Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
File: aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft (raw, json)
Hash identifier: Ow42Ftiq2SJHFB5JSQH+CT/vRgVuNs3oLo74jzC65gQ=
Subject key identifier: 19:02:1A:E9:9F:D9:FF:05:0A:1B:8A:0A:E6:EA:75:2D:AD:4E:9E:3E
Authority key identifier: 68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
Certificate issuer: /CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Certificate serial: 01995341F2FD56F429641131DB3E228AD619
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
Manifest number: 05F5
Signing time: Tue 16 Sep 2025 16:00:54 +0000
Manifest this update: Tue 16 Sep 2025 16:00:54 +0000
Manifest next update: Wed 17 Sep 2025 16:00:54 +0000
Files and hashes: 1: AJ5wMI6kFAAGgXfPHZAVtLCSnP8.roa (hash: O5F5OKdgmFhYvl6NemyAslo9muG5v3CdZb38avB1q8I=)
2: aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl (hash: BK12Aj/mvdtshP5VzbMp8LQ+W4cm9UjnJxehd6oBz8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Sep 2025 13:46:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:53:41:f2:fd:56:f4:29:64:11:31:db:3e:22:8a:d6:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Validity
Not Before: Sep 16 16:00:54 2025 GMT
Not After : Sep 17 16:00:54 2025 GMT
Subject: CN=19021ae99fd9ff050a1b8a0ae6ea752dad4e9e3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:60:9b:d6:c4:d6:bf:5f:d0:bd:6d:63:86:a6:
1a:86:6f:39:de:2b:9b:4c:c4:d5:31:8d:92:fe:44:
b9:73:0e:5d:ac:be:c4:1d:6f:3a:17:66:f5:aa:d5:
13:c2:e1:77:3f:d4:f4:06:10:21:37:c9:23:b2:91:
13:81:f8:2f:13:d3:e8:a3:51:de:7e:c2:76:99:b0:
b2:42:47:33:14:15:59:b3:52:3b:63:29:e5:82:ee:
ce:14:89:9f:37:0f:bc:26:4c:4f:2e:a9:89:8b:d5:
88:21:d8:a2:c5:9b:6e:e4:95:1a:87:a3:ad:32:08:
54:d5:7c:2c:40:cc:74:2c:b5:14:6c:9f:8f:13:47:
56:e7:50:f0:38:ea:8e:97:f1:52:70:4d:8b:62:25:
81:d4:ea:66:3d:82:75:e5:9d:49:7d:9e:69:a5:45:
2b:bc:88:dd:99:fd:3a:21:69:c9:4c:b6:27:5d:21:
4b:5f:b9:09:1a:c5:fa:bc:bd:fa:97:d7:f7:6f:0e:
b4:0e:a6:17:de:f8:21:c6:4c:91:9d:f3:ab:09:3b:
5e:1f:64:e6:c2:49:c7:74:b8:6a:d3:19:64:1a:42:
f7:41:f9:a6:c3:f7:59:a1:e0:29:68:3a:28:62:bf:
e3:08:2d:f1:dc:84:d9:65:1b:db:af:5f:a0:bc:50:
79:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:02:1A:E9:9F:D9:FF:05:0A:1B:8A:0A:E6:EA:75:2D:AD:4E:9E:3E
X509v3 Authority Key Identifier:
keyid:68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:fb:79:1e:d9:25:94:cb:88:93:a7:25:68:ff:9c:60:a4:c6:
33:a9:e4:e1:a1:70:b5:ad:3b:72:df:ad:e0:07:13:ad:e4:45:
7d:e8:1f:e2:ec:fb:4b:24:7f:14:04:a1:83:b4:cb:d3:4f:b7:
15:3a:a1:06:48:34:18:37:fa:ac:f1:b7:4f:5e:90:ce:e3:2b:
a8:e8:16:06:1f:09:bb:04:f2:3a:fb:31:81:95:36:f9:24:dc:
7e:59:cf:c1:8e:8f:1b:57:37:2d:14:a3:60:1e:a2:8d:83:73:
3f:c8:6a:6a:32:82:9b:79:d1:c9:75:38:80:d9:11:64:be:1c:
31:b7:c9:5a:e9:26:97:b5:ab:63:da:0a:3f:8b:a9:b9:ba:98:
fd:61:5e:a4:8a:7d:5c:a0:1e:58:89:91:03:9b:6b:5a:7b:ca:
47:89:d5:1e:0d:e0:ae:af:27:e5:84:c5:67:ab:db:61:e9:ed:
cf:3f:51:c4:d2:7f:9f:8d:32:4f:1f:56:85:a1:37:e5:ba:49:
8a:22:5a:0a:4d:43:19:ee:20:2c:e2:01:02:0e:7b:fd:11:e6:
0c:71:0c:4e:37:28:57:b3:6d:89:66:e4:bd:4c:3b:f5:ed:13:
7b:be:b1:58:3c:dc:8c:5c:36:24:85:2f:4e:3d:f0:71:10:c1:
02:b9:23:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 21:48:40 2025 by rpki-client