Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json)
Hash identifier: CifN4LrzS/MkBg0j5ghH7HtJky7d8uEfGnECQjTAeHU=
Subject key identifier: 98:F3:B6:4F:A7:C9:E1:39:5D:C5:9C:63:95:09:4A:15:A3:99:5E:CA
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 01987C0A55BA449E3E37F32E57EE6CA3B990
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
Manifest number: 1628
Signing time: Tue 05 Aug 2025 21:01:48 +0000
Manifest this update: Tue 05 Aug 2025 21:01:48 +0000
Manifest next update: Wed 06 Aug 2025 21:01:48 +0000
Files and hashes: 1: 6QBVEiLusjnuHnwecVMK9Kg-WII.roa (hash: OapSvDTUmzDRZu9Q3KlIrLgI0CjCfgxrem8xot5UiSo=)
2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: X++VNb5n79RwGjVhB7rY9UyCUD8O9vATm6PK3sqhTX8=)
3: GiC40GdnPgHbIqIbDNeP-spJi-M.roa (hash: Xd4LHWf6P2V0nuixtM1f8JXOI9EnPVM3k32pXeFOXiw=)
4: JeT3PicL3j6wpeXRT3s8FrJpy3w.roa (hash: tjXOPJYxlFtc8BfVkznJC0Nu37PcV0Dt33rxJApZ9kY=)
5: L5lOWtMXwmLYho3Arxcpd76R5sw.roa (hash: XM0Za1PmkukhwAWipMkx42usukTFibdWlbabSAWWgH4=)
6: Lwic0o2gw3k82wpfSkPa-wUg5Aw.roa (hash: pZ1a8TMxYqDEEa657nYARi2g7u3tXGj01SXvh3eUl1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 21:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:0a:55:ba:44:9e:3e:37:f3:2e:57:ee:6c:a3:b9:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Aug 5 21:01:48 2025 GMT
Not After : Aug 6 21:01:48 2025 GMT
Subject: CN=98f3b64fa7c9e1395dc59c6395094a15a3995eca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:12:08:2a:5c:1f:05:c6:3a:31:f8:17:f2:a1:
49:44:e0:61:e3:80:9d:0a:4a:34:55:19:43:f7:63:
95:e4:f7:63:34:b6:0c:7f:99:db:e0:a5:f2:5b:82:
55:6d:88:a9:f8:c7:2f:5c:e2:17:e6:50:9f:65:90:
21:e8:96:28:9c:c5:aa:86:bf:d5:9f:5c:e3:c2:c2:
68:a3:87:a5:5d:ab:09:b0:dc:a2:13:96:cb:38:4e:
eb:81:c2:b4:c6:af:46:1b:60:6e:db:d5:a0:33:db:
af:1d:22:24:be:5c:ec:8e:9f:b8:fc:c6:5b:a8:06:
98:db:64:a4:99:58:e5:46:16:0b:c3:39:e5:6a:4c:
fd:74:d8:d4:07:64:52:27:00:1c:4f:2a:9a:63:63:
01:d3:95:ad:2c:57:74:bc:ea:ca:4e:7c:69:67:b5:
82:11:a4:e2:4a:cf:ed:62:58:57:c7:01:e2:7a:c9:
6c:06:45:da:94:c2:da:06:27:5b:4b:08:61:36:98:
80:ae:21:b9:61:8d:50:65:9e:ec:b8:d5:27:9f:75:
5d:aa:d0:12:eb:c8:41:f4:81:de:cf:05:fa:c1:39:
15:65:1f:2c:e4:d0:b3:00:74:db:ab:8f:3a:5b:f9:
74:91:e1:a7:56:f4:b2:f8:b0:68:d0:76:c3:e2:62:
29:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F3:B6:4F:A7:C9:E1:39:5D:C5:9C:63:95:09:4A:15:A3:99:5E:CA
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:50:19:e6:3b:dd:9b:26:5a:ea:f6:8a:11:61:32:97:02:30:
70:34:49:a2:af:62:78:be:3a:ea:13:86:e1:29:8d:e2:4a:99:
ef:20:bb:80:5c:d5:c1:13:31:f6:6a:d7:45:23:1f:d6:f8:9e:
96:52:a0:22:97:b7:0a:51:28:41:ae:f9:e0:97:fd:6f:81:aa:
fe:2b:74:1b:c4:f8:e3:b0:fc:d7:73:82:25:6a:48:35:99:7a:
82:39:e9:a0:4a:e0:7a:a5:6b:d8:41:cf:bd:c3:d3:7f:43:57:
43:64:ed:59:37:c2:42:bd:18:fe:89:f4:2b:8e:ba:f6:40:04:
a9:5e:c5:e4:fd:9b:ad:f0:a1:0d:63:21:ee:e9:c2:06:89:37:
2a:c9:ba:85:60:c3:f2:d2:fe:d0:3a:2f:5f:46:58:01:24:7f:
a1:14:77:09:a7:cd:dc:ff:4c:15:9a:50:ff:8d:ad:1a:7c:c8:
0e:97:60:c9:3c:57:88:86:0c:6d:38:e3:80:e1:25:b3:43:98:
1e:5f:d8:33:3c:5a:2c:3f:ef:1b:fd:cf:ab:3c:01:b1:24:a3:
09:9d:c7:62:e9:38:03:ba:9e:1c:ab:75:a8:b9:9c:09:d4:8e:
aa:7b:b5:97:01:f9:94:b5:cd:29:1c:99:43:d4:29:b3:08:4c:
e3:98:8c:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:52:35 2025 by rpki-client