Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
File: aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft (raw, json)
Hash identifier: TMukGRC5B4NjQlH9fzXlW4xRTIxWZYLnCKZ91ih42xI=
Subject key identifier: CB:5E:8F:B2:49:D1:B4:D7:BF:45:55:3D:42:27:1A:7C:6E:05:1D:79
Authority key identifier: 68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80
Certificate issuer: /CN=6821c8ff0437f7edd829166fde03446f86109d80
Certificate serial: 019A0035B19E0F9E7DFCE11E53729A49FC95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
Manifest number: 16E7
Signing time: Mon 20 Oct 2025 06:01:50 +0000
Manifest this update: Mon 20 Oct 2025 06:01:50 +0000
Manifest next update: Tue 21 Oct 2025 06:01:50 +0000
Files and hashes: 1: NmoeARNR5KlnZdBERWuM-iNzYM0.roa (hash: HgaWyfSju8BbiVq620WeDucyKoI/pqgp0CZAcN9HrcI=)
2: OxQUm2cc932_SbZHxUC7er0Sf-I.roa (hash: j3K3BKXe7Af0d19rliHQJv9FsfvecTZMNvSiBZonE64=)
3: ZH-i__Oj4SIwtAOHRRVv0u8J8eI.roa (hash: WEK6Mlk9pLflVadH6HQ/a95uE6G+8NUpMYALAx2797k=)
4: aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl (hash: S6m10M4OSO16yqVdj+G4qidH0uVdbhRoKA7fncThm4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:b1:9e:0f:9e:7d:fc:e1:1e:53:72:9a:49:fc:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6821c8ff0437f7edd829166fde03446f86109d80
Validity
Not Before: Oct 20 06:01:50 2025 GMT
Not After : Oct 21 06:01:50 2025 GMT
Subject: CN=cb5e8fb249d1b4d7bf45553d42271a7c6e051d79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:8f:bd:55:48:4f:1b:31:28:06:31:53:06:b5:
12:0a:ea:e8:33:8c:27:c1:4b:71:5c:64:75:58:87:
d3:30:e3:1b:ca:f6:e5:6a:ee:1f:df:0c:81:87:8e:
eb:12:06:ce:56:44:64:f7:35:54:87:75:2b:e2:2d:
5c:41:68:cb:29:57:00:20:c1:cb:21:9c:03:31:64:
cc:ce:23:ed:cf:55:81:4d:5b:4e:e3:12:95:42:39:
c6:8e:f0:c3:e2:ad:3e:b6:c5:83:84:d7:1e:7d:85:
24:b9:c4:9b:95:45:1c:13:4e:64:27:7e:88:9b:eb:
4e:e1:60:c1:e5:8a:a8:45:1a:22:87:35:92:93:29:
b8:1f:3f:e6:98:d6:0b:b6:11:a2:98:25:06:c1:8d:
12:64:23:ed:e9:4d:2f:a0:5f:23:07:a2:5c:fa:aa:
ee:c8:a4:38:69:e8:7b:a8:1e:d0:56:66:35:76:3c:
8a:11:98:14:05:00:74:9e:56:97:20:36:d0:a7:6c:
72:9d:a4:b2:88:61:bf:56:c8:d1:70:2a:75:2c:c2:
81:21:d9:98:94:eb:f9:a8:3b:8d:78:2e:55:51:cd:
b4:c6:17:20:50:34:ab:14:a2:69:83:af:be:96:cf:
06:dd:22:8e:bd:46:18:11:a1:8e:2e:c4:ee:cd:93:
f6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:5E:8F:B2:49:D1:B4:D7:BF:45:55:3D:42:27:1A:7C:6E:05:1D:79
X509v3 Authority Key Identifier:
keyid:68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:c8:1f:86:f1:91:12:ed:39:eb:73:29:6b:bd:49:9a:06:f6:
d1:1f:36:92:86:29:4d:a2:77:af:10:70:1d:f9:48:06:63:dc:
74:62:3d:dd:ec:02:10:43:32:22:8e:63:47:33:81:77:39:0e:
0a:da:5d:e0:00:6e:9b:dd:b5:a4:a2:dc:2a:00:17:ce:da:b4:
ab:34:0b:14:cb:61:2d:41:1d:fb:17:e2:53:f1:ce:bd:3b:39:
be:0e:98:27:f5:85:16:de:04:f6:fd:2c:57:c1:52:71:88:d8:
94:ee:6a:47:9c:3d:bf:1e:5e:92:74:4f:12:86:36:1f:15:cc:
07:eb:a0:33:d1:09:40:0e:99:ae:4e:0a:dc:67:7e:e8:91:96:
ce:25:21:6d:f7:5d:89:f0:5c:bf:67:d2:e8:da:46:74:3f:e0:
85:23:7a:90:9d:21:2a:4d:2d:69:10:52:b8:ba:29:fa:ac:b6:
93:a8:68:20:22:f0:f3:00:43:6c:f3:1f:1f:10:97:bc:26:c7:
8f:65:ca:ab:6a:a7:6f:a0:81:9d:0f:a4:a6:f1:ea:cc:f8:2e:
5a:19:2a:f0:df:8c:1e:53:35:05:52:58:00:21:f1:e8:b9:e9:
a2:d8:31:bd:66:cb:ea:78:d8:0d:87:8f:bf:f9:21:50:da:63:
10:78:cc:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:03:14 2025 by rpki-client