Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
File: 8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft (raw, json)
Hash identifier: moQxpS1XnyHOJ+6aozqZJWsAuAJEs+aedcWm2MYWvt8=
Subject key identifier: 24:22:FF:8A:5C:2C:D9:CF:7C:4E:CF:24:18:4F:91:9A:DC:95:F5:46
Authority key identifier: F0:A9:00:54:23:14:74:53:90:93:66:C6:B4:D0:9C:31:95:8A:CC:1C
Certificate issuer: /CN=f0a9005423147453909366c6b4d09c31958acc1c
Certificate serial: 0199FAD7DFD32FFDEC93116E128D05AB674C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
Manifest number: 7A
Signing time: Sun 19 Oct 2025 05:01:15 +0000
Manifest this update: Sun 19 Oct 2025 05:01:15 +0000
Manifest next update: Mon 20 Oct 2025 05:01:15 +0000
Files and hashes: 1: 4qVlaSTsE1gXSumcFtIoCSI6_Ds.roa (hash: gxiJkMzAgslpclu4FVxFkwBMuCJhHIk77n6WLMjRt50=)
2: 8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl (hash: IkTAoPOnfi/JSQOnoQz49S2PUYXv95VtIVRKx0BBzng=)
3: JPM4YH3p4W-kOC7R4fma0DgmIZQ.roa (hash: 1rs/yihW/LgAGtoac03H1xBXx8dUEUTLq50/L4CH5AA=)
4: kqgGhTxJAHOFMUNL3EFp83GA7Xo.roa (hash: YbWtoAqUQYcbJzxbPZ7TL2mv+/kqmj3HAGafEmcOApM=)
5: zWLkf9J7tc5E8tsLSE-YhUD6XZY.roa (hash: +Totm03QQJ2SJRLIDXG7rNkdSX+/Y9DffvcFrN9L3w4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:df:d3:2f:fd:ec:93:11:6e:12:8d:05:ab:67:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a9005423147453909366c6b4d09c31958acc1c
Validity
Not Before: Oct 19 05:01:15 2025 GMT
Not After : Oct 20 05:01:15 2025 GMT
Subject: CN=2422ff8a5c2cd9cf7c4ecf24184f919adc95f546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8b:a7:f9:c8:19:15:c3:49:55:4d:1a:ff:54:
12:8c:25:30:f7:e1:e8:13:c2:d7:6f:d0:61:29:e7:
03:81:8c:14:f9:94:f7:79:68:4b:99:9f:ae:95:d8:
c9:ef:0c:e3:44:bd:a1:7f:4f:a7:04:0d:d0:7d:df:
31:c9:76:1f:97:3c:6a:d4:ec:95:03:2f:85:d3:2b:
e8:ce:f8:c2:73:b4:fb:dd:18:f6:70:5f:2c:12:25:
13:4b:83:e7:a0:78:27:3a:fe:5b:d1:99:75:7f:04:
b5:4f:3d:5e:18:fb:8b:4e:74:b2:f2:69:cc:89:e7:
4d:55:de:bf:1a:fa:73:42:69:79:03:49:20:83:4b:
82:08:4e:cb:8f:8c:3c:74:8e:4a:bd:9c:9d:30:af:
d7:9d:84:ee:59:2c:67:be:c2:ae:7d:03:b8:2a:13:
81:41:70:db:d4:c7:5b:14:c9:9f:ae:50:31:fa:1b:
20:cf:39:c3:3d:a7:2a:07:c2:d6:ca:16:2a:2b:44:
82:c5:36:e2:e1:e1:c2:3d:62:15:77:d8:b3:9a:42:
3c:be:d5:b0:3c:00:ed:97:81:cc:b3:ba:3d:d2:20:
f1:9f:d0:20:39:c3:12:aa:ce:6e:4c:9e:45:74:b7:
74:2f:de:bf:11:dc:34:7b:1a:6f:75:b6:8e:6b:d5:
ad:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:22:FF:8A:5C:2C:D9:CF:7C:4E:CF:24:18:4F:91:9A:DC:95:F5:46
X509v3 Authority Key Identifier:
keyid:F0:A9:00:54:23:14:74:53:90:93:66:C6:B4:D0:9C:31:95:8A:CC:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:a1:f5:bc:bb:f4:2f:70:bd:e5:3d:8f:70:16:f7:03:4d:22:
86:74:fa:06:b4:0f:96:d7:51:d3:d9:ab:9f:bb:b9:62:a6:d6:
a0:d5:e5:44:1a:47:13:f0:15:47:f9:4a:45:f1:c0:e8:50:2c:
35:36:03:8e:fd:30:07:14:42:af:ad:db:06:c2:42:9c:6d:06:
6a:b9:10:6e:8e:97:d5:5b:7a:44:1a:86:af:f9:d7:f7:38:90:
33:a6:92:ac:a4:7d:4f:7f:22:bf:c9:6d:20:82:09:89:6a:6f:
95:b4:8b:49:f6:98:c6:0b:a5:c1:cc:8d:fb:cb:b5:3e:1d:8b:
c7:7d:2c:54:9f:1f:93:c6:36:c3:96:8f:d8:b9:4a:e4:e7:72:
95:fe:82:ed:85:42:6d:58:8e:a4:19:81:c7:01:bf:0c:f5:ac:
ae:89:95:47:64:6f:8c:8a:24:84:ae:2e:a2:33:77:fb:98:2d:
12:d3:fb:04:e0:54:5d:b4:c6:5a:43:e7:9b:fb:fa:4f:62:ea:
df:9d:e6:b4:0e:cb:ce:86:84:de:3c:56:da:1b:75:08:9d:91:
98:c3:4f:11:5b:f0:a1:00:30:28:d2:45:6e:b8:c4:f4:e0:b3:
f8:42:36:fb:eb:91:0e:3a:19:3a:9c:4c:29:b4:6e:1a:bf:15:
bf:87:28:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:46 2025 by rpki-client