Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
File: aO_MqEmPXSbBIK802EbAKB_2Ka8.mft (raw, json)
Hash identifier: RFmCXxXtwQ3aonjTD2DtW9IDKYZykXMwl/yx91pVGOA=
Subject key identifier: 6F:5B:64:2E:48:52:F9:05:16:CB:77:A9:7D:71:20:95:4B:41:87:04
Authority key identifier: 68:EF:CC:A8:49:8F:5D:26:C1:20:AF:34:D8:46:C0:28:1F:F6:29:AF
Certificate issuer: /CN=68efcca8498f5d26c120af34d846c0281ff629af
Certificate serial: 01989F038A06E72021A3E37E9C0F4C5C20BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
Manifest number: 109C
Signing time: Tue 12 Aug 2025 16:01:05 +0000
Manifest this update: Tue 12 Aug 2025 16:01:05 +0000
Manifest next update: Wed 13 Aug 2025 16:01:05 +0000
Files and hashes: 1: aO_MqEmPXSbBIK802EbAKB_2Ka8.crl (hash: gaCGfHZIE4dcZa9xQCZdUie/kY9/ycB1B9z3PF4LnMM=)
2: bz3fbBHm2ElR6vxL1-cqQoSLlk8.roa (hash: iWv2k5/cNl7lJrUkdCeVYiFcY+HPf8sJg4JbV1Gwcrc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 16:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:03:8a:06:e7:20:21:a3:e3:7e:9c:0f:4c:5c:20:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68efcca8498f5d26c120af34d846c0281ff629af
Validity
Not Before: Aug 12 16:01:05 2025 GMT
Not After : Aug 13 16:01:05 2025 GMT
Subject: CN=6f5b642e4852f90516cb77a97d7120954b418704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4f:c8:d4:f6:6e:d5:4f:b8:64:22:c1:ab:2e:
5c:7e:6f:85:e8:7a:91:0d:fb:a2:0c:fa:fc:d9:05:
20:2d:27:02:9d:2a:d9:3a:54:9d:88:67:ec:99:fd:
b9:a4:04:e7:a9:0f:4f:38:91:f7:15:42:61:4e:3f:
c1:ac:18:ca:e6:86:9a:74:16:af:f3:64:9c:99:f5:
bb:1f:ff:38:8d:0e:f3:39:83:04:40:37:f2:8c:63:
a4:40:02:2e:f4:f9:3d:06:87:5d:a0:d4:bb:03:6a:
40:c4:88:9e:06:63:49:bb:c5:4c:18:67:99:b7:90:
0f:38:a3:e7:4b:85:02:38:51:65:f8:16:66:4b:1f:
a2:f4:a1:39:d8:b4:02:45:76:4e:0f:32:d1:88:33:
c6:cf:19:ae:fa:89:f3:da:f5:42:cb:1c:0e:99:cb:
86:cb:2d:78:db:d2:44:cd:1a:90:19:a1:db:44:8d:
ee:72:9c:b3:cd:6b:1e:c0:36:48:b8:56:a1:81:ba:
51:59:a9:f4:25:8e:c1:5d:9c:29:46:b9:96:dc:d4:
5b:9e:33:3a:a7:22:93:8a:a2:48:d4:3f:b3:dd:69:
cc:e0:39:73:22:c9:33:64:5b:34:23:26:d2:12:b7:
cd:37:50:f7:b2:75:cb:49:d8:b0:b5:e6:53:5c:01:
8c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:5B:64:2E:48:52:F9:05:16:CB:77:A9:7D:71:20:95:4B:41:87:04
X509v3 Authority Key Identifier:
keyid:68:EF:CC:A8:49:8F:5D:26:C1:20:AF:34:D8:46:C0:28:1F:F6:29:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:95:28:66:6a:f3:36:56:31:35:8d:ec:b9:a7:b7:6d:3f:0b:
77:87:99:bd:da:45:e9:ef:56:62:6e:b2:59:c9:05:d8:70:63:
7b:92:81:28:c1:f2:18:ca:19:7a:cc:be:bf:e4:16:c9:cc:06:
8c:08:1c:32:45:46:e7:b1:e6:31:d2:5f:ef:08:b1:a1:1c:f2:
c4:f7:10:61:08:ea:cf:c0:e4:0a:a2:12:7e:9e:ef:ed:42:db:
0a:25:da:bf:c1:8e:84:c9:e3:af:4b:bf:a1:5b:26:a5:70:9c:
5c:2c:7f:90:db:53:6f:18:aa:f2:2c:40:9c:99:5f:e9:57:fc:
f6:a0:31:db:59:b4:77:cb:d5:9c:b4:16:89:76:91:79:d2:fb:
4d:8f:ea:5e:19:90:fc:6d:b5:50:e8:09:be:c2:db:d2:db:2a:
4d:09:78:56:7c:c4:63:52:cc:7b:bb:a6:5f:83:4d:65:b4:62:
4c:92:08:8d:40:ee:ac:10:a6:26:f1:e3:44:25:71:02:16:d6:
32:8a:c1:fd:7e:25:f9:12:da:5e:0f:d0:c4:ac:04:f8:48:46:
a1:e8:3b:a9:7b:a4:4b:88:9d:6b:0f:fe:3b:ae:0b:d1:66:4a:
cf:d3:76:f2:8a:f5:8f:f3:67:f1:a9:91:bc:77:96:21:67:1e:
d6:ad:ff:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 00:20:38 2025 by rpki-client