Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
File: k680jsWk5l4MsTeCGuahOe1_rAA.mft (raw, json)
Hash identifier: TUAO9+aVf2hf8AI/AUznX/VeNaGQl26K41uA2AjN7kI=
Subject key identifier: E6:A0:AB:7F:B8:43:78:FC:46:F7:A9:4B:BC:A0:51:61:67:94:52:F4
Authority key identifier: 93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
Certificate issuer: /CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Certificate serial: 0199FF22655D11821128218654AB1B9509D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
Manifest number: 1674
Signing time: Mon 20 Oct 2025 01:01:08 +0000
Manifest this update: Mon 20 Oct 2025 01:01:08 +0000
Manifest next update: Tue 21 Oct 2025 01:01:08 +0000
Files and hashes: 1: gKy-M4ArOB2uxqprqRJ6fbGyEC8.roa (hash: MC8Gw1INJPJBRmJZki75GCuCmqozYCvUY/UxQ+rSFh0=)
2: k680jsWk5l4MsTeCGuahOe1_rAA.crl (hash: xRSfpHNMu8506QZ4XvCtmI9DcWT5Ef+LhbnAkQu5ye4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:65:5d:11:82:11:28:21:86:54:ab:1b:95:09:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Validity
Not Before: Oct 20 01:01:08 2025 GMT
Not After : Oct 21 01:01:08 2025 GMT
Subject: CN=e6a0ab7fb84378fc46f7a94bbca05161679452f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fc:aa:65:71:4e:a8:04:28:df:ab:ab:8e:05:
aa:c0:46:2a:91:0a:c5:27:48:07:c7:5c:09:2c:08:
07:76:32:51:c1:ac:1c:d7:8d:f4:bf:ab:10:bf:98:
a2:ac:17:bd:b1:f2:85:4c:71:8f:5c:4f:06:ab:22:
9b:a3:83:02:a2:ef:0e:82:25:aa:6a:e3:78:5d:2b:
27:cf:66:e7:dc:1a:a7:63:66:c7:e8:c4:8b:ac:3e:
b0:17:87:29:1e:46:dc:b4:7e:21:66:d5:29:dc:af:
be:db:20:2f:14:19:07:34:bc:80:17:e4:55:2b:68:
41:51:cc:a0:1e:7e:17:82:eb:48:9e:e9:a2:ce:d4:
4f:cd:1b:f0:eb:bb:cd:1c:bd:fc:48:af:6e:7c:ea:
7b:3b:5e:23:be:cd:a5:09:a8:b4:7f:2f:1e:fc:c3:
08:30:92:37:e0:23:7e:6e:73:45:7b:5e:e7:de:ce:
74:e4:91:4c:d4:7f:58:3d:a9:fd:e1:18:4e:f8:29:
ca:a8:cd:83:77:f7:32:45:fd:9f:d3:c5:43:45:4f:
78:73:1b:f2:5b:7c:0f:23:0d:a9:14:8f:dd:fb:12:
52:b2:10:3f:1f:86:6b:93:d8:0d:c4:ce:41:9a:f0:
e7:d5:52:37:fb:81:25:0b:63:6c:dd:d8:31:00:12:
51:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A0:AB:7F:B8:43:78:FC:46:F7:A9:4B:BC:A0:51:61:67:94:52:F4
X509v3 Authority Key Identifier:
keyid:93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:8a:92:06:f2:dd:5e:62:3a:b8:95:42:b1:f5:6c:f0:f5:f9:
7c:24:d7:48:80:d9:e6:f2:24:91:54:0d:1f:8e:80:46:14:9f:
a0:04:eb:6b:30:1a:af:e5:cf:75:78:25:fc:54:68:50:fa:55:
ec:18:de:c4:3e:01:5d:79:a8:62:f9:e6:34:bd:e0:10:51:1f:
50:fb:41:bd:54:d7:96:72:ec:5b:31:ce:a5:93:7e:8d:0a:c8:
27:d5:2f:2e:30:ce:52:78:1c:be:f3:24:7e:c2:58:bf:17:9a:
2e:d9:71:bb:18:ac:24:76:13:a1:c8:c2:07:03:42:79:26:62:
42:6e:64:a6:75:3c:8b:af:64:47:53:b6:49:51:04:7e:c7:cb:
0d:f9:a2:92:18:dd:18:af:3d:23:5a:2d:36:31:97:de:ef:ca:
3e:7b:84:64:6f:dc:f1:1d:fd:53:49:c8:76:1a:c6:44:d5:f1:
b9:e5:75:ea:9f:22:37:af:48:ee:28:26:ae:c5:20:e2:68:21:
42:97:9e:2e:ed:b3:af:62:cd:7e:60:2f:55:19:a5:32:48:9b:
c6:c5:de:64:c7:ef:f1:9c:42:48:9a:a9:20:8e:de:ce:32:a6:
10:d2:67:22:7b:bf:23:34:1d:d9:33:0d:75:f8:e8:35:1c:37:
c5:5b:f9:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:12:08 2025 by rpki-client