Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.mft
File: aM73Itq-WXXKT5uoYWOI7GxlaiA.mft (raw, json)
Hash identifier: XApyPUozA/Jo3JfOTDMzBVw7eRpocRXOReH/fRRkH+w=
Subject key identifier: 1F:90:6C:42:11:3E:EA:3F:49:D5:FA:4C:5D:92:9B:A6:F2:DD:DB:A4
Authority key identifier: 68:CE:F7:22:DA:BE:59:75:CA:4F:9B:A8:61:63:88:EC:6C:65:6A:20
Certificate issuer: /CN=68cef722dabe5975ca4f9ba8616388ec6c656a20
Certificate serial: 0199FD6B388C9A0FAE8FF92F87327FD8D9CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM73Itq-WXXKT5uoYWOI7GxlaiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.mft
Manifest number: 0BCC
Signing time: Sun 19 Oct 2025 17:01:26 +0000
Manifest this update: Sun 19 Oct 2025 17:01:26 +0000
Manifest next update: Mon 20 Oct 2025 17:01:26 +0000
Files and hashes: 1: F66nmw_9gnfRz1vGxzlxmQMgQys.roa (hash: V2QUSY1nIUt0LG1yVgyvdzAwGo/lvS6oHhY3urqyJbE=)
2: IdMP5mSXjXy5RCG7h8iUYBC-7wU.roa (hash: Ak+0cLrZuuXp8cAQmKH4z3k18zZ0o3zgplicC1IedBk=)
3: aM73Itq-WXXKT5uoYWOI7GxlaiA.crl (hash: Vf9QAPJMKgT2fXHlFF5jQH8EoR1mwMJEcbfLLW4bZ50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aM73Itq-WXXKT5uoYWOI7GxlaiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:38:8c:9a:0f:ae:8f:f9:2f:87:32:7f:d8:d9:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cef722dabe5975ca4f9ba8616388ec6c656a20
Validity
Not Before: Oct 19 17:01:26 2025 GMT
Not After : Oct 20 17:01:26 2025 GMT
Subject: CN=1f906c42113eea3f49d5fa4c5d929ba6f2dddba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:f9:64:d6:e9:e7:0c:0a:2a:74:ae:38:cd:68:
40:31:41:42:ed:76:a4:25:e9:c6:0a:86:87:96:ba:
ee:39:31:37:1a:5f:c6:0d:9e:ef:51:9f:ed:9f:33:
37:e9:5a:59:ba:45:a3:67:40:4d:a9:72:54:f3:99:
3e:ac:5e:27:3f:c6:14:bd:fb:df:b7:76:03:f3:4d:
78:ac:7d:54:03:26:fd:54:3c:4f:d0:1f:0c:71:2d:
1f:f9:a8:d4:cc:7e:0a:10:5c:41:9d:34:b3:1f:0f:
34:1d:ea:da:1c:a8:b3:a8:ab:52:5c:3d:1f:f2:57:
ab:44:84:67:9c:3d:15:2c:e3:99:d6:33:23:a4:1b:
92:94:98:81:a6:c0:f4:05:09:c0:b0:58:4b:72:3d:
15:df:c2:86:75:72:e4:92:2f:9d:c6:88:0c:9b:67:
db:31:cd:8f:59:8d:fe:13:b0:8e:c0:fa:7f:a7:4a:
97:82:22:3b:38:4d:98:3a:85:7b:e5:56:34:89:01:
33:4d:8b:a4:fd:1b:d4:ef:7d:53:d2:7b:b7:b7:e7:
23:21:9a:1b:c7:4e:2c:64:9a:9c:7b:c4:33:cd:21:
65:e9:e5:50:f3:a5:8d:06:76:73:10:a4:e0:8b:7b:
fd:18:61:d2:2a:04:31:40:b9:ed:2b:41:2c:d1:6d:
d9:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:90:6C:42:11:3E:EA:3F:49:D5:FA:4C:5D:92:9B:A6:F2:DD:DB:A4
X509v3 Authority Key Identifier:
keyid:68:CE:F7:22:DA:BE:59:75:CA:4F:9B:A8:61:63:88:EC:6C:65:6A:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM73Itq-WXXKT5uoYWOI7GxlaiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:11:5b:56:78:c2:df:62:d3:0f:58:2e:06:f2:8e:6f:3d:7c:
80:9c:03:c3:f6:c2:df:4a:aa:61:92:1c:06:21:f6:b8:44:73:
13:b9:15:74:ba:bf:82:d1:3f:c0:52:96:01:26:b6:38:da:fc:
96:43:d1:d5:8e:a1:d5:ba:c5:c3:e6:19:35:17:ba:83:13:6a:
8c:dd:f7:6c:9c:15:58:38:4c:e5:28:8c:66:5d:c6:03:f7:c3:
66:8f:6c:2e:73:33:bb:6c:4a:d5:e9:68:8f:a2:b6:a6:a0:c5:
0b:41:65:fa:dd:64:a6:4b:72:ce:43:75:98:91:13:71:45:55:
62:ac:71:26:38:3b:6d:25:e0:3a:6d:11:dd:e8:2b:f2:7c:77:
d8:19:6b:97:39:f1:1f:e2:fc:97:24:66:1e:4b:1d:eb:f2:4d:
30:c1:7e:10:35:2f:f4:63:fa:fe:1c:8c:6c:16:6a:a5:18:40:
f2:11:a5:65:8b:d4:50:88:47:ec:8a:7c:4d:40:ed:c9:7a:2f:
92:d2:0e:cf:ff:a2:16:68:20:57:2a:ea:9c:4b:86:86:48:d6:
86:c8:d2:68:d9:b2:44:83:03:93:58:49:9f:d3:46:2e:e5:1c:
c6:16:96:26:44:a9:ce:15:24:4c:d2:d3:d4:3b:55:fc:39:4c:
c7:2a:e2:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:53 2025 by rpki-client