Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
File: aHyL8iKia_HJxmOMw1bSg1UC8tY.mft (raw, json)
Hash identifier: 91JoNtvAVy0aW+6f3d1h3Vb/DHcTr5b+a8uwuzKo4KY=
Subject key identifier: 80:A6:92:87:F7:70:B4:DF:71:53:AF:93:FC:77:14:25:55:24:3D:4D
Authority key identifier: 68:7C:8B:F2:22:A2:6B:F1:C9:C6:63:8C:C3:56:D2:83:55:02:F2:D6
Certificate issuer: /CN=687c8bf222a26bf1c9c6638cc356d2835502f2d6
Certificate serial: 01988EEB3F5E47BF3C242770301B9E9CCAD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
Manifest number: 0765
Signing time: Sat 09 Aug 2025 13:00:38 +0000
Manifest this update: Sat 09 Aug 2025 13:00:38 +0000
Manifest next update: Sun 10 Aug 2025 13:00:38 +0000
Files and hashes: 1: aHyL8iKia_HJxmOMw1bSg1UC8tY.crl (hash: 1yKJHYI8gE/9LDTFfyeZ7wfN6DRzMAf0iYVdtp+FlyE=)
2: szxe0DPYsGTMI_tgKM1yaWgLDtI.roa (hash: fjZgmmGMINi/iYDucRgC4NEVBx45QTUkAnBaw6M5XK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 13:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:eb:3f:5e:47:bf:3c:24:27:70:30:1b:9e:9c:ca:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687c8bf222a26bf1c9c6638cc356d2835502f2d6
Validity
Not Before: Aug 9 13:00:38 2025 GMT
Not After : Aug 10 13:00:38 2025 GMT
Subject: CN=80a69287f770b4df7153af93fc77142555243d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bd:92:28:17:bc:95:eb:f4:e6:a6:60:ee:3f:
d1:ec:a1:5f:f4:e6:1c:97:a6:5e:45:43:f6:18:b1:
85:20:22:d9:de:1c:23:80:52:2c:dd:2f:68:9f:4b:
2a:92:d9:b1:93:85:05:ba:ec:0e:c6:96:9b:ae:91:
b3:07:97:3c:0e:01:5f:d4:bc:cf:cd:3f:04:4e:2e:
ac:05:dd:e1:82:93:8c:f4:16:1e:bd:6e:96:d5:28:
19:dc:96:a2:9f:ad:fa:af:7a:2e:c0:c3:b1:84:02:
44:c7:45:d6:5f:16:2a:f0:5c:84:39:52:67:5f:1b:
74:8c:19:fd:de:f2:fa:6a:fa:51:61:00:81:d4:64:
64:75:66:ff:35:eb:be:5f:33:af:95:c4:dc:91:2e:
9c:cf:43:26:b5:4f:8a:9d:37:a6:0d:19:ba:1f:8f:
e2:9a:c8:ed:75:5f:97:43:40:06:46:ec:87:8f:de:
63:4c:f1:ae:e6:58:78:0e:47:61:14:8c:71:fc:45:
52:88:8f:d3:a0:76:62:32:7b:68:cd:a1:f0:de:d3:
59:9c:ad:6e:93:bd:5f:55:78:dd:a4:c8:c8:3d:ff:
71:45:45:4d:19:3a:c9:ae:4b:49:4c:96:5f:3d:48:
ea:bf:5e:7f:25:50:e6:69:93:6f:55:dd:1c:b2:a0:
ee:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A6:92:87:F7:70:B4:DF:71:53:AF:93:FC:77:14:25:55:24:3D:4D
X509v3 Authority Key Identifier:
keyid:68:7C:8B:F2:22:A2:6B:F1:C9:C6:63:8C:C3:56:D2:83:55:02:F2:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:c9:81:77:41:f5:64:0e:00:83:03:e6:b2:5f:2f:ef:29:7f:
3e:76:6e:b8:be:59:2d:be:59:81:7b:ab:cf:3f:54:0f:de:39:
83:ce:2c:44:71:d7:4c:ea:e4:dd:63:71:db:37:fb:df:86:6e:
33:fe:44:47:90:c3:a8:c7:41:e0:7d:be:29:db:57:ad:59:99:
15:15:ae:08:49:0c:af:a9:a5:4f:38:d2:9f:41:42:5e:ad:1e:
59:52:6d:d9:6e:22:a4:81:3c:53:1d:ae:0e:b1:cd:a6:94:b6:
7d:19:d5:e8:8c:ab:5b:93:bd:fd:c7:06:d2:66:c2:1c:76:01:
83:18:ff:59:4c:67:a8:84:5b:e5:45:16:26:23:64:bb:34:1d:
fd:98:1a:e9:d7:ce:6e:9b:0e:d5:9d:85:cb:b7:cd:a8:cf:4f:
47:e8:f2:da:5a:b6:6e:23:86:d3:05:3f:ae:9d:5d:1d:c3:c4:
2d:4c:71:e0:18:bc:8f:77:65:85:89:ae:c7:7c:1a:5f:4b:47:
74:7b:7f:37:d0:6a:a0:c5:7d:1d:1a:5d:7a:37:87:7e:05:87:
63:04:58:b5:70:55:b3:7b:c3:c3:27:c9:dd:cb:62:9e:68:3a:
ee:6c:e5:a0:f0:1e:6f:99:1c:c8:22:5b:ce:21:ab:8a:75:a9:
b2:a9:6b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:47:21 2025 by rpki-client