Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
File: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft (raw, json)
Hash identifier: nKcv/RmcgMmLnEQ8HST3q7K3++0wssJZExcyIT036VM=
Subject key identifier: 06:79:45:5F:A2:5B:6A:98:12:B4:75:61:DA:B5:BF:5C:11:83:D4:9A
Authority key identifier: 69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
Certificate issuer: /CN=690ae175fbe63b0e930469097c9492d42ed79249
Certificate serial: 0198D6985D24B5EBDDDA4E0E6886E7E92083
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
Manifest number: 32
Signing time: Sat 23 Aug 2025 11:02:45 +0000
Manifest this update: Sat 23 Aug 2025 11:02:45 +0000
Manifest next update: Sun 24 Aug 2025 11:02:45 +0000
Files and hashes: 1: Ft7Frn9ocyQeuHjXMeEeGoh_tdk.roa (hash: +hbGdiT9EB+gQ7hEwq4X6SV+6RnEdb4t2Cal6rg6Zcw=)
2: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl (hash: hxH+YOORu4dWy22YdMVM0bjj6+MyOGOj+Y+SyKID3uA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:5d:24:b5:eb:dd:da:4e:0e:68:86:e7:e9:20:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ae175fbe63b0e930469097c9492d42ed79249
Validity
Not Before: Aug 23 11:02:45 2025 GMT
Not After : Aug 24 11:02:45 2025 GMT
Subject: CN=0679455fa25b6a9812b47561dab5bf5c1183d49a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5a:80:7a:30:e7:1b:32:f8:33:b8:2b:64:7d:
d9:d8:1f:15:50:eb:89:01:d3:a7:79:ce:de:bb:ec:
f8:06:a1:a4:f9:0f:48:d1:7a:04:e2:3e:c7:c7:c1:
f4:49:74:23:47:1b:cd:e2:3c:03:c0:af:af:e6:93:
d6:04:f4:09:27:fb:27:e5:ec:21:8b:c0:02:94:61:
05:23:13:43:c2:99:a0:27:bf:ab:d2:00:c0:ea:d9:
cb:41:41:d9:cf:64:94:d7:68:00:57:7d:05:49:a0:
c1:57:89:72:d4:e4:c4:38:9c:02:8b:0a:85:90:d5:
e1:4e:5d:82:24:62:33:78:19:cf:0c:9e:74:07:e9:
c5:40:c2:65:e3:6d:90:fa:b1:b2:78:16:2c:a8:ca:
bc:17:ab:b5:b7:61:f2:bc:79:7a:ed:4f:bf:54:d7:
39:d9:0d:08:2c:fc:2d:a6:8a:88:66:69:bd:57:15:
e7:c3:58:60:bc:11:b0:8b:a8:c4:ff:57:db:5c:35:
c0:4b:d9:2d:63:fc:0c:b7:ca:63:fa:9a:8b:a7:c0:
e0:4d:11:97:5d:dc:fc:61:7c:07:1d:de:60:09:5b:
85:57:13:86:32:8b:33:c8:11:46:d7:00:34:ec:9e:
35:38:2f:b6:46:cf:62:f1:a6:9c:d6:c7:29:a1:6f:
4e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:79:45:5F:A2:5B:6A:98:12:B4:75:61:DA:B5:BF:5C:11:83:D4:9A
X509v3 Authority Key Identifier:
keyid:69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e8:43:ac:9f:21:d2:bb:b3:f5:34:7c:cf:5b:4e:56:01:30:fb:
b6:91:8c:b0:11:ea:7c:1f:01:29:63:d3:81:73:42:ad:a1:5a:
aa:cd:07:23:31:c1:b4:5d:ba:b4:e9:40:a5:23:9c:df:f8:55:
fc:ca:66:fd:de:40:91:1e:cc:eb:a1:14:69:8c:77:b3:5b:8b:
26:69:9f:e0:da:3c:c0:23:29:55:12:a3:27:67:f2:7b:d7:b4:
a8:fc:1c:54:0a:d9:c3:23:56:ae:fa:96:ef:38:ea:02:c6:2e:
f0:d8:51:99:e0:a2:46:72:fb:c2:67:04:55:20:36:87:6e:fa:
fb:14:8f:05:ba:72:18:b9:82:ad:31:1b:4f:7f:bc:ed:18:84:
70:d4:72:9d:c8:58:17:ac:0f:f0:a6:a5:6b:3c:78:39:a1:c3:
64:b1:d7:45:78:a2:b1:e8:db:e6:e3:42:56:a6:d3:18:f9:5a:
db:46:16:a0:11:76:59:ac:0d:06:d9:9d:54:63:2f:a9:b6:7e:
d6:de:47:b0:4c:02:e1:b9:5d:dd:73:58:90:9c:51:8f:80:1f:
4d:e9:2e:9b:32:83:1a:c6:b7:d6:88:eb:f7:36:0c:f7:08:a8:
2e:ac:65:14:53:e7:38:dc:4a:83:0b:aa:f3:0a:95:7d:2d:8b:
86:99:5c:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:52:37 2025 by rpki-client