Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.mft
File: aG0YQEk-7jRfjAKtiqfw8PQbpFA.mft (raw, json)
Hash identifier: UtewYW2sgcxTwRkSOvMi6ac7c7Wfs/n5o4S6zIjOB7M=
Subject key identifier: C7:34:F1:74:B9:37:E7:5F:22:CF:94:30:1E:3B:F5:02:DD:89:2E:0D
Authority key identifier: 68:6D:18:40:49:3E:EE:34:5F:8C:02:AD:8A:A7:F0:F0:F4:1B:A4:50
Certificate issuer: /CN=686d1840493eee345f8c02ad8aa7f0f0f41ba450
Certificate serial: 0198A04D266632784DAE229A6C9AF9568ED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aG0YQEk-7jRfjAKtiqfw8PQbpFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.mft
Manifest number: 1630
Signing time: Tue 12 Aug 2025 22:01:07 +0000
Manifest this update: Tue 12 Aug 2025 22:01:07 +0000
Manifest next update: Wed 13 Aug 2025 22:01:07 +0000
Files and hashes: 1: Hpq861GqA5RqLih08GH13MdllW0.roa (hash: 6UGmd69y3tVELywuvYudCcD/UUgHO86OmDHx4Pt/TNE=)
2: aG0YQEk-7jRfjAKtiqfw8PQbpFA.crl (hash: dtSGaX0eV65KjG7rEWPLCVDIkD+qGspiASNF0UE/NXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aG0YQEk-7jRfjAKtiqfw8PQbpFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:26:66:32:78:4d:ae:22:9a:6c:9a:f9:56:8e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=686d1840493eee345f8c02ad8aa7f0f0f41ba450
Validity
Not Before: Aug 12 22:01:07 2025 GMT
Not After : Aug 13 22:01:07 2025 GMT
Subject: CN=c734f174b937e75f22cf94301e3bf502dd892e0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:34:26:dd:10:7a:0b:84:cd:dc:39:01:23:1c:
cc:e9:86:15:26:72:58:a7:08:82:5a:e4:10:01:f1:
42:4a:39:8b:63:9f:03:6a:e2:f1:cc:8b:3d:72:59:
51:02:06:a0:af:b8:57:5e:38:d0:a0:3f:b1:5f:0d:
d2:91:42:a3:67:b1:a0:93:b3:63:e9:d3:12:e7:01:
7c:73:71:0e:b7:e7:39:b2:f2:ba:b9:15:3a:19:78:
b7:42:e6:9a:5b:b3:06:cf:03:1c:96:c8:f8:7c:5f:
85:b7:40:a1:a3:9a:bd:51:ea:8c:d2:97:b2:e7:b1:
24:e4:6b:02:95:bc:87:ff:75:22:69:5e:49:99:fc:
c8:3e:42:e7:57:de:fd:ee:87:0c:3f:c8:0f:da:8c:
16:17:9e:a9:50:00:7a:57:50:94:03:d5:a9:b1:52:
10:5c:3d:62:87:92:5c:76:8f:e9:94:7e:e3:cc:41:
f9:10:e2:ba:38:7d:32:ec:91:c9:e3:ac:a4:cf:f5:
1c:81:b8:6b:9f:d2:84:2e:1c:7d:bc:ba:81:88:3c:
32:5a:a6:a4:e5:71:47:c3:5d:fc:50:0a:8f:62:e0:
17:58:7c:4c:5f:10:85:e7:60:af:df:95:3b:74:06:
41:5c:71:8d:13:22:76:4d:69:10:d2:47:43:19:76:
ec:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:34:F1:74:B9:37:E7:5F:22:CF:94:30:1E:3B:F5:02:DD:89:2E:0D
X509v3 Authority Key Identifier:
keyid:68:6D:18:40:49:3E:EE:34:5F:8C:02:AD:8A:A7:F0:F0:F4:1B:A4:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aG0YQEk-7jRfjAKtiqfw8PQbpFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:3d:ce:9a:45:ca:60:7e:41:97:58:bd:ab:4d:e3:66:d8:bc:
89:48:5a:aa:30:33:ed:49:9c:96:3f:73:90:b3:8d:bf:6a:60:
2a:37:0b:75:cb:4f:19:d5:af:89:ed:09:49:f9:06:83:b2:ba:
7b:88:5a:bf:e7:50:34:f3:d2:56:33:8b:11:29:4d:83:ae:f2:
42:cb:15:1a:27:b6:4a:44:1b:65:8c:d2:e5:bf:bc:d3:5d:4f:
6d:c8:d0:c4:f5:b8:9f:56:67:60:e8:73:5e:99:e6:d7:aa:72:
d5:9b:c8:6f:7b:32:51:b9:f6:77:46:6a:47:40:2d:34:54:d5:
68:d3:3c:80:f4:61:6f:66:3f:b7:f5:f1:86:3a:96:40:3a:78:
b7:ab:f8:e4:bc:dd:07:e0:01:eb:e7:0c:e1:c1:6d:0f:32:48:
44:8a:be:14:1f:de:3f:81:7b:81:34:fd:2e:54:3a:49:95:52:
34:cc:79:3a:bf:7c:3c:8d:af:76:57:6d:39:63:4c:c7:24:b2:
54:30:77:33:ce:48:04:d4:b3:ef:e1:3d:ac:39:04:1e:66:9c:
05:c9:94:30:0e:b9:82:b8:4b:b4:ad:4d:d0:05:63:b9:ee:57:
5e:d2:c1:27:3e:e5:09:0d:2c:19:b9:2d:f0:44:ef:c2:7b:ed:
b2:8e:d6:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:53:18 2025 by rpki-client