
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
File: aQomMkmEfPlzRHQiE2RPkpvqqZc.mft (raw, json)
Hash identifier: IxF0u8DmIA277nVL30U4UDyyKOLR6brA6+4wx0fZXN8=
Subject key identifier: 3F:A1:0F:85:60:CF:C2:40:57:B6:F0:90:A5:D7:78:7D:8E:40:B9:C7
Authority key identifier: 69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
Certificate issuer: /CN=690a263249847cf97344742213644f929beaa997
Certificate serial: 0198D66086AB20E033AEC9BEA1879A6EF772
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
Manifest number: 08A9
Signing time: Sat 23 Aug 2025 10:01:46 +0000
Manifest this update: Sat 23 Aug 2025 10:01:46 +0000
Manifest next update: Sun 24 Aug 2025 10:01:46 +0000
Files and hashes: 1: DY21Bg3oUbtzm77wQkCwRHIkQQk.roa (hash: qZIMcnP47zIIcLpWesPleUJ2XdB9zCYyYyzYWyBj/nk=)
2: aQomMkmEfPlzRHQiE2RPkpvqqZc.crl (hash: JQZJnf6/gVRPwNAsWn6Pg68+cR+Q2+SbdUiA/1sRdiw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:86:ab:20:e0:33:ae:c9:be:a1:87:9a:6e:f7:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690a263249847cf97344742213644f929beaa997
Validity
Not Before: Aug 23 10:01:46 2025 GMT
Not After : Aug 24 10:01:46 2025 GMT
Subject: CN=3fa10f8560cfc24057b6f090a5d7787d8e40b9c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4a:1a:48:42:91:2f:4a:b0:08:63:bf:da:a1:
b7:b8:9f:76:00:7e:c8:8c:14:8c:c6:53:14:8b:81:
95:0d:f2:19:4b:fd:fc:ad:37:57:10:d4:23:9a:e6:
cc:99:b6:22:d6:5c:48:f2:24:7f:1f:e7:06:6f:44:
95:ff:5a:03:e3:f8:64:7b:b2:4d:a7:0d:27:89:91:
ed:ac:a3:00:f3:3c:5d:e4:3b:5a:8c:b8:dc:93:07:
2c:76:de:a1:43:76:e5:45:28:88:af:ea:2d:f6:63:
75:fa:50:31:ab:c6:cb:17:86:98:0d:11:5b:69:d3:
ef:95:f5:bd:39:75:5b:c4:6b:50:d7:3a:bd:26:19:
c8:92:1a:08:b3:28:c0:14:ab:24:4a:a1:5a:e2:80:
2c:00:8a:eb:b9:a0:8f:5c:ee:53:10:c6:f0:21:56:
88:50:c8:64:15:dd:c7:ef:af:9c:04:69:12:b8:0c:
05:8a:99:77:d5:db:78:c8:60:36:16:b7:69:e5:8d:
15:af:b3:fe:d6:6c:07:e7:e9:2b:b0:a0:ab:11:37:
ec:ef:d3:cf:eb:27:26:a0:cf:75:21:51:f2:70:e8:
ea:9c:30:43:21:72:dd:3c:fb:76:50:7f:3e:99:71:
18:e9:ba:42:74:d0:c9:0f:10:f1:32:cc:8e:89:98:
95:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:A1:0F:85:60:CF:C2:40:57:B6:F0:90:A5:D7:78:7D:8E:40:B9:C7
X509v3 Authority Key Identifier:
keyid:69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:42:e3:68:9f:ce:cd:1f:cc:be:41:e2:9b:08:71:68:89:c7:
c0:29:64:5d:13:02:5a:46:34:fc:f1:70:b4:3e:cb:48:a7:4b:
65:cc:80:93:fd:ea:ff:19:d3:c0:63:c2:37:a9:59:e4:64:0d:
b1:a5:ae:ca:fe:21:0a:22:c5:0d:72:34:58:94:b8:6a:91:2e:
95:68:44:ed:47:7f:41:41:53:d8:66:c7:29:84:14:cf:59:b5:
8a:aa:a1:65:b1:da:e0:28:1e:b8:1d:18:af:4e:ea:b3:3b:99:
34:25:c2:53:cb:32:63:ae:0c:2c:0e:13:3c:35:6f:69:68:33:
b5:f0:53:7b:f4:00:c4:61:5f:68:28:55:8a:55:b0:e8:e4:6d:
fc:b6:07:0a:22:29:9b:df:31:7e:7a:e4:35:66:c1:5b:63:af:
a7:67:cc:fc:cc:ed:eb:94:04:b6:2c:a7:45:1f:d0:08:cb:cd:
3d:c5:b0:85:4b:a4:e2:55:7f:f3:0e:64:74:e9:09:2e:cd:47:
5c:51:28:0f:9e:4d:d0:ce:10:4a:88:02:48:3c:4c:2b:34:32:
f5:39:f7:7e:37:a6:e0:4c:82:fa:6f:f4:d7:e2:0c:be:b3:ad:
d5:2c:b7:f9:41:01:81:85:8a:03:d5:a3:ee:6b:a8:02:6b:0f:
d1:d2:03:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:58:31 2025 by rpki-client