Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
File: a3bJMU-szahJARCzTnmUbdjrrTo.mft (raw, json)
Hash identifier: SDWi79uXR5rI2wxcSePSNHVb/0lNMMr/m8iM85W/8hw=
Subject key identifier: 59:76:FC:5F:10:2D:8F:50:20:45:73:32:1C:5B:1E:75:39:91:3B:A9
Authority key identifier: 6B:76:C9:31:4F:AC:CD:A8:49:01:10:B3:4E:79:94:6D:D8:EB:AD:3A
Certificate issuer: /CN=6b76c9314faccda8490110b34e79946dd8ebad3a
Certificate serial: 0198D4736830F232A483B2C610235386BB93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
Manifest number: 0D2A
Signing time: Sat 23 Aug 2025 01:03:09 +0000
Manifest this update: Sat 23 Aug 2025 01:03:09 +0000
Manifest next update: Sun 24 Aug 2025 01:03:09 +0000
Files and hashes: 1: GQ4okKYObDE-j1xycURkWS4ZSu4.roa (hash: WJRKBv0neQmanj6UIle0b8oMi28WgQBdTYQH6BO3sRs=)
2: a3bJMU-szahJARCzTnmUbdjrrTo.crl (hash: EjEyIS6Ej2nzlNlN0WIBT3LfiAO1XY/4wvLqaDFh+pA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:68:30:f2:32:a4:83:b2:c6:10:23:53:86:bb:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b76c9314faccda8490110b34e79946dd8ebad3a
Validity
Not Before: Aug 23 01:03:09 2025 GMT
Not After : Aug 24 01:03:09 2025 GMT
Subject: CN=5976fc5f102d8f50204573321c5b1e7539913ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:59:5b:8a:f6:31:c0:e3:ab:43:6a:f2:e5:4c:
8e:53:59:7b:7d:8a:95:82:c1:2d:76:ef:dd:42:f5:
94:e6:df:07:5c:43:d7:5b:d7:99:df:a0:9e:c0:48:
ed:18:49:61:b8:2c:38:cd:5e:1a:d8:df:00:51:a6:
54:88:b7:0b:1c:99:f7:63:79:29:b2:21:29:15:db:
c3:4c:40:d8:fd:13:e2:86:d1:42:a8:cf:58:e5:ec:
d0:72:76:4d:2d:9f:72:69:1f:5d:f6:a5:b6:5c:78:
5b:6e:db:d5:a7:ee:df:eb:1a:0f:04:2a:d6:bf:24:
0d:9b:de:4b:bf:4f:d5:ee:f6:c1:80:6e:69:ba:ab:
0d:5e:2c:62:b6:46:2b:51:31:1d:86:32:21:19:ae:
d0:df:c6:f6:b9:99:f3:ab:fc:a2:e2:f5:32:21:1d:
4c:8d:b7:d4:cb:b7:bf:1e:d3:9e:74:8b:09:f2:b5:
34:95:f8:fc:5a:a2:ab:5e:1b:f2:2c:e4:67:9f:57:
b4:21:d0:45:fc:97:ad:9e:12:c2:fe:b8:48:74:31:
7f:f4:21:f9:76:fb:74:7c:ee:93:3c:4c:ac:40:b2:
cd:46:92:3c:ad:15:20:fe:ff:8a:4f:96:46:7e:c8:
56:b8:78:7c:a9:5d:56:ea:fb:f4:c6:56:48:0b:29:
06:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:76:FC:5F:10:2D:8F:50:20:45:73:32:1C:5B:1E:75:39:91:3B:A9
X509v3 Authority Key Identifier:
keyid:6B:76:C9:31:4F:AC:CD:A8:49:01:10:B3:4E:79:94:6D:D8:EB:AD:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:a8:1d:4e:cc:d1:c1:0e:5f:9b:0e:ba:06:60:d4:93:a8:c9:
b2:2a:cf:23:b3:cc:d9:04:9a:46:d6:2a:90:ab:69:57:e3:74:
bb:77:60:07:c3:d1:b4:9f:58:86:db:ff:b8:92:29:8e:a6:79:
39:46:b6:68:b9:95:f7:da:49:37:ca:42:87:ee:36:6b:6b:6c:
10:0a:1b:5a:a8:68:0e:a3:b9:7b:71:94:09:f9:fe:e9:31:d9:
7c:a7:18:15:2c:99:9a:b8:02:89:63:f3:de:19:ad:9e:04:a8:
6a:f5:cd:2e:7a:cf:ae:95:6a:48:7a:5f:08:c4:71:31:16:91:
4e:82:1e:00:bf:bf:2f:bb:c1:87:75:60:df:21:a0:b4:6f:8b:
1b:6d:5f:f1:5e:72:9e:85:05:ef:9c:ba:ef:c6:de:3b:9c:7e:
9d:b4:15:9f:2c:66:e0:44:bd:1a:22:10:85:0b:3f:2f:64:b0:
b9:c1:85:ac:53:41:9d:e9:25:32:13:c4:e6:f8:0b:38:7e:94:
ce:ee:cf:32:70:fb:f1:2a:06:6b:50:66:54:02:87:8e:66:0b:
42:a8:e1:d1:24:e4:b4:db:44:09:f6:67:e5:c3:12:be:77:ec:
9a:54:09:2f:3a:8f:12:2f:d2:d2:47:8e:52:ce:e9:f6:7e:6f:
d9:05:90:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:36:57 2025 by rpki-client