Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
File: aTHX56mXSaOF6usn-FCridqPLuA.mft (raw, json)
Hash identifier: hl0oHbRn/FtJkYza/DRMmB51ipkfIlw74+ubrIb9sMk=
Subject key identifier: B7:79:63:5D:C9:52:EF:A2:AC:DF:A0:49:A5:B5:72:47:95:CF:3C:37
Authority key identifier: 69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0
Certificate issuer: /CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0
Certificate serial: 0199FE46BC619914B4DE4B9ED5387A55625F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
Manifest number: 0620
Signing time: Sun 19 Oct 2025 21:01:12 +0000
Manifest this update: Sun 19 Oct 2025 21:01:12 +0000
Manifest next update: Mon 20 Oct 2025 21:01:12 +0000
Files and hashes: 1: NluQuRsgOiFaIXTWt3y3rez6Bh4.roa (hash: JKkT06F430W2THw9Cv6TXAFRcJ7i7LHFoCLoKhmOqSc=)
2: aTHX56mXSaOF6usn-FCridqPLuA.crl (hash: oSYZ8c7aJNgeT3qP7+jdsK7b3H1YnYtYuuOmUouxXcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:bc:61:99:14:b4:de:4b:9e:d5:38:7a:55:62:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0
Validity
Not Before: Oct 19 21:01:12 2025 GMT
Not After : Oct 20 21:01:12 2025 GMT
Subject: CN=b779635dc952efa2acdfa049a5b5724795cf3c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5d:fb:03:7e:8f:cb:b6:4f:bc:f2:33:7c:68:
ed:6a:0d:4f:48:4d:ba:0a:01:33:bf:ce:3a:84:39:
cc:7c:05:7d:03:7e:98:18:0c:31:e4:6a:29:80:b3:
27:46:21:3d:6a:6c:00:cf:80:ef:cf:b5:c4:1d:cc:
96:2e:68:2c:0d:b2:a4:42:c4:28:f1:2d:a3:ce:de:
14:43:c5:ee:e5:cd:c3:01:17:9e:01:4b:1b:fa:44:
f1:9e:47:24:15:55:4d:e6:47:6a:4d:cd:95:39:1f:
2e:dd:df:46:20:c5:32:fc:27:5a:d3:f5:28:dc:cb:
82:1c:b4:5b:49:c7:9d:3c:ff:4c:ca:66:35:5d:70:
c1:16:a6:cf:b3:f8:5c:8b:a7:04:4b:83:01:a6:64:
13:9f:78:3e:e0:f9:cd:06:8c:03:03:77:c7:0a:11:
0c:06:37:9b:73:72:ff:97:f4:5d:45:86:1f:ee:b9:
c9:31:1c:88:39:96:45:77:88:37:54:47:49:6a:03:
d5:1c:7e:c5:81:5e:c3:d4:ea:eb:a0:c2:46:45:18:
70:6f:e8:b6:a2:f2:0c:98:ba:72:3f:b4:60:76:91:
2e:1a:a0:65:3a:d3:89:15:d6:46:61:df:4d:ea:76:
46:dc:9c:27:6d:ce:eb:da:67:d2:14:9a:49:1d:a4:
a2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:79:63:5D:C9:52:EF:A2:AC:DF:A0:49:A5:B5:72:47:95:CF:3C:37
X509v3 Authority Key Identifier:
keyid:69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:f7:93:4a:72:8d:e7:83:2b:7b:44:d3:31:36:a5:1f:e4:46:
32:dc:c5:e2:02:5a:3a:9e:fe:dd:0e:c3:48:3d:1b:24:4b:0b:
8f:fd:c3:dc:3e:3c:b1:05:c6:56:7f:f5:72:f0:6c:fa:3a:40:
08:9c:a7:f5:00:dc:29:70:5a:55:0b:d8:41:62:44:d9:0c:03:
21:5f:0a:66:cb:ae:85:91:99:b8:80:e7:a2:d4:8a:44:35:83:
a3:26:23:dc:98:15:a9:8c:65:6c:57:e3:75:cd:ad:6a:41:86:
0f:7a:5a:54:ed:5e:01:d3:95:0a:b7:ca:d4:a1:42:2a:ef:b8:
5b:a7:21:65:ae:51:43:f7:dd:a3:58:f0:73:49:2d:90:dd:bb:
eb:68:3d:74:16:67:4c:71:6c:22:e5:63:da:e1:ef:45:8c:47:
31:b0:6f:3b:60:25:0e:46:cc:4c:a5:7b:91:99:95:8c:64:8a:
6d:b0:f6:24:3d:a0:c7:75:48:63:42:41:97:9d:3c:f3:c3:82:
02:ca:ca:76:e7:96:a9:42:73:bb:85:f1:19:b2:7b:9b:fa:77:
82:c8:1b:fd:82:82:0f:d7:f4:aa:3e:28:65:aa:e0:b5:45:21:
0b:d6:ec:7e:0f:f8:0f:46:a1:a0:75:7f:54:62:14:4c:da:8f:
c8:af:b3:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:19:39 2025 by rpki-client