Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
File: aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft (raw, json)
Hash identifier: C9YpiT/e5nmycgHKLukTrbx4QcuirpvBWSmTt0GJHXM=
Subject key identifier: E1:59:CF:37:62:BE:C1:B9:12:DD:8A:3C:55:75:58:61:8A:87:EC:5C
Authority key identifier: 68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80
Certificate issuer: /CN=6821c8ff0437f7edd829166fde03446f86109d80
Certificate serial: 0198D4E0ED27C049C3883B9D016DE391D9A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 03:02:47 +0000
Manifest this update: Sat 23 Aug 2025 03:02:47 +0000
Manifest next update: Sun 24 Aug 2025 03:02:47 +0000
Files and hashes: 1: NmoeARNR5KlnZdBERWuM-iNzYM0.roa (hash: HgaWyfSju8BbiVq620WeDucyKoI/pqgp0CZAcN9HrcI=)
2: OxQUm2cc932_SbZHxUC7er0Sf-I.roa (hash: j3K3BKXe7Af0d19rliHQJv9FsfvecTZMNvSiBZonE64=)
3: ZH-i__Oj4SIwtAOHRRVv0u8J8eI.roa (hash: WEK6Mlk9pLflVadH6HQ/a95uE6G+8NUpMYALAx2797k=)
4: aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl (hash: NWKvPuzIWmJuLCCe4SLhQiQjJHq+G+s2zYs4NtKk1Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:ed:27:c0:49:c3:88:3b:9d:01:6d:e3:91:d9:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6821c8ff0437f7edd829166fde03446f86109d80
Validity
Not Before: Aug 23 03:02:47 2025 GMT
Not After : Aug 24 03:02:47 2025 GMT
Subject: CN=e159cf3762bec1b912dd8a3c557558618a87ec5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a3:6a:91:05:52:7d:2d:35:b5:49:30:25:e1:
80:ac:95:55:4c:43:07:4a:15:cf:00:86:05:06:0c:
5f:01:8d:69:b7:b4:95:d0:e0:c1:7d:54:b5:28:27:
eb:46:6d:ec:8b:c9:cb:0c:cc:fd:b4:75:5a:0e:82:
83:79:f9:4e:16:91:2d:85:7f:03:84:3d:54:81:ef:
fe:08:67:da:73:e6:42:ca:3f:5e:ae:1b:fa:c8:60:
f2:4c:36:37:dd:78:b1:e8:31:7e:6e:75:bf:12:7e:
cd:89:46:d3:38:52:c4:a4:b5:ff:d7:cb:d5:bd:56:
c4:27:c0:0a:49:51:70:b1:25:56:19:b1:8b:99:30:
6a:f2:b9:68:d2:d5:da:3d:7e:93:62:8e:2b:56:8d:
17:51:5a:7f:28:cd:bd:93:0d:6d:1d:78:e8:8f:46:
11:42:9c:d3:fe:3a:cb:77:57:e9:f0:f0:74:1e:e3:
94:f5:34:db:bf:69:e5:22:2d:da:ed:aa:8c:89:69:
0a:8f:f2:6c:ee:b2:fa:1c:c8:b3:5e:b5:ef:30:d4:
18:af:cd:d0:6e:52:8b:ba:7d:b2:45:90:db:f0:45:
e3:7c:7d:33:25:e2:8b:97:84:02:4d:4c:c6:82:fd:
62:e9:3b:43:9a:b2:2a:7a:52:d3:6a:10:09:42:76:
e4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:59:CF:37:62:BE:C1:B9:12:DD:8A:3C:55:75:58:61:8A:87:EC:5C
X509v3 Authority Key Identifier:
keyid:68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:6b:06:9a:3c:71:57:73:24:58:2c:49:b1:71:b3:a1:b5:11:
f4:f1:75:ad:dc:11:8e:82:cc:54:73:13:56:97:85:9d:24:28:
d9:38:ba:b9:7c:a9:ba:67:53:b1:f8:99:e2:9e:14:f8:a5:49:
08:2f:18:c0:b5:bb:d5:28:9d:14:a2:a5:52:44:5f:e1:c8:ae:
69:bd:c7:17:32:54:cf:a7:86:78:05:68:af:a5:a4:25:0a:bf:
c0:6d:f5:f4:ca:0d:86:28:2e:7f:01:8f:01:91:f9:5c:62:74:
62:66:4d:b1:93:9d:16:e7:e3:b6:1f:76:70:e3:15:62:09:ce:
79:dd:f8:95:30:e1:4b:85:18:a4:38:c7:96:d3:45:6a:f6:de:
7c:6f:1a:d9:57:15:02:57:d7:11:1e:e0:19:09:ba:d5:96:a9:
7e:78:6f:f1:5d:41:13:84:5d:68:41:4d:2c:75:f6:7e:42:7b:
55:f1:32:05:15:a1:c8:92:bc:36:08:47:2a:5f:76:42:27:02:
c7:4c:c8:2b:4d:aa:1a:4d:e6:e8:7d:87:f4:1e:fc:b6:91:a9:
6c:63:c7:cb:ab:d6:37:f9:ce:a3:97:34:a4:7c:22:ab:ca:ba:
48:87:36:05:17:fb:b5:db:2f:4a:4f:94:f7:91:e1:0c:06:5d:
00:0b:79:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:30:03 2025 by rpki-client