Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
File: a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft (raw, json)
Hash identifier: RE0cJUdzBiwyyuYTZYW5o3AubZdlrHpDqpA7Supng5g=
Subject key identifier: BF:E4:D1:5E:96:9D:E9:86:C7:30:7B:90:C1:ED:C8:13:A0:F3:79:A8
Authority key identifier: 6B:EC:4E:29:C6:84:9C:5F:80:84:28:E6:68:58:F4:F0:EC:F4:A6:54
Certificate issuer: /CN=6bec4e29c6849c5f808428e66858f4f0ecf4a654
Certificate serial: 01987418E72B45D17E1A155936DA962EAC8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-xOKcaEnF-AhCjmaFj08Oz0plQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
Manifest number: 0D84
Signing time: Mon 04 Aug 2025 08:00:45 +0000
Manifest this update: Mon 04 Aug 2025 08:00:45 +0000
Manifest next update: Tue 05 Aug 2025 08:00:45 +0000
Files and hashes: 1: a-xOKcaEnF-AhCjmaFj08Oz0plQ.crl (hash: 3pu0a3ABshK9wUt7jQge/wdTuw6WtYGgvEEvJM1kUDs=)
2: y1CXud9r4_KJCPJy5YSEoyYl1eg.roa (hash: kuTX8hxg4+tvv3VjP1J6iCQyHiFE3dinO8w9j6x97BA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/a-xOKcaEnF-AhCjmaFj08Oz0plQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:18:e7:2b:45:d1:7e:1a:15:59:36:da:96:2e:ac:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bec4e29c6849c5f808428e66858f4f0ecf4a654
Validity
Not Before: Aug 4 08:00:45 2025 GMT
Not After : Aug 5 08:00:45 2025 GMT
Subject: CN=bfe4d15e969de986c7307b90c1edc813a0f379a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7b:e7:15:2a:2b:a3:65:06:35:5a:40:fe:06:
98:0e:f2:d5:74:e7:5f:f6:87:08:59:ba:02:e8:67:
18:9c:26:b8:eb:20:99:54:e5:04:2e:71:13:56:11:
89:cd:52:17:7d:9c:bd:1d:f2:06:aa:20:7c:9a:a8:
9d:05:3f:86:b0:34:2b:8e:26:de:e9:9a:e6:53:fc:
f1:a8:15:15:eb:8c:3b:62:fe:d9:36:2a:9f:c1:b0:
be:3f:28:14:fc:66:e5:16:64:b2:41:af:10:88:de:
5d:87:f2:ab:65:90:e8:6a:05:e9:88:22:a6:d4:99:
4e:87:70:4f:6c:93:8b:17:71:f0:67:85:03:08:92:
5c:19:fb:1f:1d:91:77:c6:76:c6:ba:d6:cf:b8:ba:
b0:c4:63:f5:30:3d:ae:5c:41:60:23:d1:45:c4:ee:
17:23:17:9a:f4:38:97:22:aa:d1:b2:78:4c:87:9b:
88:bb:ed:88:85:17:c9:78:ff:bd:20:b9:c9:70:62:
9f:66:82:da:ac:5b:5f:d7:7d:c5:f0:45:22:75:28:
f5:a7:06:ae:07:8e:3b:fe:57:55:7b:73:49:a9:78:
e8:47:7e:e3:f3:9c:c8:64:5c:bd:3a:a6:5e:5e:03:
ad:62:b4:86:45:f7:c3:87:39:23:90:9e:59:5c:37:
55:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:E4:D1:5E:96:9D:E9:86:C7:30:7B:90:C1:ED:C8:13:A0:F3:79:A8
X509v3 Authority Key Identifier:
keyid:6B:EC:4E:29:C6:84:9C:5F:80:84:28:E6:68:58:F4:F0:EC:F4:A6:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-xOKcaEnF-AhCjmaFj08Oz0plQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:8a:35:d5:8f:bb:52:1a:23:77:68:ef:c9:9b:0d:de:2f:82:
e7:a1:b3:b8:af:77:82:c7:0c:25:af:a0:28:43:b5:b2:9c:4e:
02:14:ae:d0:20:a7:c4:24:13:e1:02:2c:ef:aa:e8:13:df:ee:
94:d7:e4:7b:86:9b:3a:86:26:37:ea:46:44:b7:01:6b:97:b9:
32:ac:11:57:b4:40:f4:14:77:1b:ec:7a:37:33:6f:0a:0d:b9:
a7:00:46:ee:1f:27:45:57:79:d7:40:2b:47:c4:b6:16:83:43:
97:36:60:d5:67:f0:4b:83:58:5b:58:3b:c5:82:0e:46:55:bb:
51:97:89:8a:2c:a1:a0:13:27:36:c6:a3:26:a5:85:ec:ca:66:
30:be:93:24:1f:2e:49:55:46:f9:7e:88:ea:ad:7c:69:36:01:
3e:6d:28:de:17:4b:1c:7a:5c:b0:45:93:cd:c7:94:00:c0:3e:
0e:da:32:4e:99:dc:89:9a:b7:a2:c1:a1:2c:71:09:ab:bc:43:
5b:42:8c:eb:01:e0:07:a2:32:8c:35:51:9a:67:97:63:ac:09:
31:ba:bb:41:41:3f:19:dc:67:7d:d0:36:71:38:32:05:74:33:
f7:56:32:78:d5:b9:9d:fd:8e:27:e8:dc:ac:d1:91:d9:71:b5:
a1:9c:11:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 10:58:21 2025 by rpki-client