Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
File: rKKhlS5xiUSkBDSg6-__2iv-7V8.mft (raw, json)
Hash identifier: wz8oE6WM1IGazBE1bhG4nDKbGmBbg6GvSfwmft+lvyU=
Subject key identifier: A6:2A:24:6B:B3:DC:21:99:6A:7E:0B:AD:5D:7D:5C:7B:86:D0:51:23
Authority key identifier: AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
Certificate issuer: /CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Certificate serial: 01988279DCBD566FD4D5D6A158BAFD90C1AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
Manifest number: 12DB
Signing time: Thu 07 Aug 2025 03:01:21 +0000
Manifest this update: Thu 07 Aug 2025 03:01:21 +0000
Manifest next update: Fri 08 Aug 2025 03:01:21 +0000
Files and hashes: 1: mN-Gq3CnQOseJQb6vbylzDVdWSg.roa (hash: fOE9ILnEXk1PyxS5P7XqjGQMPFnkivt3IHprv8lvkaM=)
2: rKKhlS5xiUSkBDSg6-__2iv-7V8.crl (hash: qmW1jpFkJmXfJ9czXydtY0/CQmkrZcy4QUS99nSShE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 03:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:79:dc:bd:56:6f:d4:d5:d6:a1:58:ba:fd:90:c1:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Validity
Not Before: Aug 7 03:01:21 2025 GMT
Not After : Aug 8 03:01:21 2025 GMT
Subject: CN=a62a246bb3dc21996a7e0bad5d7d5c7b86d05123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:25:05:fc:fa:f8:7e:db:4d:a1:46:ab:88:4b:
b6:31:17:85:84:20:8f:12:f9:6b:11:1f:b1:1d:81:
35:38:57:21:7c:4c:7f:b9:ec:db:0e:cd:e8:12:b8:
76:3e:eb:43:ba:95:bd:57:bf:75:8b:f9:29:fe:18:
b8:ef:b2:2b:e1:6c:95:c9:38:6d:d7:3a:2a:91:d1:
aa:84:39:f7:95:bb:fc:8c:e0:06:eb:3d:97:ff:06:
d3:03:82:b3:42:30:db:ef:e6:7e:79:99:f8:a2:31:
09:c2:3b:20:c3:dc:16:ce:7c:0d:a3:fe:26:3c:47:
6b:35:64:8d:0a:e6:b0:89:ea:28:4a:52:3d:db:f8:
23:fb:04:ca:82:ef:d3:2d:5e:16:5f:d6:d2:5f:49:
c5:da:69:43:4c:73:7b:6f:33:b4:ce:cf:eb:2d:b3:
56:a9:5e:35:c8:b5:80:02:11:77:6c:8a:61:f3:32:
39:5e:37:f1:06:50:76:01:bb:0f:f9:b9:1e:9f:41:
f8:16:a5:b2:1c:4a:73:37:3b:19:99:29:89:68:10:
fd:52:00:f0:50:4d:4e:9c:e7:8f:9c:1a:f6:e8:8b:
2e:80:ba:20:6c:05:ad:72:fd:aa:97:50:cb:c6:46:
7a:0d:ee:9e:a2:57:0f:64:77:fe:29:eb:0e:25:4b:
0e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:2A:24:6B:B3:DC:21:99:6A:7E:0B:AD:5D:7D:5C:7B:86:D0:51:23
X509v3 Authority Key Identifier:
keyid:AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:54:30:ae:88:bc:cf:5b:51:be:29:17:21:51:a5:83:ee:5c:
1c:87:5c:92:36:62:5b:77:4a:cb:ab:aa:00:c8:bf:78:d4:2f:
15:8d:1c:49:2a:3a:bd:c1:d8:8f:07:fa:3b:26:41:af:e7:99:
9a:b0:9f:3e:3c:4c:10:fa:9e:d1:95:51:bf:f4:a5:52:81:bb:
43:fd:1b:79:9e:29:7d:ae:aa:9d:b7:8a:bc:98:15:5a:4d:29:
43:ef:f1:42:59:ef:cc:f1:aa:72:55:e5:cd:fa:22:30:59:c5:
2c:00:87:3b:11:e8:11:0a:83:f9:59:eb:89:44:c4:e0:87:c7:
30:a5:f4:34:68:10:54:6d:be:b0:f3:26:3f:dc:f4:d6:63:64:
3b:95:71:3d:34:fe:1e:a7:08:e2:09:62:46:e2:c7:66:81:6b:
b6:f6:cd:8c:3b:62:7c:38:9c:b8:75:9d:74:61:6c:89:81:61:
e0:5b:71:5f:6c:85:1f:5e:0c:fb:99:a2:f6:b4:99:8c:97:1e:
09:c4:2d:fd:a9:47:c3:28:43:ca:41:bd:a6:67:84:07:e5:94:
77:01:b7:18:8e:2a:1c:69:42:07:5b:1d:84:88:e5:ed:fb:6d:
f0:23:7f:1b:7e:26:ea:7e:b5:96:d3:9d:f7:99:fa:76:e0:80:
41:0f:3a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 11:19:28 2025 by rpki-client