Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
File: mK9kDIIO61-8kigcYRRPEae9cH4.mft (raw, json)
Hash identifier: 2y/fi8At7TMiGKyFsNaqzzLf+yFiVjLN1xs3wBj4QMo=
Subject key identifier: C8:C3:4F:C2:AB:6B:1F:7A:2A:9B:D7:C6:70:6C:44:43:94:68:E5:2E
Authority key identifier: 98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
Certificate issuer: /CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Certificate serial: 0198D473AFB32AEA45669917F71357E01698
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
Manifest number: 03A0
Signing time: Sat 23 Aug 2025 01:03:28 +0000
Manifest this update: Sat 23 Aug 2025 01:03:28 +0000
Manifest next update: Sun 24 Aug 2025 01:03:28 +0000
Files and hashes: 1: OWXYykmlPDxYaUK6ibOA62-hDng.roa (hash: x4BvE6J+LBS4eTxuz/ILECCYgRYsxbKFwFccG0CtiDI=)
2: mK9kDIIO61-8kigcYRRPEae9cH4.crl (hash: kYbbKp06/d66zF9kBfdFOwmyMokVBit8jOANZCijOfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:af:b3:2a:ea:45:66:99:17:f7:13:57:e0:16:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Validity
Not Before: Aug 23 01:03:28 2025 GMT
Not After : Aug 24 01:03:28 2025 GMT
Subject: CN=c8c34fc2ab6b1f7a2a9bd7c6706c44439468e52e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bc:9e:4f:82:f3:0c:32:57:ae:0e:2c:5a:57:
17:44:03:a3:a3:67:8c:07:ab:8e:cc:8a:41:03:7f:
b7:e8:58:a0:7f:5e:f4:68:25:2d:3e:06:4e:25:de:
d4:46:af:de:06:89:23:b4:d5:89:82:ef:21:65:07:
24:70:5b:8d:08:e9:be:6c:dd:03:3c:d5:95:4a:d8:
bf:17:13:aa:dc:0a:6f:fb:5d:ec:86:47:a6:c8:5a:
65:17:ab:c4:d7:ba:f5:e3:9e:0d:75:0b:e1:d5:c6:
ac:01:43:1c:5a:3e:07:c1:96:3f:3d:f1:41:08:a2:
d9:68:ac:f6:6d:46:4b:56:6b:22:5d:66:7a:7e:64:
e8:f0:89:7d:bb:e5:60:05:fc:73:e4:09:0e:19:2c:
37:43:df:8f:12:c3:e2:b9:b3:a2:54:15:9a:1a:26:
71:38:a7:45:75:2e:51:ec:82:c3:67:b0:11:c9:62:
65:df:9e:a2:bd:3f:e1:5d:44:a7:32:fc:29:bc:af:
c0:a2:5a:d2:b2:9a:26:27:3c:16:14:44:8e:38:12:
e5:c5:a5:9e:66:80:f7:8c:1a:ce:d0:d2:42:fe:5f:
c1:8a:75:00:d3:95:36:25:6f:e8:7b:1d:35:4b:06:
2c:5d:af:fb:dc:17:15:97:7a:db:a3:2c:1e:3c:27:
19:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C3:4F:C2:AB:6B:1F:7A:2A:9B:D7:C6:70:6C:44:43:94:68:E5:2E
X509v3 Authority Key Identifier:
keyid:98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:b6:eb:4a:9e:b2:6d:e4:34:34:a8:58:e1:a4:ea:16:1e:e7:
c3:50:fa:df:27:3e:91:7a:fe:21:ba:14:f8:69:76:ec:d8:5c:
d7:fd:46:c5:3d:63:87:e4:f1:8a:8b:fb:19:50:68:ba:22:3e:
22:6b:3d:ac:da:da:d8:ea:a6:ac:43:18:fa:e9:c4:d7:a7:69:
71:a4:a1:13:30:bb:af:5d:c9:30:5d:b8:f4:14:ec:f8:ac:5b:
26:2a:30:fb:ff:26:15:9b:56:ae:01:9e:6d:d2:54:fd:e5:ea:
58:1c:06:c5:3f:85:6e:d2:d4:1b:00:a5:a2:cf:ed:cd:6e:db:
d4:d2:4a:33:b8:d8:41:55:d7:51:2a:ab:27:fe:69:09:71:aa:
6b:1c:cf:09:ea:a0:86:a1:3c:5e:31:0c:b3:17:82:28:98:22:
c9:3e:d0:e4:e1:8c:ef:66:e9:05:9c:2f:07:f8:af:80:96:01:
5d:a5:c4:ac:b3:9d:e4:f3:99:88:1d:68:5e:33:04:36:d1:04:
b7:38:30:e7:55:df:9c:ba:7e:0a:23:19:3d:a8:4e:1a:1b:9c:
ee:fd:26:d5:8e:b8:b9:9a:aa:04:5d:74:4b:76:6e:45:e5:42:
53:74:1c:c9:2d:fb:15:e4:c7:ca:84:63:e9:b0:60:8f:3b:43:
a8:c1:60:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:54 2025 by rpki-client