Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
File: aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft (raw, json)
Hash identifier: Rn6A4XMCcj8AXtq2j9oPov1Okqqs5fUQL52OJ/yeknw=
Subject key identifier: 8A:31:44:C2:F5:AF:3C:54:DF:B1:E7:A8:AC:81:59:7F:0D:1F:C6:38
Authority key identifier: 68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
Certificate issuer: /CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Certificate serial: 0198733DA83B9E7A8BC26408C999A8484D51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
Manifest number: 0581
Signing time: Mon 04 Aug 2025 04:01:17 +0000
Manifest this update: Mon 04 Aug 2025 04:01:17 +0000
Manifest next update: Tue 05 Aug 2025 04:01:17 +0000
Files and hashes: 1: AJ5wMI6kFAAGgXfPHZAVtLCSnP8.roa (hash: O5F5OKdgmFhYvl6NemyAslo9muG5v3CdZb38avB1q8I=)
2: aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl (hash: g/BX9TCUwmvGnB00ZedLK1SzleaF/GlHLq3uZOn4Knc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:a8:3b:9e:7a:8b:c2:64:08:c9:99:a8:48:4d:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Validity
Not Before: Aug 4 04:01:17 2025 GMT
Not After : Aug 5 04:01:17 2025 GMT
Subject: CN=8a3144c2f5af3c54dfb1e7a8ac81597f0d1fc638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:62:a2:43:a5:31:60:3f:a1:0f:5e:98:b3:9b:
25:45:b7:34:f8:d4:5b:65:4a:52:4f:59:c1:35:db:
5e:c3:f0:d8:3d:da:b2:db:12:66:1b:5a:51:40:91:
f6:21:ed:72:8a:9e:2c:49:06:0c:4a:91:4d:7c:fb:
57:02:ea:10:f8:f3:58:1f:78:56:cc:6b:5f:0e:50:
2f:f7:5a:0b:b7:5a:20:d5:3b:6a:94:f8:59:59:89:
2a:8f:e4:fd:ec:e3:dd:09:38:ab:69:3e:4f:78:bf:
c9:ac:32:26:94:01:35:b3:b1:88:66:12:1c:c5:85:
6c:26:fb:1a:c9:2f:53:b8:9d:0a:85:64:99:12:7c:
32:38:30:1a:7d:c3:82:14:f9:36:1a:3d:b0:15:02:
13:1b:a7:ae:2b:23:49:81:e6:42:ea:4c:a9:40:58:
79:91:d9:93:65:f8:49:2c:75:f7:a9:c5:f7:48:07:
5c:6d:c0:16:9e:5d:ad:fe:43:da:06:40:f3:5c:7b:
51:13:b5:5a:a8:cd:cf:56:c4:7a:87:e8:ce:1e:90:
1e:a2:42:14:c4:6e:23:8f:6e:bd:4e:8e:3d:de:96:
33:02:95:d6:4d:76:ec:6b:1c:d6:8e:a2:5f:28:54:
5e:c2:01:19:1a:4a:50:83:79:54:df:f6:19:d8:68:
65:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:31:44:C2:F5:AF:3C:54:DF:B1:E7:A8:AC:81:59:7F:0D:1F:C6:38
X509v3 Authority Key Identifier:
keyid:68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:30:94:09:56:4a:c8:ff:0d:f1:4f:da:8f:3f:d6:e1:85:ca:
d0:28:56:b6:91:11:e3:f4:ab:85:24:5f:7e:ed:ff:75:ad:b1:
85:09:1f:9d:2b:44:1a:d6:b2:9a:00:f0:a6:ba:02:0e:0a:53:
3b:9b:f8:59:b4:34:6d:ad:9d:bd:fa:38:1b:27:73:22:a8:83:
a2:d5:0d:90:e2:03:16:d9:d5:25:09:70:47:79:17:8a:0a:89:
e2:71:27:11:ce:04:20:c7:b8:9c:fc:ff:6a:4c:48:37:59:a5:
e5:7c:e9:75:51:21:57:fe:f6:50:65:70:39:88:6e:cc:e1:54:
97:88:1b:27:a6:15:5f:41:9b:bf:90:8e:ad:a8:98:53:72:39:
b3:8b:cb:30:82:3b:26:94:0d:bb:2d:bb:2e:fe:a7:8a:6e:3b:
7e:da:78:cb:48:eb:69:73:5a:7d:af:db:49:72:a1:6a:50:9b:
cb:b4:24:29:b9:53:f2:79:b9:07:eb:22:5c:d2:6d:06:00:87:
d0:51:d5:48:1e:32:eb:18:7a:d4:a4:df:85:37:9f:79:96:d9:
63:c3:54:5d:08:ec:27:c3:8e:68:21:09:fa:60:4b:08:62:79:
15:d6:18:df:cb:df:04:3f:8b:18:5a:bd:24:fc:d0:d0:d4:83:
5d:30:fa:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:15:42 2025 by rpki-client