Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
File: rKKhlS5xiUSkBDSg6-__2iv-7V8.mft (raw, json)
Hash identifier: 4iE7CrIdbK1BAMZ1RM+ieeIOZ1P0LAbyr/uw2HPQQ4A=
Subject key identifier: C6:C8:5E:9B:07:AB:D2:30:27:A5:F9:04:A2:18:C0:80:1B:12:EC:A6
Authority key identifier: AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
Certificate issuer: /CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Certificate serial: 0198D583CEBEDD7CFF1BD3049E425AD0EE35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
Manifest number: 1306
Signing time: Sat 23 Aug 2025 06:00:41 +0000
Manifest this update: Sat 23 Aug 2025 06:00:41 +0000
Manifest next update: Sun 24 Aug 2025 06:00:41 +0000
Files and hashes: 1: mN-Gq3CnQOseJQb6vbylzDVdWSg.roa (hash: fOE9ILnEXk1PyxS5P7XqjGQMPFnkivt3IHprv8lvkaM=)
2: rKKhlS5xiUSkBDSg6-__2iv-7V8.crl (hash: RHwM/I7QLJ+WXl9jWtlilZSILEVmsqWb70CBe6HyaFc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:ce:be:dd:7c:ff:1b:d3:04:9e:42:5a:d0:ee:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Validity
Not Before: Aug 23 06:00:41 2025 GMT
Not After : Aug 24 06:00:41 2025 GMT
Subject: CN=c6c85e9b07abd23027a5f904a218c0801b12eca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:41:38:33:79:9d:bc:a8:64:8c:94:de:a7:54:
66:2e:d1:f6:cc:80:b8:b7:67:1d:a1:c5:cf:d3:81:
6c:8f:3c:82:27:e3:e6:4d:19:91:da:2f:30:a3:07:
98:7c:30:50:55:db:7d:b0:89:64:0c:33:0e:f1:e9:
15:22:b4:a3:e1:96:53:73:2b:16:24:14:35:a6:5d:
21:c4:22:3f:b4:41:05:b6:71:b1:b3:7d:4f:68:10:
92:7c:a5:40:10:59:08:85:5c:53:2d:f6:d9:99:28:
63:d8:22:89:e2:ea:33:9f:dc:63:cb:22:02:9d:ad:
36:92:e4:1f:3a:b5:a3:9e:cc:ce:6f:be:9e:3a:f9:
c7:c8:74:8c:b0:77:35:0c:58:63:00:ef:2a:4f:1d:
7e:6c:8d:0d:29:1e:ec:37:a4:77:55:a9:5b:55:ae:
b3:2c:cc:65:5f:ea:7d:7d:73:32:cb:19:a3:eb:52:
bb:e4:dd:90:ff:33:fa:51:10:74:6a:0e:4d:ee:7a:
2d:2d:ca:95:51:44:cd:e9:09:e9:13:fa:e2:f7:c7:
72:6f:75:26:b6:73:10:de:c1:79:01:57:b1:9a:9a:
3f:b4:54:21:da:10:7e:f1:12:a0:05:7c:f6:49:e6:
ee:c2:d7:69:12:67:d8:13:96:19:50:7f:9f:92:9f:
ea:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:C8:5E:9B:07:AB:D2:30:27:A5:F9:04:A2:18:C0:80:1B:12:EC:A6
X509v3 Authority Key Identifier:
keyid:AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:53:7a:d7:e6:28:02:fb:4c:2d:8a:f2:9f:c9:9a:fe:8b:7b:
66:18:7e:18:14:e2:49:ea:2e:5f:f8:e4:61:74:00:c8:30:4c:
79:53:20:4e:cd:3f:d8:64:8e:ae:c2:5f:9c:66:2e:d4:fd:6b:
28:1d:10:a6:53:16:fd:6f:6b:e2:ff:43:1e:f9:3a:e3:92:bc:
a8:a8:15:bb:f6:17:43:52:bb:16:e4:25:4e:ab:23:d1:41:96:
a5:2a:40:a3:ca:2d:25:80:52:64:d2:36:b4:3a:0f:ab:cd:aa:
15:14:5b:a7:fe:88:6b:35:76:46:25:93:79:42:97:51:e0:cd:
c0:c4:96:5a:1f:40:9e:b1:92:b4:9f:fd:db:bb:51:82:35:b0:
92:a8:dd:c5:a4:ea:3b:b1:53:b7:6b:9f:4a:89:a0:ff:56:6a:
96:e7:13:6d:61:7d:38:f6:70:ff:df:0d:98:73:b9:06:68:71:
be:76:c2:14:df:c4:53:7a:53:14:89:33:0f:a2:4b:62:66:4a:
99:c1:f3:d1:bf:d0:a9:d2:66:71:db:b1:83:de:5d:3d:25:09:
58:59:e1:6e:98:44:ae:3b:ad:39:65:f9:c2:b0:4c:46:7a:1d:
a9:ac:bc:b4:6d:83:a5:a1:22:52:ba:fd:62:49:73:d4:51:00:
0a:64:45:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:40:39 2025 by rpki-client