Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
File: aKfCyE_6STTPD3PvGhoaM3hzGCY.mft (raw, json)
Hash identifier: zxRp5BZk/vQByXd5EiIYhTQuFVYyZ3XHTfxkR07awqA=
Subject key identifier: 12:D9:C6:BC:3D:3C:36:3C:E9:B3:A1:9E:28:DB:DD:EB:3A:01:DA:06
Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Certificate serial: 0199FCFD1928A74122C8EB492A3C492D1AB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
Manifest number: 0DC8
Signing time: Sun 19 Oct 2025 15:01:09 +0000
Manifest this update: Sun 19 Oct 2025 15:01:09 +0000
Manifest next update: Mon 20 Oct 2025 15:01:09 +0000
Files and hashes: 1: KnUOYk5bdwDOyPRpWUFQ6FTo7gs.roa (hash: oV64n7K/Nu3TxpzkL+waUqCMMUTsVFeqTi3s1yY0Zn0=)
2: aKfCyE_6STTPD3PvGhoaM3hzGCY.crl (hash: Udjv2wPPhXgfdwNIo8Mjf0ODUA1/kmlsn+wUXHzIvBU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:19:28:a7:41:22:c8:eb:49:2a:3c:49:2d:1a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Validity
Not Before: Oct 19 15:01:09 2025 GMT
Not After : Oct 20 15:01:09 2025 GMT
Subject: CN=12d9c6bc3d3c363ce9b3a19e28dbddeb3a01da06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:78:13:14:f9:3f:e9:bd:66:3d:87:cc:9f:b2:
98:30:ad:e7:8d:31:65:cc:07:62:90:d0:78:95:cc:
b8:42:16:b2:4b:76:06:e2:6b:f5:cc:98:dd:8b:e3:
48:a5:69:61:08:10:7d:7b:e9:cb:73:c2:d6:18:84:
b5:62:c3:15:9b:a9:a3:41:07:7e:f0:68:87:26:60:
da:ca:5d:19:73:1c:42:2b:08:23:93:ba:2e:2a:f8:
79:82:8a:72:22:83:e8:00:28:99:7a:f1:2f:44:1e:
ef:25:5a:03:04:16:a9:ba:29:eb:13:15:bc:1b:5a:
0f:24:88:ef:29:dd:85:81:e3:87:b0:7a:d9:f8:e3:
5f:34:e8:a0:8f:51:9f:e6:37:01:50:94:2f:f0:30:
84:21:86:27:1e:89:45:ff:95:0a:9b:39:9d:e3:1f:
d0:ed:43:09:30:08:f7:a5:8e:f8:5e:60:33:20:40:
ab:4d:09:4e:85:47:de:28:ae:e6:6e:ee:af:ec:5c:
69:f1:c6:f5:8c:5a:ad:ba:e1:e8:97:97:97:33:09:
bc:87:b2:fa:b1:74:96:d6:43:f7:43:e9:f1:43:e0:
8a:79:06:8f:73:67:64:b0:49:fb:1e:f4:81:94:68:
5b:8d:02:12:71:8e:6d:5d:22:75:24:ab:81:1d:fa:
02:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:D9:C6:BC:3D:3C:36:3C:E9:B3:A1:9E:28:DB:DD:EB:3A:01:DA:06
X509v3 Authority Key Identifier:
keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:1e:5b:01:d7:0e:da:20:26:dc:6e:87:15:ac:06:58:ea:08:
5a:6b:35:b4:8a:b5:ce:3b:87:ac:10:fe:58:a5:4e:5a:09:2f:
da:0f:84:16:96:20:f5:94:9b:b7:d4:d9:30:d4:77:92:35:86:
ab:d3:f9:25:e7:6b:93:15:45:2e:cf:98:bb:e7:1e:2f:9c:52:
15:f5:b3:59:53:05:42:1c:c7:42:f5:9d:25:01:40:6f:16:31:
80:29:51:85:2f:05:4c:8b:80:83:d6:3b:40:8b:55:a7:81:c5:
9f:12:f6:cf:3a:72:7c:83:ed:5e:68:4e:27:b5:ad:fe:51:96:
0c:cc:12:d9:26:06:7f:4f:d1:d9:ae:9d:01:1c:25:8e:2f:f0:
b7:06:cd:09:fe:89:30:cc:48:44:2d:95:1a:05:ee:66:7c:e1:
98:39:f2:22:8a:6b:43:ef:4c:13:9b:34:b9:b1:5a:8d:99:39:
89:31:cf:65:ee:9a:b1:39:66:d0:9c:da:54:9b:09:81:ff:44:
ce:70:9a:27:c0:35:59:4c:1b:fa:40:15:fc:33:9b:48:74:0f:
9b:fe:3a:99:9b:bc:0b:7e:12:a1:06:c2:5c:b5:38:86:c6:8c:
28:56:04:2d:ce:26:81:52:74:3f:0c:7c:4f:ba:8f:c3:cb:4c:
cc:d4:cc:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:09:11 2025 by rpki-client