Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
File: a4QIvvwC39bmGQhUh4WgCKS3TWc.mft (raw, json)
Hash identifier: vb9rdjWbgq2wT8AzKCHxs4bHXEKjF2CO5UA6dUt9k80=
Subject key identifier: 41:B3:BB:59:E9:ED:BD:D3:EF:BD:45:65:B1:67:F2:6F:69:A9:9A:4A
Authority key identifier: 6B:84:08:BE:FC:02:DF:D6:E6:19:08:54:87:85:A0:08:A4:B7:4D:67
Certificate issuer: /CN=6b8408befc02dfd6e61908548785a008a4b74d67
Certificate serial: 01986137359A142BEC02E43A19E56C156708
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
Manifest number: 0A60
Signing time: Thu 31 Jul 2025 16:01:04 +0000
Manifest this update: Thu 31 Jul 2025 16:01:04 +0000
Manifest next update: Fri 01 Aug 2025 16:01:04 +0000
Files and hashes: 1: XG_GoCIjsfzx85ZAfU48cGk_g2A.roa (hash: O4zvtPOigYM3HdyO+PNnJwZMHPFxCAa0+qt7cBa9RoM=)
2: a4QIvvwC39bmGQhUh4WgCKS3TWc.crl (hash: dIrkx0hc47frdMvkH1FX7w4hZcjkhMJMCFCP/KG05o4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 Aug 2025 16:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:61:37:35:9a:14:2b:ec:02:e4:3a:19:e5:6c:15:67:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b8408befc02dfd6e61908548785a008a4b74d67
Validity
Not Before: Jul 31 16:01:04 2025 GMT
Not After : Aug 1 16:01:04 2025 GMT
Subject: CN=41b3bb59e9edbdd3efbd4565b167f26f69a99a4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:67:ac:a6:77:a7:dc:16:d0:82:7b:f8:46:99:
bf:a9:4f:7e:55:20:54:7e:cd:33:62:9f:56:67:87:
0d:d2:b1:a1:38:40:64:f1:16:e3:64:00:ca:04:35:
21:9f:17:87:24:75:41:f8:47:be:7a:ce:85:17:33:
93:94:1a:12:1b:fb:af:8c:a8:bd:59:83:80:f3:02:
68:a3:dc:ad:38:1e:14:ec:37:fc:42:af:d5:ee:1f:
fe:10:55:ed:41:63:f5:a8:d1:6b:54:70:9c:bf:ee:
aa:b2:7f:29:eb:59:89:49:98:f4:41:e4:54:c8:bd:
18:14:26:ca:db:47:d6:6d:3e:2e:0c:c9:a7:ab:7c:
ba:46:b6:7f:51:85:13:99:f3:60:0f:e2:be:d3:ea:
61:56:95:b1:92:a5:96:5f:cb:53:20:cc:d8:99:11:
1b:fc:de:0f:ef:41:18:67:99:74:44:33:a2:cf:1e:
4c:9f:1c:7b:91:27:a7:84:fa:2d:cb:2f:82:dc:29:
63:9b:0d:20:92:b4:98:67:1a:a1:60:3b:7a:97:95:
85:eb:3e:5e:94:7c:fe:a7:ea:b7:ca:e1:7c:65:ed:
7b:cb:b3:ff:f5:82:19:ed:7a:fd:f9:34:67:e8:97:
67:77:ca:69:c9:63:11:50:79:2c:59:7b:fe:8e:84:
1d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:B3:BB:59:E9:ED:BD:D3:EF:BD:45:65:B1:67:F2:6F:69:A9:9A:4A
X509v3 Authority Key Identifier:
keyid:6B:84:08:BE:FC:02:DF:D6:E6:19:08:54:87:85:A0:08:A4:B7:4D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:45:9c:d3:7c:f1:36:43:cb:6a:6c:b6:1e:df:fc:54:22:5b:
58:65:0f:d3:33:cf:70:32:6a:05:f3:e4:c8:e3:60:71:85:92:
91:43:c2:5a:b3:ef:7b:d9:e5:25:92:90:11:c7:1a:fb:d0:2d:
c7:5f:31:97:d8:0b:c6:3c:7e:c6:e0:bb:e3:01:2c:f5:03:9f:
ec:ea:45:03:2d:2e:7a:ec:36:7f:1e:ce:a4:2c:03:09:f5:c0:
5e:5d:11:d3:bd:4e:81:9a:9b:29:52:02:26:a3:88:a9:ae:e6:
70:fa:57:3f:e4:a1:a3:cf:0a:6b:59:15:c8:3c:16:54:b9:1e:
36:d4:47:6f:c6:4e:3e:b1:8f:ec:78:b7:ed:f3:66:33:1b:4b:
ff:4f:f9:2f:9a:08:a8:14:61:97:48:7f:c0:bb:71:22:8a:ce:
08:16:c2:37:67:98:64:d5:1b:dc:d5:c7:d2:62:61:a7:d4:55:
04:18:8a:bc:a4:de:88:f3:a4:13:f4:37:00:8c:98:3a:7b:fa:
c6:98:f6:00:1b:42:d6:3d:49:2d:ea:ff:23:78:83:c5:3b:9f:
99:02:05:4c:b8:41:ca:92:75:be:9d:6e:c2:d3:3b:5f:34:85:
c0:77:84:21:1b:9d:0b:34:1b:45:4d:4d:5a:46:19:db:71:e3:
d2:3c:11:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 20:32:44 2025 by rpki-client