Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json)
Hash identifier: mIjz+8iThlh4H/bR+99At0notD+B/FmVuy+UO7JIa/I=
Subject key identifier: EF:A8:3E:E2:47:5F:87:62:9D:83:0A:EF:E0:0D:23:06:5F:F5:5A:CE
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 019922FAB61A0E319837D223CDF89CDBCF4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 07:01:19 +0000
Manifest this update: Sun 07 Sep 2025 07:01:19 +0000
Manifest next update: Mon 08 Sep 2025 07:01:19 +0000
Files and hashes: 1: G3jkppDUZ7UShIbg3wj67wwITjQ.roa (hash: IM9aMDCOjn2pDhh5r2plZvteAbzhdwZ0L/lTf4RJayk=)
2: Tz1CIM1JoghruWTN6nGpazj8zTs.roa (hash: VV/wpFoAA0PEYjeaECSEYgoe19Q1uDYWZTbwDnhLY+0=)
3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: I90lsmtIYvot9QrwIPd5zuLVyOutJrFXjqaCVoGwB1U=)
4: qOyspdHf0vEJQuyvIz0XkgRHk_0.roa (hash: yR7LTFxNYmFcq/nxWYOH7mZupl2rRRW8SrPwUWcJB0k=)
5: uiGdfZv36ngdlEPtH0Dctu5_0kI.roa (hash: kwlBzu/ziaLKG7neS7FV84L3FCZ7YdUCR1fgHvPBMoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:b6:1a:0e:31:98:37:d2:23:cd:f8:9c:db:cf:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: Sep 7 07:01:19 2025 GMT
Not After : Sep 8 07:01:19 2025 GMT
Subject: CN=efa83ee2475f87629d830aefe00d23065ff55ace
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e7:af:3c:e7:a4:b6:1e:73:31:0d:1f:bc:ca:
e9:6d:14:3a:ee:46:7d:a8:0d:8b:2f:be:f5:a2:eb:
34:f2:7f:8b:a5:c5:bc:e8:cb:ae:ea:db:f3:3f:c7:
1b:1e:d0:c0:4d:0e:26:41:5d:dd:11:a3:23:50:48:
df:9d:79:d8:94:6f:55:5d:5a:72:df:19:39:1d:1d:
6a:d1:78:81:ec:52:26:ef:a8:a0:98:b2:05:23:b0:
23:25:03:e7:71:1a:3e:27:41:d3:93:e4:b4:d3:ba:
de:de:7a:83:6b:c8:83:3c:58:ab:54:75:2f:60:3d:
fd:82:9b:f1:0a:db:4d:2e:e4:06:90:15:0e:f6:5e:
56:44:38:b8:cf:3c:63:97:7a:a3:d6:61:5d:60:3f:
50:76:b5:91:4a:e7:71:f1:ba:0b:e0:15:18:ba:bc:
ae:49:30:ad:8b:e0:46:a8:6c:06:23:24:a0:ad:37:
4e:57:a4:1b:99:10:12:7a:70:12:46:a9:31:91:2d:
51:f8:9f:26:5d:72:b1:c7:9b:61:e8:d6:5f:62:81:
8a:73:f3:7e:ab:5b:ec:44:39:4d:8a:41:21:48:7e:
1e:b2:12:96:59:e6:48:cc:76:1b:8b:f0:76:41:06:
a9:88:74:01:57:ef:54:7c:2d:32:c5:d5:ed:77:30:
68:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A8:3E:E2:47:5F:87:62:9D:83:0A:EF:E0:0D:23:06:5F:F5:5A:CE
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:35:c3:c4:3d:ee:8b:41:3a:44:b8:96:ff:20:35:58:04:9e:
e1:ff:7c:be:5d:d8:db:15:89:f4:25:98:0c:4c:1e:b6:6c:dc:
8f:27:f4:ac:20:8c:b7:31:6b:fc:4f:43:63:08:97:e9:46:62:
ba:cd:32:13:83:87:6f:19:62:84:b0:08:15:b2:15:b0:ed:3d:
5a:e3:82:b7:dc:14:98:aa:ad:52:ac:85:11:91:f7:c1:89:54:
be:df:3a:72:79:60:49:fa:4d:9d:58:b2:f8:6a:25:c5:77:34:
b5:1c:86:46:03:72:16:fd:e9:e8:fc:58:de:b4:3f:c0:e7:ac:
8a:0e:d9:fc:a3:45:f8:62:e3:e0:69:d7:0d:a1:12:de:7d:1d:
a2:10:08:05:c6:75:cc:bf:e2:ad:af:a8:e8:29:f4:60:0e:1e:
b5:f1:ba:6c:8e:7c:7a:9e:33:fb:9b:65:92:cb:1c:05:75:43:
a0:20:f9:d0:64:a0:f2:14:4b:96:0b:8d:9e:0e:ae:d1:db:c0:
cc:f2:d5:e0:46:bf:2c:fc:0c:d2:1a:fd:32:57:5a:d6:d9:f3:
62:f8:b5:b2:a9:c3:d6:a9:7e:27:94:d3:41:76:e7:dd:fb:0a:
fc:b0:4c:ef:95:c6:5e:8e:ff:31:7b:2b:b8:39:4c:18:9d:b3:
dc:7f:8e:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:28:30 2025 by rpki-client