Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
File: a8GtFnaioypFoM85L3-cXqaOLeo.mft (raw, json)
Hash identifier: bbwagRv6Ir8efIMNKgz3/Q8wQlAHQIrTay14WfgM63o=
Subject key identifier: 63:D3:EA:EA:74:EC:A5:B6:37:AD:26:2D:3F:4E:3A:D9:27:E9:AB:D8
Authority key identifier: 6B:C1:AD:16:76:A2:A3:2A:45:A0:CF:39:2F:7F:9C:5E:A6:8E:2D:EA
Certificate issuer: /CN=6bc1ad1676a2a32a45a0cf392f7f9c5ea68e2dea
Certificate serial: 01988B0F52702A8414C110C97DF51C088EEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
Manifest number: 1622
Signing time: Fri 08 Aug 2025 19:01:33 +0000
Manifest this update: Fri 08 Aug 2025 19:01:33 +0000
Manifest next update: Sat 09 Aug 2025 19:01:33 +0000
Files and hashes: 1: CkA5P7l5ePDJ8YtVI5RwljhHN3I.roa (hash: Rv4CNPYpNEer366FC8TAHEAISsXVQ6rJf8w+ppgPPgs=)
2: a8GtFnaioypFoM85L3-cXqaOLeo.crl (hash: 3jTcARiyg9kJZ368CBFNPjMFkeYDlkxwIqSjkrvB5dg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:52:70:2a:84:14:c1:10:c9:7d:f5:1c:08:8e:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc1ad1676a2a32a45a0cf392f7f9c5ea68e2dea
Validity
Not Before: Aug 8 19:01:33 2025 GMT
Not After : Aug 9 19:01:33 2025 GMT
Subject: CN=63d3eaea74eca5b637ad262d3f4e3ad927e9abd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:14:a8:b0:46:40:c9:0b:6c:ad:f5:86:3a:9c:
f6:bd:98:08:e5:2a:08:b9:92:f2:c5:05:b4:29:9c:
ab:de:b9:68:f1:26:33:90:76:9d:47:ef:2a:69:ff:
cb:96:72:79:97:b9:b4:bb:44:a2:2a:0f:d1:c1:bb:
71:1c:7b:94:5b:b7:4b:fa:74:b2:2d:a9:36:04:05:
96:6b:41:75:dd:c8:2a:f0:85:0c:f2:28:33:7f:a3:
d0:8e:c2:85:26:9e:b7:29:0e:25:ca:e8:74:08:ff:
a2:7d:81:c9:f5:62:f7:11:c5:54:41:25:63:2c:8c:
ed:bb:77:64:9f:6c:58:35:3f:f1:db:ba:b0:fc:23:
ce:2a:fb:57:2b:ce:d6:d5:50:3f:4f:b7:27:45:96:
b3:a8:0e:1e:5f:be:e6:f7:47:f0:9e:62:6a:e2:e2:
02:21:df:bf:2f:19:b5:3d:52:5c:6c:9d:c4:50:49:
a5:85:db:f6:05:8d:a3:31:6b:2c:13:c5:2f:ac:be:
84:b7:86:66:ef:d9:61:f2:d6:40:88:a5:2f:27:de:
b1:be:22:cc:17:15:10:fb:a0:8a:3e:83:dd:a3:f5:
96:30:04:63:51:4c:5b:6d:a1:65:a2:7f:7c:7d:72:
d2:d9:18:7e:bc:03:14:28:ff:34:5e:2f:72:b3:ba:
90:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D3:EA:EA:74:EC:A5:B6:37:AD:26:2D:3F:4E:3A:D9:27:E9:AB:D8
X509v3 Authority Key Identifier:
keyid:6B:C1:AD:16:76:A2:A3:2A:45:A0:CF:39:2F:7F:9C:5E:A6:8E:2D:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:4a:fb:4b:f6:3e:57:f9:34:74:b3:ed:8d:70:9a:44:db:3b:
31:1a:59:c4:f8:3e:70:43:79:b3:33:60:34:f9:ab:9e:cf:81:
d0:ba:2a:b3:54:49:de:50:b8:89:ab:69:a0:28:e4:04:72:1d:
26:0c:78:1c:56:c3:eb:98:e4:bf:e5:81:54:0c:cc:2d:21:7a:
df:14:9c:2f:39:45:3f:20:9f:2a:46:5c:8b:ba:14:a2:73:4e:
e5:a2:28:19:5c:a9:d2:eb:40:0c:f9:45:b6:14:70:33:ea:38:
87:eb:e6:71:cd:75:58:a8:8a:67:8f:9a:5b:ae:82:14:d3:51:
40:4f:cb:24:ae:83:d6:d2:10:82:d3:5a:ad:ff:50:87:4e:2f:
c4:2b:a8:8d:8d:03:90:14:dc:55:31:88:99:63:0e:d5:4d:ec:
13:f6:5c:68:53:ce:e5:9f:eb:25:d6:e0:9d:bd:3f:8a:2f:f6:
2d:f6:9e:aa:30:50:5e:eb:bd:22:25:f8:66:a8:11:79:bd:4e:
67:9f:37:aa:90:31:77:e5:7f:a7:b5:35:fa:29:dc:04:ab:8d:
c4:75:b3:0a:41:31:9b:d9:e9:92:17:df:51:d3:d7:84:47:20:
8f:05:7c:27:d9:94:86:9d:7a:a5:39:0c:67:6b:01:3e:82:7b:
d8:c6:93:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:44:16 2025 by rpki-client