Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
File: aCMaUAoKgQjcekNYsQArH9vweZU.mft (raw, json)
Hash identifier: jntSgC03cO0XfC/Wn7YchpJEGBfAY74qIc7FqReM1wQ=
Subject key identifier: 17:BB:C0:22:76:4B:6D:50:C0:01:60:E5:89:9E:B1:E8:6F:45:A4:AF
Authority key identifier: 68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
Certificate issuer: /CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Certificate serial: 0198D8847C7628F2D4060881256FDEADB302
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 20:00:17 +0000
Manifest this update: Sat 23 Aug 2025 20:00:17 +0000
Manifest next update: Sun 24 Aug 2025 20:00:17 +0000
Files and hashes: 1: XSGE2n2dKWY3M_jq3MngIc3i_t8.roa (hash: pwMRSRLzn3jyPbMLShLv8HDNQd5Gm8ws1AjCFBEAHaU=)
2: aCMaUAoKgQjcekNYsQArH9vweZU.crl (hash: jY+IjDPX8X1VdC+4ccDeB3nkt+zpvxydgpbd5JTCNWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:84:7c:76:28:f2:d4:06:08:81:25:6f:de:ad:b3:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Validity
Not Before: Aug 23 20:00:17 2025 GMT
Not After : Aug 24 20:00:17 2025 GMT
Subject: CN=17bbc022764b6d50c00160e5899eb1e86f45a4af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6c:51:9d:94:81:38:7b:e6:a3:66:41:6e:0e:
ca:58:0a:76:f9:ba:a9:92:5c:fd:19:e9:a7:fc:ea:
f5:e6:04:2b:0a:5a:95:d3:df:8d:85:17:43:56:c2:
ed:0a:65:24:6c:0d:8d:dd:fa:f9:98:f7:70:1d:5c:
86:80:f7:7a:a6:5d:71:43:db:e6:e2:49:cc:3c:9f:
8a:3a:8b:34:1d:84:3a:64:e3:5f:00:eb:29:85:80:
8e:6a:13:f2:61:61:d9:9c:86:8b:a6:a2:d3:61:c9:
78:33:42:2f:14:51:6d:8c:05:11:b8:cb:cc:d1:78:
2f:e4:bb:28:b8:b9:da:78:de:92:cb:fe:3c:ee:27:
ab:6a:c9:fc:8f:13:53:bf:b4:cb:35:e5:c7:fd:35:
ba:78:14:34:ed:0a:10:00:ad:97:44:08:68:97:7d:
5b:b4:d1:13:62:22:d0:82:97:27:36:81:31:10:c1:
e9:2d:d4:e5:10:d0:84:7b:e5:75:e2:d8:fb:2a:f4:
e7:58:cb:60:13:d2:13:f9:8a:96:0e:f3:85:2a:cd:
b1:21:e8:b0:9e:2c:65:36:0f:64:67:00:de:c3:61:
96:22:0a:11:d5:a3:22:4f:66:96:9b:75:66:8e:af:
e0:72:f4:4c:e8:aa:fd:fa:9a:9d:bb:bd:8b:b7:d1:
c8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:BB:C0:22:76:4B:6D:50:C0:01:60:E5:89:9E:B1:E8:6F:45:A4:AF
X509v3 Authority Key Identifier:
keyid:68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:e2:a3:d0:26:09:d8:30:7f:8b:ab:90:9b:13:c4:9c:cc:eb:
08:34:eb:7a:94:0b:43:07:5f:f3:40:35:32:2f:85:26:3f:a1:
5c:5a:c1:d5:95:88:fe:63:d4:54:6a:ea:24:31:96:ac:ec:e9:
bc:09:aa:1f:e3:6e:34:23:e0:6b:3a:d3:bd:20:60:5b:7b:17:
f7:86:3f:12:c7:cb:7a:f0:fe:f7:a3:14:50:b2:1d:62:5d:91:
ba:23:24:c3:b0:11:c7:4b:3f:a6:57:e1:b2:91:18:c7:ae:7f:
37:42:7a:dd:f3:ca:3b:22:97:76:b3:47:d5:d0:57:cf:f4:1d:
71:06:52:18:cc:7b:3f:f2:b3:ad:99:75:dd:90:80:70:bb:64:
e7:05:ab:78:94:73:4b:04:2c:ef:f4:30:3f:36:dd:4e:d4:05:
57:90:4e:ed:e8:3a:25:6e:37:66:8a:ce:0b:91:e7:92:a3:35:
70:f8:29:7b:2d:72:57:87:bd:b9:1a:ac:46:af:de:05:2b:e4:
d4:26:29:4a:bc:45:48:78:75:d5:72:1b:76:dd:73:66:c7:df:
37:e9:8d:cc:e9:c5:d0:fc:a9:16:38:31:d3:8c:e2:2b:df:4b:
68:b6:7b:46:38:79:a6:a1:37:51:fc:88:cf:96:42:b6:49:57:
c8:29:2a:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 05:41:32 2025 by rpki-client