Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: ZsYy05v+wdbYQspy7E/aWfFhOtAg3J8ErNI3LfnOIoo=
Subject key identifier: 18:D5:75:98:44:17:D3:8B:AA:E9:A3:00:D8:67:9F:E0:02:AC:25:89
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 0198D6602084123EA9F4F04F179263D030FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 10:01:20 +0000
Manifest this update: Sat 23 Aug 2025 10:01:20 +0000
Manifest next update: Sun 24 Aug 2025 10:01:20 +0000
Files and hashes: 1: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: 8fwK0MiZm5kNjC2Ikz5dkOvbGiVh+U4ozvedvrulrno=)
2: luaqw9G-VvVeUOUerH8hYnJDYmk.roa (hash: cGv6tVYRF/4yXJn3TxE1a8gXuaOG4Us7R7XWbyYOP1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:20:84:12:3e:a9:f4:f0:4f:17:92:63:d0:30:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: Aug 23 10:01:20 2025 GMT
Not After : Aug 24 10:01:20 2025 GMT
Subject: CN=18d575984417d38baae9a300d8679fe002ac2589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6d:5b:81:4c:0f:ed:90:ae:27:3e:de:e6:75:
8f:bb:0c:15:4a:57:bb:fb:45:c0:1b:76:7b:7a:08:
3a:50:37:85:52:fd:5f:c0:4c:01:cb:52:65:55:4a:
72:78:92:26:38:32:d0:51:7b:89:e8:6c:4b:f1:2d:
96:49:a0:68:58:2d:da:70:a0:36:4d:c6:4e:5d:03:
04:1b:9a:55:aa:62:76:58:8e:08:0c:db:89:a8:f0:
eb:15:eb:ca:81:cf:00:f0:6f:85:c4:81:5b:75:6f:
57:b1:79:17:64:03:29:e1:4d:84:3c:25:ab:53:93:
b5:4d:30:c5:e8:23:d0:ea:9f:4e:67:f8:ce:e1:16:
db:dc:c3:14:b7:29:b0:ef:82:69:bf:7c:3f:2b:ec:
6a:fa:ce:12:61:f1:fd:f5:77:60:65:44:4b:a4:96:
6f:a9:7b:02:f1:3c:86:da:cb:d3:8a:e5:99:36:c6:
ea:84:37:91:ba:ae:e6:a2:08:7c:97:87:5f:62:29:
0e:28:f4:62:08:e7:ce:c7:0b:a0:b9:ab:4d:c6:84:
5a:3c:df:2a:b1:a3:d3:64:bc:32:bd:71:fb:82:e1:
64:14:cd:63:24:29:16:71:c8:13:7d:77:9e:b0:6f:
01:d8:fa:68:48:50:8f:b1:12:3f:dd:5b:3c:12:5f:
b7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D5:75:98:44:17:D3:8B:AA:E9:A3:00:D8:67:9F:E0:02:AC:25:89
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:52:e5:12:6b:15:d1:f5:ce:77:52:74:fa:9e:eb:b2:24:db:
70:8c:f4:98:39:44:ec:38:6a:4f:cb:e6:dc:1c:83:59:3b:b1:
c1:55:2b:37:e4:6a:b0:1c:ac:e1:0b:67:63:7d:50:33:26:b1:
d1:2a:24:e2:20:4b:a5:bf:9c:57:6c:d2:9b:3c:de:5e:d1:67:
d9:7d:c3:3d:7c:af:76:3e:5e:81:d7:e9:27:15:7b:89:5a:eb:
89:aa:ec:7e:f7:d6:f5:2f:e7:93:d8:60:b5:a7:7d:1f:30:ce:
a5:21:fb:f7:4c:43:a4:e7:fc:f4:d1:4f:05:8a:ac:cd:80:eb:
4b:2b:31:ad:e4:0c:84:78:18:d4:02:4b:95:aa:95:33:b9:b9:
d5:30:52:f6:e9:7f:d5:b8:5b:7f:43:b2:3d:ab:88:32:90:db:
fb:c3:95:f1:ed:f4:54:2c:2c:48:58:42:33:d6:81:21:57:f3:
27:e4:c0:a3:95:3a:15:e0:eb:49:94:dc:89:8a:72:cf:b9:b1:
24:23:0a:40:a5:bc:2f:9a:7a:1e:b2:c1:e4:05:0a:e0:42:5b:
4c:04:31:9d:c3:8b:db:d3:5f:37:2d:68:14:f6:bd:e4:d9:0c:
a1:50:13:97:be:cf:eb:c6:0d:2c:5b:1b:fd:7e:90:22:f7:53:
16:ae:12:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:10:24 2025 by rpki-client