Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
File: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft (raw, json)
Hash identifier: Zm0LDFAInoDyfp7b30HE5+L70yd+J6IrLFx2JlVJmCM=
Subject key identifier: 5D:70:AC:BD:00:EF:3A:4B:7F:A8:72:E4:86:E6:9E:B6:62:89:4F:D2
Authority key identifier: A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0
Certificate issuer: /CN=a408fc9246042751110d2ec5065d0c47d1d43cd0
Certificate serial: 0198D7A916F8B8D4B744A29BE4CF95BE38EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
Manifest number: 0BCD
Signing time: Sat 23 Aug 2025 16:00:39 +0000
Manifest this update: Sat 23 Aug 2025 16:00:39 +0000
Manifest next update: Sun 24 Aug 2025 16:00:39 +0000
Files and hashes: 1: E8EItKN2__9iKd7VUUHBehRVQCo.roa (hash: mIn23TrAWNsxopm3nGDSwuz19rtPaaB79Dzo0Qrhuqk=)
2: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl (hash: ZsQPV4tzMpcmh9Mvdeln3l4iSdywuMTdRpuJleloDtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:16:f8:b8:d4:b7:44:a2:9b:e4:cf:95:be:38:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a408fc9246042751110d2ec5065d0c47d1d43cd0
Validity
Not Before: Aug 23 16:00:39 2025 GMT
Not After : Aug 24 16:00:39 2025 GMT
Subject: CN=5d70acbd00ef3a4b7fa872e486e69eb662894fd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2e:9c:74:fa:8e:d4:50:d3:a7:97:22:5e:06:
62:5f:9f:ef:fa:4d:8c:c1:92:80:84:98:4e:1f:85:
77:2d:b7:89:78:a2:85:87:9e:0a:a2:a4:14:0c:f0:
fb:11:41:a7:c2:15:94:c8:a4:01:67:37:13:a7:6d:
2b:89:85:3e:34:79:31:92:6c:c8:11:21:5f:39:4a:
dd:42:2c:bb:39:d9:cf:97:df:f8:b0:e5:ba:f4:a9:
cd:5c:aa:31:e5:44:69:5f:30:14:b2:63:7a:04:27:
6c:c9:34:cd:e4:60:6c:51:0c:40:82:50:96:ef:07:
73:84:04:55:67:ca:4c:2e:b8:3b:97:f1:57:e6:fd:
7d:a7:63:fb:d0:ef:f5:a6:e6:3c:19:00:86:5d:a8:
c6:65:5d:d6:bd:43:81:f6:8b:bf:38:d7:e3:50:15:
44:ea:cf:9a:86:e8:1b:85:69:b2:e8:c6:9a:b6:60:
f6:5c:61:00:cb:98:13:92:8d:7d:dc:67:ce:b9:e4:
a8:4d:13:db:0e:54:ae:fe:7c:93:d6:73:ae:8d:29:
15:81:b4:17:78:59:4b:51:af:d8:bd:b2:c2:7e:bf:
f6:43:cd:eb:b6:2e:24:5e:c1:f6:95:c0:b7:57:28:
73:5b:26:bb:89:be:eb:de:a5:ad:26:c3:d6:bf:40:
32:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:70:AC:BD:00:EF:3A:4B:7F:A8:72:E4:86:E6:9E:B6:62:89:4F:D2
X509v3 Authority Key Identifier:
keyid:A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:44:27:6a:5d:93:ec:72:a5:ec:8b:7f:33:4b:b5:5e:eb:18:
c3:d3:fe:81:c7:d8:c4:0a:03:2c:d6:49:8a:be:cf:9b:84:b3:
e4:ce:98:c3:4b:91:b7:e9:a1:32:05:42:7f:76:40:ec:ed:a8:
92:db:fd:2f:00:0a:83:36:eb:8d:bf:74:f4:6e:69:5b:1d:f1:
a2:a4:81:ba:ef:44:c3:69:85:be:71:59:b7:13:e5:8c:6b:d1:
fb:bc:7b:81:ff:f1:21:4e:de:f7:28:75:c6:88:0a:26:5e:63:
35:9a:48:c4:5a:9e:7e:04:f3:06:ca:1d:43:e0:07:d5:8f:00:
aa:98:90:96:0d:ff:e6:3c:0f:01:c4:9b:4e:d4:5f:78:48:37:
e6:21:12:2c:0a:91:47:1e:4a:e3:c9:18:86:1a:a1:19:bd:c1:
2a:36:00:da:19:e2:49:0c:2d:c2:44:c1:b7:8d:fe:e7:86:60:
82:db:a5:76:fc:48:0d:f5:9e:91:19:1f:c1:86:ce:71:dd:e8:
48:19:8f:b3:15:19:4a:1e:ee:04:74:18:02:94:38:c5:41:3c:
a7:47:66:04:a3:a3:3e:0c:84:59:39:0c:7c:44:c8:55:0b:78:
6f:07:55:fc:03:b5:e8:07:55:c1:d8:c5:bb:5c:75:51:dc:45:
46:75:7f:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:05:51 2025 by rpki-client