Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
File: aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft (raw, json)
Hash identifier: uXO3iVKzfi5C5C2dHCffUQD6lBxAYWHeNYhqcddTWG0=
Subject key identifier: 1F:EE:2C:1B:18:52:76:8C:61:6C:7F:A9:3A:9A:F7:E8:D2:95:DA:22
Authority key identifier: 68:E0:78:B5:18:1B:E5:FB:E9:14:B4:12:A4:12:09:6B:C8:D7:15:49
Certificate issuer: /CN=68e078b5181be5fbe914b412a412096bc8d71549
Certificate serial: 01985B6B993882603658F90459C6C70C2041
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
Manifest number: 160C
Signing time: Wed 30 Jul 2025 13:00:34 +0000
Manifest this update: Wed 30 Jul 2025 13:00:34 +0000
Manifest next update: Thu 31 Jul 2025 13:00:34 +0000
Files and hashes: 1: IXwdyS86SbDEc5r6DTqF-yyMhKo.roa (hash: MHPw/G9JdYVbN864pG/b/kFkrvcqi5VhnKr+4T0l/48=)
2: aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl (hash: 6/D11HaMAzH5owc2gHKXpJE6Rd4B/8c8HyPzEM5W6pM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 31 Jul 2025 13:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:5b:6b:99:38:82:60:36:58:f9:04:59:c6:c7:0c:20:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e078b5181be5fbe914b412a412096bc8d71549
Validity
Not Before: Jul 30 13:00:34 2025 GMT
Not After : Jul 31 13:00:34 2025 GMT
Subject: CN=1fee2c1b1852768c616c7fa93a9af7e8d295da22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e4:7f:4a:c3:97:c9:da:dd:bc:fc:d7:fe:4b:
53:48:7b:af:a7:78:cd:a3:82:37:ef:7b:5a:72:57:
e5:b9:80:3a:82:9a:b8:a9:08:d4:17:37:77:c2:a2:
0c:af:5f:dd:fd:0a:db:f0:6c:80:01:b1:6b:f0:38:
ef:30:b5:ae:c8:3d:2e:ad:79:02:f5:86:d7:96:98:
68:23:74:4d:b0:ea:e2:1c:2d:50:61:3c:90:41:19:
22:34:d6:22:d0:0b:04:a2:a3:bd:8e:a0:fb:74:22:
14:e1:9f:92:97:87:02:b7:41:6e:84:38:79:80:14:
c5:ce:49:d0:4c:a5:11:94:cd:fb:97:98:11:82:43:
69:b3:10:42:2a:5d:aa:9e:ef:c1:62:4d:44:04:76:
12:82:41:ec:c0:7f:4d:79:b6:6f:c1:da:af:18:0a:
3c:d9:27:6c:d2:e5:4e:9c:30:ab:53:12:4d:3a:aa:
63:98:a7:66:35:bf:64:8c:53:38:b8:d9:63:e8:b0:
04:90:af:c2:b9:a4:6a:b9:38:c8:6b:e0:2d:4b:ce:
4a:67:c1:c2:79:0a:68:4c:07:2e:9b:e9:ae:c7:19:
37:1f:fb:e7:d0:02:a1:a9:99:a5:6b:75:ee:93:74:
03:65:84:75:31:62:d0:b5:37:ea:69:44:b3:8c:d1:
22:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:EE:2C:1B:18:52:76:8C:61:6C:7F:A9:3A:9A:F7:E8:D2:95:DA:22
X509v3 Authority Key Identifier:
keyid:68:E0:78:B5:18:1B:E5:FB:E9:14:B4:12:A4:12:09:6B:C8:D7:15:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:22:2d:eb:7c:cd:34:3e:3c:55:ed:ef:90:55:7b:22:84:ff:
ac:0e:75:30:39:04:14:49:54:ac:b4:7c:00:ba:cc:2f:27:da:
fd:3d:0d:68:33:90:b8:a4:2f:29:53:3b:f7:46:e4:59:ae:ae:
d0:ab:ca:1c:b9:e1:9b:e5:0c:92:44:57:22:40:5d:2b:64:c9:
bb:e9:38:ea:bc:60:6b:8d:6b:36:93:47:58:6c:ba:b1:fc:bb:
9e:7a:8e:0a:ed:d1:b2:e9:23:f0:24:d1:eb:f7:2d:74:36:bc:
b9:4d:9f:7a:92:9b:00:35:7d:d6:3e:08:a3:55:c1:bd:b7:b5:
a2:a5:e5:fe:4a:78:e8:6b:44:82:33:c6:50:64:8e:8a:cd:a4:
06:d3:64:0b:ef:94:87:6f:1c:c2:40:16:66:70:1c:e7:88:c0:
3d:34:cd:1c:65:53:d1:69:3c:1f:02:64:b9:fc:d4:77:5a:e7:
18:2e:dc:b1:37:56:cf:2f:57:85:a3:df:3b:ec:ba:56:60:00:
aa:cf:ba:5b:5f:c4:c6:2c:8c:dc:d7:1b:d1:7c:da:db:c0:9d:
8e:66:30:fd:82:fb:f9:f8:73:18:3e:c7:3f:95:d2:82:12:ec:
df:0c:f0:cc:d6:4a:17:43:35:b4:82:2a:71:e3:d6:b3:21:39:
16:0e:3b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 30 18:48:44 2025 by rpki-client