b3:
36:93:f4:fd:ef:39:bc:34:65:6c:f7:ca:a0:d0:36:
f1:ee:19:61:32:8b:22:7a:e9:27:22:e2:1d:93:2a:
87:5d:9f:bc:39:a3:37:9a:89:73:cd:84:81:8f:5a:
85:46:f2:c2:47:8c:91:12:78:be:e0:80:6d:ca:a9:
f5:bd:97:58:d8:11:fd:0c:77:3c:e1:3f:ce:64:0b:
46:04:6e:46:77:50:1e:57:dd:b6:9f:6c:f3:a6:1b:
91:bd:b4:f4:48:e8:8f:68:eb:97:2a:e8:c5:27:05:
16:b5:1a:c8:b4:a4:da:3a:fa:4c:6e:d8:34:b0:25:
e7:53:6f:21:68:50:91:e6:13:7f:80:af:1b:d8:26:
7b:5e:6e:a8:97:9c:59:41:10:d8:3a:42:e8:ec:91:
29:80:89:96:d7:67:41:0f:47:01:39:83:90:b9:82:
37:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B9:80:DE:BD:D0:CF:0A:D4:CC:F5:32:52:D9:EC:02:C9:D4:6B:9C
X509v3 Authority Key Identifier:
keyid:B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:a4:c1:ff:d9:f8:4a:b1:0e:c4:1a:f6:9e:29:39:2a:7a:d9:
bb:ea:5f:3f:69:17:61:5c:26:33:a4:25:cd:d6:42:ae:dc:df:
14:b4:91:63:a2:a0:fc:1c:fb:84:ca:73:7f:cc:00:91:b1:25:
d9:57:4a:7b:cb:e7:0c:12:b2:30:93:65:e2:0f:6a:9e:d0:95:
74:46:24:24:3a:ff:48:01:ab:a6:82:64:28:c2:94:6b:1e:3e:
a8:cb:a3:ea:c0:1e:e0:cc:21:da:12:cf:6e:d6:af:1c:20:87:
cf:25:60:10:b1:a0:f1:f2:88:ae:bc:10:9d:25:56:3b:88:82:
b0:f6:43:77:4e:13:ea:31:9a:91:bb:69:84:84:af:5b:32:e2:
f1:5e:3c:07:10:13:0f:de:bd:40:b7:17:77:e1:7d:1e:64:ea:
11:20:fe:4e:f0:03:90:4c:50:04:d7:fa:ca:91:f6:6d:09:30:
6f:ff:4d:2f:43:36:78:17:5a:07:61:11:82:cb:7c:0f:9d:75:
8c:e5:7e:2b:74:c5:1e:56:09:d8:78:ae:95:45:45:c9:36:ea:
8e:0c:58:e2:04:ca:57:2c:52:5f:9f:08:6e:b1:d9:55:20:9f:
12:c7:f2:3c:e9:6d:63:17:99:1d:73:44:bc:0a:0a:45:02:5f:
a1:cf:16:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:45:25 2025 by rpki-client