Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json)
Hash identifier: NHHM+ZvoMq7j1OYrvxwQfLsm51sjzq1LSfXu/ljiRGg=
Subject key identifier: 16:C7:CD:D4:07:59:BE:77:2B:8B:5E:47:41:21:35:8A:DE:E2:52:43
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 01989034F26EAEFBF70C924D4F5BC52FC22B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
Manifest number: 1625
Signing time: Sat 09 Aug 2025 19:00:45 +0000
Manifest this update: Sat 09 Aug 2025 19:00:45 +0000
Manifest next update: Sun 10 Aug 2025 19:00:45 +0000
Files and hashes: 1: G3jkppDUZ7UShIbg3wj67wwITjQ.roa (hash: IM9aMDCOjn2pDhh5r2plZvteAbzhdwZ0L/lTf4RJayk=)
2: Tz1CIM1JoghruWTN6nGpazj8zTs.roa (hash: VV/wpFoAA0PEYjeaECSEYgoe19Q1uDYWZTbwDnhLY+0=)
3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: eBMA9EkYd2DC0b3f4PJ27AAy7Rk7AEaCnU15WMbnv+0=)
4: qOyspdHf0vEJQuyvIz0XkgRHk_0.roa (hash: yR7LTFxNYmFcq/nxWYOH7mZupl2rRRW8SrPwUWcJB0k=)
5: uiGdfZv36ngdlEPtH0Dctu5_0kI.roa (hash: kwlBzu/ziaLKG7neS7FV84L3FCZ7YdUCR1fgHvPBMoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:34:f2:6e:ae:fb:f7:0c:92:4d:4f:5b:c5:2f:c2:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: Aug 9 19:00:45 2025 GMT
Not After : Aug 10 19:00:45 2025 GMT
Subject: CN=16c7cdd40759be772b8b5e474121358adee25243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:29:1c:ad:c9:8d:53:51:59:eb:e1:87:b1:e6:
26:71:da:11:77:0e:c9:e1:38:63:4b:ec:8e:ef:75:
9e:1b:e9:af:a6:35:52:79:bb:cc:64:eb:5b:2a:36:
24:7a:5d:b0:19:73:3b:3b:5f:19:f2:99:a5:97:a6:
bd:38:c2:86:58:a5:71:ae:04:dd:db:46:40:2e:8d:
9f:e4:c5:60:c3:05:2f:13:ea:cf:7f:d8:c1:82:a8:
31:fd:5c:80:dc:8a:24:f2:48:48:fe:fe:fc:fe:26:
22:6c:0a:9b:de:01:90:24:4a:5e:32:6d:55:59:fe:
20:a6:c7:da:95:07:36:bc:cd:3d:a5:6f:f0:75:55:
53:91:8e:77:12:e4:1d:05:36:93:3d:1e:c5:4d:23:
d5:11:c9:f8:4c:8a:d3:a1:56:e8:c2:c8:c8:ab:f4:
8f:84:f2:e4:c6:24:5f:b5:2d:c6:cd:9f:34:fd:57:
f5:5e:c5:e9:c8:6f:5f:3c:70:3f:12:d3:2e:52:b0:
71:69:16:3e:46:16:38:f4:54:3e:1f:61:e5:0e:f8:
30:ce:33:2b:ce:29:4c:d9:73:24:05:61:f3:b5:17:
8a:c5:2d:ba:8c:0c:37:ea:c9:1e:e5:a8:d9:c5:d7:
0b:e6:bd:e4:83:ee:aa:72:75:29:3a:d9:2e:3e:fb:
0f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:C7:CD:D4:07:59:BE:77:2B:8B:5E:47:41:21:35:8A:DE:E2:52:43
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:cb:b3:32:84:ca:2b:0a:13:90:68:ad:2c:90:e2:dd:72:4e:
e0:8e:29:3b:a5:73:59:bc:47:c0:5a:4e:4b:00:3f:37:b6:ca:
28:d5:1f:30:71:90:19:08:83:62:49:58:73:e5:ee:56:39:5d:
88:a7:29:c8:52:db:2c:84:37:aa:58:6d:a5:19:f6:b8:a6:ab:
87:55:1e:a6:7e:64:83:e2:9b:86:2b:eb:89:41:bd:4f:f2:d7:
59:89:fe:4a:07:39:0f:5a:9f:42:96:16:52:68:d9:9b:fb:35:
cb:e4:c8:22:4a:80:5d:86:c2:b8:c3:63:f4:b0:2c:74:16:28:
b3:15:73:a1:b7:18:1d:01:f5:c1:fa:48:2c:a3:c1:d4:a1:d6:
6b:ff:63:3e:c0:73:7d:2f:ad:a3:59:60:c0:70:6c:65:75:88:
b5:af:26:9d:4c:4d:9c:3e:10:00:dd:19:9a:bd:3e:fc:c9:3f:
f1:a5:d1:9e:64:08:58:a6:b3:51:f5:9c:d0:c7:9d:40:f2:58:
6c:c0:5a:4d:a8:97:d7:d0:9a:03:2c:17:ff:f6:59:9b:3b:b7:
d1:ed:39:cf:80:cc:48:b5:e8:8d:7e:47:9c:24:61:ab:01:6b:
72:39:ab:3e:a4:d4:05:e7:e1:f2:d2:a1:2d:97:03:fa:12:08:
6e:9f:b2:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:14:57 2025 by rpki-client