Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: Enc1PjDhowyqxRaQAaBWLWx8deC1J6DUdsCmW2Ccus8=
Subject key identifier: 2E:6F:1D:F6:B7:B9:0C:D4:2F:B7:84:DA:34:2A:C8:63:2D:0E:C7:E3
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 019895C8ED678C6F75773A9721131162DA24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 079A
Signing time: Sun 10 Aug 2025 21:00:29 +0000
Manifest this update: Sun 10 Aug 2025 21:00:29 +0000
Manifest next update: Mon 11 Aug 2025 21:00:29 +0000
Files and hashes: 1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=)
2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: wiviErXd4ub8hLHYS05iR63bltm51EoR3M451MA28/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 21:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:c8:ed:67:8c:6f:75:77:3a:97:21:13:11:62:da:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: Aug 10 21:00:29 2025 GMT
Not After : Aug 11 21:00:29 2025 GMT
Subject: CN=2e6f1df6b7b90cd42fb784da342ac8632d0ec7e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:95:70:f5:95:6c:dc:b5:fd:47:72:31:4e:d8:
bd:f9:da:9a:58:a5:c4:23:d1:5e:5d:b0:49:e8:c6:
87:2f:07:0b:77:66:a1:74:ec:0f:9a:63:5e:3c:a5:
8a:35:da:52:d7:17:b2:8f:db:07:87:f6:3d:4b:72:
c3:99:76:ba:13:1d:66:49:81:f2:32:72:f2:a3:f1:
5f:44:c6:b8:e9:05:1c:b9:67:fe:7b:35:1e:35:a3:
6f:69:56:82:98:80:8b:ed:b0:d3:98:8c:fe:fb:d6:
ae:8d:73:a0:60:1e:a3:bc:ad:17:f1:33:01:42:9a:
23:3e:f9:8f:6a:0e:d5:7f:a8:f2:b4:3f:e3:71:f9:
32:0b:9e:f6:57:09:4c:a9:72:bd:8a:cd:24:ec:7e:
38:8e:5a:c2:91:a9:66:05:5d:4e:2c:c2:9b:cc:19:
e7:d9:3f:13:2d:24:a2:9f:35:d8:86:57:1f:27:5a:
e1:d0:61:83:48:56:aa:52:8d:8d:95:78:7a:6a:61:
89:f3:7c:31:c7:dd:9a:18:a4:36:d1:04:a5:94:b8:
03:cf:f0:bb:d1:9f:3c:9f:32:2b:5d:54:92:bc:9d:
8f:3d:34:ab:f3:86:2e:99:b1:1e:cd:2b:03:e7:c8:
a0:d2:38:f1:94:3a:ee:ef:d9:6c:5e:99:10:aa:6f:
a4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:6F:1D:F6:B7:B9:0C:D4:2F:B7:84:DA:34:2A:C8:63:2D:0E:C7:E3
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:36:6d:5e:f7:13:37:35:a1:07:0a:0b:50:e5:2f:48:8a:ce:
d6:34:95:7c:2c:99:ae:0d:6b:4e:01:5c:44:b9:c0:6c:fd:e2:
6e:0d:5f:49:07:99:61:0f:a6:c3:9f:f4:ae:cf:a9:24:7d:e2:
3e:3e:e5:de:19:5f:f9:9b:56:7d:96:c3:8b:e4:20:d8:2d:4b:
14:ae:68:86:c1:c2:e1:67:13:22:3f:a0:6c:5c:e3:1b:cb:a0:
9c:37:7f:0d:a9:09:b6:19:c5:52:7e:c8:33:f3:6a:1b:fb:85:
9c:0f:de:7b:3c:27:99:94:d8:41:db:7e:a9:8f:0e:9a:1d:fd:
5a:7e:d5:43:47:45:24:57:ea:bd:69:95:a8:03:63:6c:2c:5d:
92:f0:7d:dc:39:9a:49:b2:2c:fd:48:c5:17:fd:27:f8:5c:ea:
e9:58:60:91:bb:5d:6a:67:e3:3d:4a:4c:32:48:56:1b:04:23:
5b:4b:17:af:40:99:80:94:6d:7c:b1:1e:de:a9:bf:5a:69:90:
53:84:8b:2d:54:80:b8:df:ec:7d:93:a2:9e:40:a3:71:0e:c2:
89:e8:7b:b4:35:39:6c:dd:44:61:f7:b4:87:b8:cf:25:7c:18:
b4:41:7d:6d:a6:2c:74:39:67:b3:62:ea:d9:b2:54:06:18:d3:
90:f1:23:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 05:56:13 2025 by rpki-client