Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
File: a3sSBFsa8JrPlmLuNbos1-HIW60.mft (raw, json)
Hash identifier: CIr3YYRvJGpUlrSuwoCBHK52MJIwEmAoMDf2nXZRWi8=
Subject key identifier: D2:AD:45:AB:72:ED:17:85:A8:FF:D2:B9:89:27:63:0C:5B:26:38:E5
Authority key identifier: 6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD
Certificate issuer: /CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad
Certificate serial: 019932A43651E30931A5949CF5C28177A8BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
Manifest number: 0625
Signing time: Wed 10 Sep 2025 08:00:46 +0000
Manifest this update: Wed 10 Sep 2025 08:00:46 +0000
Manifest next update: Thu 11 Sep 2025 08:00:46 +0000
Files and hashes: 1: 6rvpyTq3GpToeI0SORQBn8auSqk.roa (hash: It3me0g3R8Ie8D4qrGq2UTC1Pz9Blt9bU50UXq7GwOE=)
2: a3sSBFsa8JrPlmLuNbos1-HIW60.crl (hash: NgqkwHu7h5HIdY3IwsLO40R0FNKcwfGar8hQrCZUDvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 08:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:a4:36:51:e3:09:31:a5:94:9c:f5:c2:81:77:a8:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad
Validity
Not Before: Sep 10 08:00:46 2025 GMT
Not After : Sep 11 08:00:46 2025 GMT
Subject: CN=d2ad45ab72ed1785a8ffd2b98927630c5b2638e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0d:22:14:4e:0b:5e:df:a4:d6:23:dd:c2:c3:
a1:e0:db:8a:4a:2f:b2:9d:34:c7:9c:c5:4e:c7:88:
94:fb:ff:e8:78:ee:99:51:e9:60:e1:9b:9d:bf:38:
c2:0f:16:5a:9c:fe:f8:c6:50:99:71:66:01:f2:33:
6a:ac:53:e7:26:fd:71:d5:ca:31:03:e8:9d:01:21:
b5:8b:f6:ff:ab:43:e0:d0:0a:08:37:2e:2c:af:54:
4c:2c:6d:3b:68:fe:26:85:7e:74:46:e7:bf:d5:a9:
bf:d3:93:0e:1e:68:15:07:30:63:5e:c5:0e:38:4f:
f7:52:a8:0e:8e:ac:68:cf:b7:e7:90:fa:56:99:2c:
ee:3f:9a:34:16:af:3d:35:e7:b4:d4:fc:23:1b:e4:
2f:e8:70:58:db:fa:10:95:17:26:96:8c:ca:8e:6f:
ec:3a:f3:eb:b7:f9:71:9b:85:e0:57:b4:a2:f0:ec:
d7:1b:a3:07:bb:02:ef:33:d2:b3:ae:53:34:f0:35:
ec:12:21:52:b1:8b:ee:11:a3:0e:71:66:2c:7f:15:
2c:9b:93:49:71:9c:d3:38:a7:ff:56:c7:15:25:9d:
62:c2:b0:84:3e:7d:4a:45:54:92:da:e0:40:59:1f:
88:7e:97:d5:55:39:12:0d:c9:b9:7f:32:fb:08:71:
fe:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:AD:45:AB:72:ED:17:85:A8:FF:D2:B9:89:27:63:0C:5B:26:38:E5
X509v3 Authority Key Identifier:
keyid:6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:2e:9f:b1:67:29:1a:23:40:ba:a9:1f:26:89:29:e3:0c:38:
61:3c:b0:25:71:eb:64:62:0e:c5:56:79:c7:52:78:df:e3:1d:
5e:6f:1f:01:48:cf:f9:c3:05:92:ab:ed:3a:f0:fc:fe:4d:59:
c5:96:88:0b:d2:03:62:8b:61:1d:40:f3:40:52:bd:2c:a2:9c:
0d:11:27:aa:0b:5c:eb:cd:d7:bf:be:98:2d:8e:09:b8:ea:09:
52:4f:7e:d7:34:5c:46:82:0e:9f:5a:ab:c3:f6:08:5d:17:e3:
3e:24:ea:29:72:e3:d6:da:ec:06:00:3d:f4:88:a4:ba:ff:56:
88:f6:07:e1:24:2b:39:09:78:b2:8d:19:37:d3:8c:04:97:05:
56:35:a4:f0:ef:f2:19:dd:4d:5d:21:49:2f:90:c8:11:8f:e9:
1e:29:46:4d:63:e5:a0:c7:e3:95:84:3d:b1:6d:27:ca:8e:8f:
77:33:db:e8:ca:69:c9:42:e8:1e:e8:ca:ad:2b:3b:28:4d:83:
b2:ef:8d:74:52:e6:b5:b7:41:76:d3:3c:00:37:f7:bd:5f:e9:
de:73:a8:58:09:69:da:65:7f:c1:ab:67:25:c6:94:89:87:4d:
c1:ce:2e:17:3b:7c:7c:07:10:73:78:be:32:6f:81:95:96:a0:
78:1f:98:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 16:08:14 2025 by rpki-client