Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
File: a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft (raw, json)
Hash identifier: nrG991+l/Fc38nU9khxGclPEmEgzSv6lCXX6O6i/HCY=
Subject key identifier: 2A:65:72:81:62:69:D2:EC:A2:BC:EB:33:BA:19:F9:14:AD:A5:4A:33
Authority key identifier: 6B:57:C5:DF:F7:0E:BF:E6:7A:40:0D:55:F2:59:DB:2C:37:19:21:96
Certificate issuer: /CN=6b57c5dff70ebfe67a400d55f259db2c37192196
Certificate serial: 019873E3576886599AA3C45EB1FB0A1E30B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
Manifest number: 03D7
Signing time: Mon 04 Aug 2025 07:02:15 +0000
Manifest this update: Mon 04 Aug 2025 07:02:15 +0000
Manifest next update: Tue 05 Aug 2025 07:02:15 +0000
Files and hashes: 1: DXY1aPZOR4ljjfKNnTzK-ui2GtQ.roa (hash: HmRJXl6KdbWQ5yFSi3ORZiwzeQcQdEBbSpqG5+7FJoc=)
2: a1fF3_cOv-Z6QA1V8lnbLDcZIZY.crl (hash: n508CYVnNOB42+lH1bPkGTmuWPDBnV54SXrjUeJvqLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:57:68:86:59:9a:a3:c4:5e:b1:fb:0a:1e:30:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b57c5dff70ebfe67a400d55f259db2c37192196
Validity
Not Before: Aug 4 07:02:15 2025 GMT
Not After : Aug 5 07:02:15 2025 GMT
Subject: CN=2a6572816269d2eca2bceb33ba19f914ada54a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b8:ac:37:d8:2b:13:ad:62:02:47:8c:38:47:
8c:fe:09:e6:1e:b4:bf:db:3b:57:19:ec:57:bd:91:
1d:3e:77:2d:e2:91:b0:9e:ea:d2:d2:0f:85:79:9c:
c0:97:f8:b9:b6:dc:59:d7:9a:76:51:e5:d5:14:13:
2b:7a:59:1b:26:b4:10:c7:3e:c4:34:7a:dd:62:fa:
43:89:0c:b7:10:ef:14:6f:04:15:7e:aa:04:aa:fc:
92:01:7e:f5:8a:a0:64:97:fe:04:d8:45:e1:9b:cd:
fa:23:ca:09:7f:f5:61:f5:51:a1:8c:70:09:1b:aa:
c8:8c:9e:79:fb:63:61:58:76:f2:64:17:ae:4b:c9:
cb:6e:60:4e:1b:0a:a9:c0:60:7d:30:78:c0:23:d4:
0f:40:83:fd:ab:31:4b:8d:8b:43:08:f8:04:da:61:
54:0d:2c:7a:40:c9:41:ae:88:2c:a3:ce:51:2a:fb:
2e:81:78:82:65:28:25:85:05:29:79:70:5c:be:f8:
60:55:41:6d:c3:a6:b7:ec:dd:a8:58:84:76:18:8d:
92:fb:78:6c:ea:f2:69:d2:cb:a9:b9:37:c5:56:6f:
25:52:53:22:25:38:ef:bc:50:90:bd:b4:07:ef:52:
c5:62:fd:0c:95:77:e7:ed:54:ed:cf:61:54:40:30:
0c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:65:72:81:62:69:D2:EC:A2:BC:EB:33:BA:19:F9:14:AD:A5:4A:33
X509v3 Authority Key Identifier:
keyid:6B:57:C5:DF:F7:0E:BF:E6:7A:40:0D:55:F2:59:DB:2C:37:19:21:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:bb:cd:5b:0c:b1:d1:3e:11:32:80:48:68:68:5a:68:e9:2c:
87:a4:36:4d:c8:07:9a:09:0a:58:05:43:30:91:5d:b0:18:6e:
3f:1e:87:88:74:b6:f0:7d:c0:05:a3:c3:50:fa:08:bf:30:10:
14:e4:15:13:90:a4:b9:7d:d3:9d:fd:55:1e:a9:87:5e:77:84:
71:d5:02:e5:03:ee:c9:23:38:64:51:48:ce:20:03:63:9c:b5:
52:99:aa:07:4f:6b:1a:c3:38:4e:55:06:12:61:46:71:f7:78:
4a:ec:17:33:6f:96:ff:4f:14:6f:05:bc:7e:fe:77:99:fa:1a:
04:77:2c:ad:9c:f5:19:4e:42:51:36:97:29:49:d9:3c:b0:d2:
ed:76:7a:65:27:68:cb:20:9c:65:2c:e7:60:90:ee:44:1a:00:
20:35:87:4c:e1:f9:74:29:bd:f6:93:82:08:47:c0:42:d0:7d:
f4:78:71:db:26:ac:2c:10:02:75:23:26:ee:56:70:62:cc:62:
62:02:12:69:ad:70:a3:83:8c:b3:fc:23:8b:6a:93:e1:e3:88:
8d:a0:0f:40:5e:28:18:ad:98:62:e9:ac:bb:a7:fc:5f:ff:cc:
be:70:e9:3e:74:a6:ca:82:69:33:d9:e8:1d:d6:38:ca:88:01:
69:3a:d2:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:03:43 2025 by rpki-client