Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
File: rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft (raw, json)
Hash identifier: Iyk+XoEkTREBVRUUMHoRA898dpZbYh61bawLSnCVXLQ=
Subject key identifier: 3D:83:A0:57:DB:15:34:8F:14:45:43:FB:C5:D8:DC:30:02:DF:04:29
Authority key identifier: AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
Certificate issuer: /CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Certificate serial: 019873E3475FED01FB44B73E8506D4F5918A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
Manifest number: 161E
Signing time: Mon 04 Aug 2025 07:02:11 +0000
Manifest this update: Mon 04 Aug 2025 07:02:11 +0000
Manifest next update: Tue 05 Aug 2025 07:02:11 +0000
Files and hashes: 1: BAFnA8E_-fRHFvJR66V5dNg4Xzc.roa (hash: zli04q+UUFDZ6LvNlKF4wEZntdZy+cQL9il9Oh4rSZo=)
2: rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl (hash: xhinaUaMuxNQqPNa/NpNG0HzJp6wRRQtEfiR0pOztX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:47:5f:ed:01:fb:44:b7:3e:85:06:d4:f5:91:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Validity
Not Before: Aug 4 07:02:11 2025 GMT
Not After : Aug 5 07:02:11 2025 GMT
Subject: CN=3d83a057db15348f144543fbc5d8dc3002df0429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0a:7d:d4:e0:71:37:26:b1:3a:eb:68:5e:65:
6f:da:b9:b5:62:48:9c:4d:d9:0a:97:7f:8d:10:88:
a0:5f:ed:f9:7e:fa:3e:b6:1c:d3:17:16:be:b6:21:
a0:d5:15:25:8d:4c:e6:dc:33:bf:08:4a:42:6c:69:
a5:6f:24:a0:01:21:05:09:25:1f:36:48:a9:24:7c:
45:8e:b2:d7:c7:8d:7f:cf:49:b6:77:b8:d2:f1:83:
87:f7:ac:86:13:9a:b2:35:d9:d0:4a:2e:19:16:17:
af:4d:aa:8f:a7:86:15:39:dc:2d:f6:5f:1f:d1:99:
43:3f:da:44:31:d6:de:3a:d5:9a:bc:96:7f:42:fc:
94:5f:d0:97:2c:21:42:50:06:44:4f:8c:dd:8a:39:
b2:5c:9a:17:e2:38:8c:cc:60:89:23:8d:a6:12:3a:
74:a3:5a:d3:0b:f8:5f:aa:1b:55:cb:02:e3:ec:6c:
a0:16:6d:13:04:ef:1b:db:30:dc:7e:6a:c5:41:c6:
bf:96:d1:86:82:b0:ae:78:28:04:df:1b:b6:a0:f3:
1a:33:a3:e6:6a:5d:a7:a5:32:8d:dd:66:7e:05:19:
a6:6f:d3:cd:29:df:f0:bd:f1:56:6d:be:80:fe:aa:
1a:52:98:47:58:f7:72:68:c7:06:2c:64:ea:4a:77:
9a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:83:A0:57:DB:15:34:8F:14:45:43:FB:C5:D8:DC:30:02:DF:04:29
X509v3 Authority Key Identifier:
keyid:AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:48:b7:1a:23:d0:95:61:06:4d:87:8a:f2:ed:13:fd:49:48:
28:17:43:d5:f6:dc:eb:51:7d:f8:38:41:9d:ed:1c:dc:75:3e:
64:4e:91:75:f1:9e:84:60:e1:30:99:72:fe:11:47:fc:19:ff:
24:fc:d4:13:81:69:a9:e7:2f:a0:eb:53:53:ac:bc:b7:73:1d:
0f:7a:62:ac:f0:1d:c5:28:8a:3f:de:ed:4a:5f:85:5b:7a:e2:
f6:58:a8:a3:c9:12:10:0d:a5:87:be:d0:23:01:27:d5:b1:33:
4f:f3:e5:ae:38:c8:bb:f0:09:0e:32:b8:82:c0:48:68:3f:9d:
3e:63:47:10:6b:8b:af:b7:30:75:c9:bf:c5:e3:5c:d9:e1:e0:
d7:6a:a5:16:2b:fb:fe:fb:ba:78:9c:9d:af:15:fb:04:3e:2a:
f2:33:fb:3c:9e:c5:91:25:fe:22:81:57:2d:16:2d:4a:44:64:
4f:11:6f:b8:b3:24:df:4a:2a:8f:fe:a1:27:06:f3:86:2f:ad:
e9:bd:f4:84:38:17:ac:c8:72:d2:7c:1e:33:d7:1d:8f:77:a4:
86:7c:ed:69:66:1b:49:06:04:86:1d:20:b9:7f:f7:0a:25:c5:
7a:59:4c:7c:b2:0c:02:5d:b6:5e:02:c7:ce:9f:ee:89:81:b9:
6c:b2:67:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:00:11 2025 by rpki-client