Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
File: aTHX56mXSaOF6usn-FCridqPLuA.mft (raw, json)
Hash identifier: N/PordE21jk/RkKvr1VJDNV0bFdN1fjFHX9ZVC8aeY0=
Subject key identifier: F8:F5:8A:1A:63:FC:2B:66:5E:35:47:A5:AC:B5:31:A7:2A:6C:92:71
Authority key identifier: 69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0
Certificate issuer: /CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0
Certificate serial: 0198D4E0A997E44788DD26906DEB09EB3A3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
Manifest number: 0586
Signing time: Sat 23 Aug 2025 03:02:29 +0000
Manifest this update: Sat 23 Aug 2025 03:02:29 +0000
Manifest next update: Sun 24 Aug 2025 03:02:29 +0000
Files and hashes: 1: NluQuRsgOiFaIXTWt3y3rez6Bh4.roa (hash: JKkT06F430W2THw9Cv6TXAFRcJ7i7LHFoCLoKhmOqSc=)
2: aTHX56mXSaOF6usn-FCridqPLuA.crl (hash: UhpX/2keaSfmvJlPdsUsRwIbMjaQFrEwSlUt3Z8boVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:a9:97:e4:47:88:dd:26:90:6d:eb:09:eb:3a:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0
Validity
Not Before: Aug 23 03:02:29 2025 GMT
Not After : Aug 24 03:02:29 2025 GMT
Subject: CN=f8f58a1a63fc2b665e3547a5acb531a72a6c9271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:66:d0:23:95:c3:23:72:b5:5d:12:ca:5c:65:
79:90:ee:d4:ea:9f:37:43:57:64:b8:c3:3c:3e:cb:
6a:a6:52:ec:60:9b:ff:81:79:ab:d1:54:b1:cc:2b:
35:d7:e0:3d:11:9d:13:82:43:fa:57:6a:da:91:2d:
cd:5e:c2:8a:19:b4:e7:2e:9d:08:c4:bd:e1:9b:20:
b4:66:3f:6d:fc:7b:22:10:a2:0f:ca:c6:d0:af:c1:
ca:9b:52:42:49:62:3a:08:41:4b:cf:49:07:41:2a:
43:51:93:03:48:2d:d0:df:37:d0:31:74:6f:e0:04:
4c:ad:49:44:56:1b:7c:a3:16:65:d5:ad:0c:d1:8e:
3b:20:64:a2:6e:e0:a3:9c:19:4a:52:d6:a8:bb:3e:
99:71:1e:10:cd:27:d4:2d:9c:74:90:ca:42:71:b7:
9d:5a:3f:39:b7:b1:00:ee:da:97:25:f5:a4:7e:15:
63:f7:a8:4f:69:11:b3:28:fe:b2:88:98:38:87:79:
0d:66:d5:97:99:4a:43:99:20:a8:64:a8:d5:36:85:
a2:ea:f4:5e:6a:3c:55:bc:ec:d5:66:cf:9b:0d:16:
dc:a4:56:6a:27:c0:ab:0d:c3:c9:6c:86:8d:ab:59:
c9:53:28:21:4d:b5:cf:47:3a:4a:65:f8:b3:75:92:
6b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F5:8A:1A:63:FC:2B:66:5E:35:47:A5:AC:B5:31:A7:2A:6C:92:71
X509v3 Authority Key Identifier:
keyid:69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:40:d0:9d:92:9b:55:07:e7:98:08:25:27:76:b5:ca:e2:09:
1b:5b:52:a7:f7:7b:52:97:0f:fb:1e:f1:fa:8d:4b:98:fc:29:
ca:f8:6c:74:44:1e:f4:b0:b9:2c:d6:00:cb:1f:0c:b8:18:f4:
64:b3:f1:af:94:9b:3e:25:16:7f:86:71:7d:87:3d:93:81:f6:
98:ff:2c:e9:0c:1b:96:f0:0e:fb:92:05:0d:a8:24:98:d2:3b:
4e:0e:29:d6:88:e8:2e:01:98:e3:1c:b2:af:65:39:0a:39:b0:
1f:51:f7:f3:d5:8a:ca:64:12:cb:3f:18:1d:fc:30:fe:98:72:
20:09:ac:8d:0a:7c:44:68:ce:b6:a7:54:d7:b7:b4:ca:4b:06:
e6:f9:fc:c0:2d:eb:6e:0f:c1:45:df:d1:29:ae:e5:51:bc:a1:
23:a6:1c:27:8d:2d:7f:d5:c4:2f:48:af:e8:fb:84:ba:74:de:
06:b0:e0:1d:00:ab:c6:35:32:19:d9:47:70:af:17:c5:1d:54:
d0:63:46:83:bc:ec:01:82:ee:1f:b6:5a:5c:cc:d8:6d:13:7e:
98:0f:00:e3:09:b2:ca:57:89:ec:01:74:30:99:80:b7:c4:aa:
8d:83:d0:b1:52:72:80:d3:3f:20:96:c5:04:74:2c:91:67:31:
e2:03:9a:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:42:58 2025 by rpki-client