Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
File: rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft (raw, json)
Hash identifier: PnBIZhGd64YP5ef1YP6N9iZ8OOlc2/kfOzMgqEG6Dno=
Subject key identifier: 35:77:7E:BE:22:5B:CA:79:11:AD:D9:E8:91:B2:BB:8B:7E:19:CA:73
Authority key identifier: AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
Certificate issuer: /CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Certificate serial: 0198D472EA36F1F826AF64FB3E148C373A07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
Manifest number: 1650
Signing time: Sat 23 Aug 2025 01:02:37 +0000
Manifest this update: Sat 23 Aug 2025 01:02:37 +0000
Manifest next update: Sun 24 Aug 2025 01:02:37 +0000
Files and hashes: 1: BAFnA8E_-fRHFvJR66V5dNg4Xzc.roa (hash: zli04q+UUFDZ6LvNlKF4wEZntdZy+cQL9il9Oh4rSZo=)
2: rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl (hash: 16Zk5mf9CTW/S4JGKe6wNyvZoo6nlvFqcGl6PMICeTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:ea:36:f1:f8:26:af:64:fb:3e:14:8c:37:3a:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Validity
Not Before: Aug 23 01:02:37 2025 GMT
Not After : Aug 24 01:02:37 2025 GMT
Subject: CN=35777ebe225bca7911add9e891b2bb8b7e19ca73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:36:05:ea:42:47:78:40:c0:f1:62:01:e7:9d:
0f:27:61:f4:6d:a7:4d:4a:b4:16:10:26:3a:ed:9c:
f3:01:c3:52:fb:7d:b8:04:3b:b5:82:8e:dd:0d:51:
fa:17:a3:c7:51:7d:c9:c2:04:f7:78:c0:5a:64:01:
40:e7:24:fa:ef:ed:5d:c0:04:d1:9d:3c:f5:5a:16:
3c:7c:40:45:5d:f3:94:9e:58:4f:b9:e2:26:90:37:
ab:2a:e5:eb:0b:a7:89:43:b0:3f:33:39:38:f2:a8:
0a:c8:d6:3f:09:b3:1b:a1:c7:13:0a:43:aa:26:f4:
00:bf:b2:71:01:6c:69:8f:07:3d:a9:10:bb:77:90:
8c:30:6b:24:41:ee:9d:47:3c:2c:76:06:2e:a2:a6:
28:8a:63:a9:63:50:96:32:f9:c4:0c:ec:21:19:d3:
d9:87:90:48:62:47:1b:f9:29:c6:20:2a:a5:92:35:
4b:d6:b8:95:63:8a:72:bc:3d:d9:e5:4d:ac:85:60:
f0:68:ba:9d:0d:a0:f0:97:55:9b:26:b6:04:36:90:
36:1d:1c:3a:3e:c7:64:9b:86:b7:e9:80:82:9e:09:
e1:10:71:0d:bf:cc:4b:ed:77:94:a9:96:cc:97:1f:
f9:17:11:64:6b:64:e5:23:a3:eb:a4:53:43:f1:f1:
bb:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:77:7E:BE:22:5B:CA:79:11:AD:D9:E8:91:B2:BB:8B:7E:19:CA:73
X509v3 Authority Key Identifier:
keyid:AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:ab:ac:6d:4b:33:3a:0d:de:10:9d:95:1d:24:24:68:b0:df:
f7:65:9b:2d:f6:75:10:76:66:32:18:19:eb:d7:1d:e4:f3:2f:
cb:db:ba:be:68:04:cc:c5:17:ba:00:6c:95:54:1d:83:f9:99:
9d:26:aa:e3:f6:f8:80:4e:ba:f5:a0:15:f9:ea:d1:aa:45:87:
99:72:ea:7a:04:0e:19:34:29:2b:a4:fe:8b:b3:3a:05:7d:93:
64:f4:2c:49:5a:7f:b4:64:90:96:6a:53:24:7e:07:57:93:f8:
89:f3:d2:dc:72:2e:79:8f:0a:13:f0:dd:c6:67:af:33:a5:4d:
c4:a4:8f:6f:30:89:c1:ea:23:0a:29:38:37:e0:0b:cb:45:38:
d4:e4:87:c0:b7:05:fc:aa:bb:a2:52:2c:1d:2f:76:2c:48:f8:
5a:1a:06:3b:24:7b:56:4c:d8:d7:4e:67:e8:8f:9e:a5:ec:c4:
80:3e:9d:3a:5e:e4:61:98:09:20:c7:d8:9b:39:30:01:d3:7b:
40:58:f1:13:f5:2e:10:a7:2d:42:06:e8:2e:2f:7a:b1:0a:09:
da:71:95:b6:04:08:6e:aa:ac:6f:61:b6:a9:a5:f2:ce:74:de:
fc:71:a8:9a:6c:68:b8:48:04:d4:fa:9e:ae:e7:cb:3f:f9:af:
cc:3c:12:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:26:10 2025 by rpki-client