Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json)
Hash identifier: J7ZzqTdjPEzatm1/9d/13u1Rh8KXp9958ENChotalZU=
Subject key identifier: C8:CC:8B:7D:F0:57:50:5E:6D:24:1D:84:D7:38:1D:53:33:4F:44:82
Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69
Certificate serial: 01987374757BE8CE0D3F22E4BF5BAA45FF3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
Manifest number: 0654
Signing time: Mon 04 Aug 2025 05:01:08 +0000
Manifest this update: Mon 04 Aug 2025 05:01:08 +0000
Manifest next update: Tue 05 Aug 2025 05:01:08 +0000
Files and hashes: 1: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: aSH2hFezZV2GotASp8R+MZhNkYxB3+o3JDC33aMOSL4=)
2: hnTM8e9DDp88O_jCAHz8InVW_vE.roa (hash: 8skhoEZiI2jfYQ4DDQgvqEaBRoMspiQzmuxF61YcMEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 05:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:75:7b:e8:ce:0d:3f:22:e4:bf:5b:aa:45:ff:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69
Validity
Not Before: Aug 4 05:01:08 2025 GMT
Not After : Aug 5 05:01:08 2025 GMT
Subject: CN=c8cc8b7df057505e6d241d84d7381d53334f4482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:24:5a:3f:cc:86:43:77:1a:ea:4d:12:2d:34:
57:a7:c7:25:4b:02:6a:9f:2d:3b:8d:73:15:c8:d7:
f2:6f:13:14:92:e4:52:ec:62:3e:00:ab:64:87:ff:
a7:79:11:4f:53:43:15:d0:67:97:7c:9c:36:b2:d0:
53:b9:9f:b1:a2:cd:1a:a3:33:11:d1:e2:39:20:67:
ae:09:38:b9:a4:65:95:b6:65:51:c5:a5:d5:f7:e6:
40:72:63:4e:35:78:9c:4e:cb:00:d1:05:e6:6f:af:
5a:08:4c:e7:98:2d:5e:ca:12:7b:85:0c:2c:c0:11:
6f:6e:07:05:95:79:26:75:94:bc:51:e9:84:ad:db:
f3:c2:5e:ca:3a:90:aa:88:f5:14:88:af:2a:1a:dd:
31:79:3e:49:6f:f7:bb:30:90:42:f7:34:76:a1:58:
1d:3d:d9:7f:39:ea:25:ae:33:04:cd:8b:1b:e3:86:
d0:ef:94:d0:6a:f5:75:b4:ba:fe:b7:9a:f8:84:03:
98:5f:a6:1d:83:b1:4b:0f:71:80:29:5e:53:1b:1c:
96:34:2c:bb:e0:d8:04:d9:42:75:31:a2:4e:7e:94:
94:67:2f:22:99:6b:10:9a:74:65:56:4e:ae:c3:4a:
7c:00:64:61:a7:d2:24:4c:e3:4a:70:e6:5f:24:1e:
dd:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:CC:8B:7D:F0:57:50:5E:6D:24:1D:84:D7:38:1D:53:33:4F:44:82
X509v3 Authority Key Identifier:
keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:fc:ca:cc:90:45:bb:ab:97:22:10:e6:cf:35:6c:1f:b1:8d:
61:93:34:a3:93:1e:41:b7:30:5b:cc:3b:8e:32:d4:db:0a:fe:
c8:e0:ad:9a:7d:c6:4a:96:1c:5c:c6:5b:92:97:06:ed:72:91:
7f:64:0a:9f:52:22:47:49:ee:53:7c:46:5c:51:17:4d:14:be:
0f:1f:0d:27:1d:08:5b:4f:51:f7:ab:46:6f:a1:b6:57:1c:f4:
d4:f7:4b:2e:0f:06:ef:a6:d0:50:ef:33:76:b5:e9:4d:6e:94:
8e:13:90:18:5e:14:d7:6d:ac:fc:52:df:98:be:71:0a:a0:4b:
ed:ca:2b:45:29:80:30:5d:ed:8c:6e:e7:1a:57:17:63:c7:af:
ed:0c:6c:db:4f:9c:8d:dd:c7:7b:8a:eb:3b:7d:c9:a5:8d:e1:
58:a0:d1:28:39:50:64:0e:0c:48:f2:d8:a0:c1:e9:4a:13:90:
f8:ff:b9:ad:15:fd:97:f7:49:df:bd:52:ee:ce:15:bd:28:f7:
52:76:51:f9:8e:95:de:74:a1:42:31:d2:bc:6f:12:69:c6:e3:
ed:73:10:d5:fb:5d:9d:93:ee:06:7e:98:83:24:56:b3:b2:a0:
2b:e1:2b:9e:70:0e:0b:50:fa:a7:3b:a1:40:de:74:92:5a:cb:
76:0c:86:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:57:08 2025 by rpki-client