Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
File: aLw5QAVdFXTyY7X5arCQDGu0xfk.mft (raw, json)
Hash identifier: 6wm+DOjDoznti8xmb+k1DPJN/RjsO/2ulRPm1miMHvI=
Subject key identifier: A7:D7:37:BF:D1:D9:9C:EE:F0:4E:57:10:7A:36:70:11:80:BD:7D:9B
Authority key identifier: 68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
Certificate issuer: /CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Certificate serial: 019881672169798C158DB290C8C21EC39F91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
Manifest number: 0389
Signing time: Wed 06 Aug 2025 22:01:16 +0000
Manifest this update: Wed 06 Aug 2025 22:01:16 +0000
Manifest next update: Thu 07 Aug 2025 22:01:16 +0000
Files and hashes: 1: UTuku2NoRg5M3213fHsTSechO5U.roa (hash: mmVExhdm+qlv5wjD1nNIr2CTIIUIWrulidPSaVkzZdU=)
2: aLw5QAVdFXTyY7X5arCQDGu0xfk.crl (hash: 7PraufQB/UZMBwpTfjn9J8cT7QyRM5RpCfQ7JZhQUGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:67:21:69:79:8c:15:8d:b2:90:c8:c2:1e:c3:9f:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Validity
Not Before: Aug 6 22:01:16 2025 GMT
Not After : Aug 7 22:01:16 2025 GMT
Subject: CN=a7d737bfd1d99ceef04e57107a36701180bd7d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5d:66:4f:af:51:fc:ed:00:b7:a1:8a:96:1e:
6e:79:ae:99:d2:6c:48:06:21:85:e7:45:a5:10:ef:
e3:8b:f0:5b:05:97:8b:e5:a7:14:66:a0:fa:2f:d7:
e5:62:68:94:a3:f0:ad:17:cd:18:23:dc:81:bb:df:
7d:58:dc:5c:4f:40:12:d6:09:74:56:25:f2:7d:54:
8f:e0:6a:c0:92:53:83:24:54:16:8e:1d:4c:34:77:
80:02:c2:b3:62:99:56:92:de:0a:d9:4a:51:cb:bf:
3f:cd:ff:50:89:e7:09:84:e4:0f:f1:97:41:4e:7d:
8f:65:45:06:7a:6a:21:e9:f0:4f:59:0c:76:e2:a7:
07:a9:c3:e4:41:0b:c1:0f:c4:e9:13:cc:47:3a:0e:
68:d7:0d:60:b2:fc:e6:26:bd:2c:1b:d0:72:a5:85:
fa:01:5e:82:47:69:d8:37:d6:3b:95:5a:3d:6d:56:
ed:1c:a1:a1:af:e1:a6:52:d3:31:da:33:d2:0c:f6:
67:c5:bd:0f:75:35:04:3c:f0:9c:8b:e4:ff:d3:90:
27:99:aa:4d:17:3b:20:69:78:27:bd:3f:6d:93:ae:
a5:9b:bb:d4:19:6d:aa:3b:08:d8:82:a9:51:ca:bd:
99:37:ed:de:5d:b7:7c:18:02:18:f2:92:29:9e:25:
c6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:D7:37:BF:D1:D9:9C:EE:F0:4E:57:10:7A:36:70:11:80:BD:7D:9B
X509v3 Authority Key Identifier:
keyid:68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:36:71:06:df:c6:21:f5:7c:99:31:a3:aa:18:31:77:a2:7d:
16:80:8c:98:09:3d:b4:24:8d:ab:15:82:6b:59:ed:bc:54:94:
7d:6a:26:99:aa:5b:ea:fd:b9:ec:f2:21:87:63:8d:ed:30:88:
58:55:fb:92:98:26:b9:51:f7:67:78:14:f0:54:97:e7:4a:a4:
72:85:c2:a0:65:fb:90:a9:ac:d4:c1:7a:7b:16:5f:5f:4b:a2:
ac:6a:c1:8a:25:f0:13:87:5c:2d:23:5b:b3:2c:68:ea:0f:32:
f7:0c:5b:d4:60:1f:10:82:8b:3d:80:9f:bd:ac:c1:42:5d:86:
92:9e:b6:99:22:be:5b:82:44:ce:41:bd:c3:db:22:1e:85:93:
66:fe:03:18:c9:50:08:d3:7a:40:10:3f:bb:f4:56:7c:6a:e9:
f5:d1:ed:79:67:04:a4:34:6e:0f:1e:c5:8f:c5:96:5d:f4:b8:
ca:d4:03:2a:7a:d1:f7:a8:08:1b:48:82:a4:f6:7d:c3:09:58:
1a:32:68:b6:5f:fb:e0:24:2c:54:7a:80:38:ed:70:db:eb:7c:
5f:30:fe:96:8a:98:9b:d3:f3:bf:87:76:61:0a:66:0f:ab:5f:
46:5d:7b:6e:58:9b:17:88:55:5f:64:5a:a2:9d:23:ab:de:a9:
f6:1a:f3:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:26:26 2025 by rpki-client