Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json)
Hash identifier: U0CTEL2mCG6nj246HfHWZakMj3Q5/A4OPSRp5gInrr4=
Subject key identifier: 86:EE:F8:31:04:21:E0:60:06:06:45:FF:2F:02:EE:19:70:C2:2E:EE
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 01993191725D5E6ADC4FF420E10DF9CE0925
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
Manifest number: 1686
Signing time: Wed 10 Sep 2025 03:00:39 +0000
Manifest this update: Wed 10 Sep 2025 03:00:39 +0000
Manifest next update: Thu 11 Sep 2025 03:00:39 +0000
Files and hashes: 1: 6QBVEiLusjnuHnwecVMK9Kg-WII.roa (hash: OapSvDTUmzDRZu9Q3KlIrLgI0CjCfgxrem8xot5UiSo=)
2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: pO4KvirivTEHz+aeaMsyH+Q5wYP//8QwZtSrZV42in4=)
3: GiC40GdnPgHbIqIbDNeP-spJi-M.roa (hash: Xd4LHWf6P2V0nuixtM1f8JXOI9EnPVM3k32pXeFOXiw=)
4: JeT3PicL3j6wpeXRT3s8FrJpy3w.roa (hash: tjXOPJYxlFtc8BfVkznJC0Nu37PcV0Dt33rxJApZ9kY=)
5: L5lOWtMXwmLYho3Arxcpd76R5sw.roa (hash: XM0Za1PmkukhwAWipMkx42usukTFibdWlbabSAWWgH4=)
6: Lwic0o2gw3k82wpfSkPa-wUg5Aw.roa (hash: pZ1a8TMxYqDEEa657nYARi2g7u3tXGj01SXvh3eUl1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:91:72:5d:5e:6a:dc:4f:f4:20:e1:0d:f9:ce:09:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Sep 10 03:00:39 2025 GMT
Not After : Sep 11 03:00:39 2025 GMT
Subject: CN=86eef8310421e060060645ff2f02ee1970c22eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:26:01:ce:19:c3:6f:a5:d6:de:53:af:56:55:
5e:93:f6:8e:a3:d1:7f:e8:cb:69:5b:93:76:21:72:
34:0d:b2:e0:a5:23:f3:51:1e:e5:e9:d4:17:de:88:
d4:55:97:67:62:53:26:e7:8f:46:c8:42:36:18:90:
d8:e9:0f:e2:4c:a8:f3:59:f8:95:11:91:c3:11:5a:
61:a6:79:2c:da:36:76:1d:2c:0a:e8:ce:19:f4:6d:
36:59:5d:c3:25:2f:0d:15:3c:8c:b5:9d:a3:58:11:
72:75:c1:00:ec:53:f4:8d:3a:78:fb:ff:95:e0:4a:
bb:3c:61:ae:16:20:ea:1c:8c:41:d1:16:bc:69:d1:
3d:5f:01:5a:df:e1:f4:04:50:c2:8e:b9:66:bb:f8:
51:a7:65:f3:0a:ff:07:0b:0f:e4:b2:ef:74:70:d0:
c1:9f:20:60:17:d3:2f:8a:4d:97:24:e0:2f:d0:39:
be:e7:34:b5:41:1f:18:0c:82:d6:44:c6:33:c1:50:
fe:20:61:9f:bc:a6:24:99:a5:bd:6c:e7:7c:19:66:
b0:46:5a:7e:26:58:6c:13:9c:e1:34:99:9f:d9:3b:
81:2a:37:b1:3c:ea:1b:5b:57:26:39:e5:92:e6:74:
5f:4e:11:73:c7:ca:a4:6a:e1:2e:1f:f8:c4:11:50:
41:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EE:F8:31:04:21:E0:60:06:06:45:FF:2F:02:EE:19:70:C2:2E:EE
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:41:32:18:fc:5f:67:96:9e:bb:b1:8a:a9:e1:3d:a9:46:4f:
6d:97:2d:0e:27:56:6d:3d:52:1d:45:c7:5e:4d:4c:0b:ff:6d:
85:8e:9b:c3:a0:68:6c:15:4c:90:de:6a:43:54:2a:09:95:90:
c9:f8:c1:d4:fd:36:9a:b3:f7:f8:f6:5d:31:af:ce:76:25:f3:
0d:64:77:5f:45:95:b4:78:26:17:76:d6:47:9e:cd:8f:f1:f0:
cd:11:a4:69:b4:5b:51:fe:51:a5:3e:83:f1:79:dc:04:6d:f0:
8c:7e:b7:7d:50:0b:ab:95:9f:b5:74:cc:18:ae:97:aa:b2:ae:
23:87:05:1a:a1:59:f4:53:64:5e:69:a7:c8:57:34:49:9c:22:
ed:a3:fa:9c:22:5c:63:65:ab:97:5f:bd:2b:e4:dd:92:72:bc:
54:23:4d:34:55:31:ff:7b:27:7e:9d:36:e1:a7:88:0c:f1:f5:
38:5c:67:e4:37:21:69:ef:64:ed:8b:5c:d5:82:e3:dc:04:e2:
67:04:b8:26:a7:7d:7c:c3:05:cf:4e:61:92:58:67:5a:69:9b:
94:44:73:39:eb:c8:e6:aa:54:71:66:65:da:d5:fa:45:a4:f0:
7b:c0:f6:15:66:22:d2:2a:18:af:d2:35:b6:54:e2:d0:08:95:
9d:66:a8:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 04:27:31 2025 by rpki-client