Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
File: aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft (raw, json)
Hash identifier: 7CfO2xH0M14xs5HxP5t15xCEHdBhkny+JUdX2AC0Nfo=
Subject key identifier: B5:E1:A1:4A:2C:48:5F:18:E8:02:30:07:55:C8:28:C2:F9:FC:7A:3F
Authority key identifier: 69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
Certificate issuer: /CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Certificate serial: 0199FFC8B7CB04A5C156D76876E00DA5FFA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
Manifest number: 0B6B
Signing time: Mon 20 Oct 2025 04:02:48 +0000
Manifest this update: Mon 20 Oct 2025 04:02:48 +0000
Manifest next update: Tue 21 Oct 2025 04:02:48 +0000
Files and hashes: 1: aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl (hash: vpTfRkZvBGhjkbg1mKcB0zlMKH1h6cz2oTS7HApQ2QI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:b7:cb:04:a5:c1:56:d7:68:76:e0:0d:a5:ff:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Validity
Not Before: Oct 20 04:02:48 2025 GMT
Not After : Oct 21 04:02:48 2025 GMT
Subject: CN=b5e1a14a2c485f18e802300755c828c2f9fc7a3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c3:11:76:94:3c:e6:34:66:78:05:bb:7b:cd:
78:3b:8b:c2:47:84:ab:b4:49:a5:41:f2:c6:50:ae:
9a:5e:fc:e3:52:6a:a2:fc:6f:07:09:3c:d4:ea:2c:
4a:ca:70:24:1d:5d:ac:e4:ca:f5:68:d5:ac:8a:9f:
e1:09:49:89:15:41:6f:66:57:ef:c5:52:52:8f:11:
32:ca:95:fe:86:48:9e:ed:40:19:a3:00:2e:87:5a:
d1:3c:37:b3:c6:ac:7d:de:70:41:10:22:0d:16:e2:
a8:f7:a0:bb:ee:db:15:a4:2b:77:94:65:59:c5:3a:
b4:1b:7d:93:ec:07:bf:d9:8f:49:85:e0:46:08:d3:
31:f9:3d:6c:f0:81:5d:0b:32:dc:33:85:85:3d:e7:
89:b3:36:5d:d2:50:a0:11:a0:6f:83:59:58:11:57:
bc:85:74:37:5d:a6:7a:1e:38:5f:19:e0:b6:74:66:
14:cf:4e:98:77:88:0a:33:7f:9f:4f:8d:45:2b:36:
e7:20:94:ae:8c:1a:60:01:14:35:11:f4:9f:86:ac:
f6:97:21:f8:83:40:85:6d:ef:15:da:48:f9:20:a1:
fe:68:9f:ec:57:88:69:a9:2f:01:22:a2:90:3d:8c:
c9:3e:88:35:fb:bd:80:09:52:17:01:61:25:44:8c:
be:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E1:A1:4A:2C:48:5F:18:E8:02:30:07:55:C8:28:C2:F9:FC:7A:3F
X509v3 Authority Key Identifier:
keyid:69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:4f:f8:8a:3a:ca:2b:c3:b0:b6:ca:6d:ed:d4:e5:4b:09:6a:
7f:93:22:b4:d0:e8:74:0c:b4:da:be:9d:5b:3e:de:57:e2:19:
60:a6:39:6a:e8:ba:b9:62:e7:14:90:2a:71:b7:5b:a5:ae:b8:
05:8a:ee:f2:7b:46:1f:02:d4:14:da:b9:ee:ee:f6:51:7e:3c:
d7:b9:15:8e:c9:7f:88:88:a0:0a:4b:8f:32:74:25:b9:03:a8:
ec:6a:05:37:8a:2f:6e:4d:07:b3:69:41:23:3c:4d:29:67:f0:
b6:82:77:dc:1b:34:32:53:b3:79:a5:d4:de:63:74:8e:76:56:
5e:03:79:c8:82:03:b9:e5:5a:e2:13:aa:0b:2e:e9:1c:dd:eb:
f8:d1:99:e7:4e:f6:6d:98:3a:e6:71:c6:79:26:ae:22:5a:b8:
14:70:58:3b:29:99:91:5c:ff:76:c5:3d:41:ef:a8:b5:ed:a7:
73:5c:90:aa:4d:a6:6c:55:41:0f:08:b5:6d:31:f8:7d:5e:6f:
f6:56:94:2c:aa:7c:97:6d:92:e0:b0:c0:65:0b:d1:a4:9b:8a:
19:3d:c1:e1:b0:4b:79:f7:5e:5b:2b:d2:45:fb:cf:61:05:11:
ab:59:b1:5d:d0:43:80:80:ee:bd:e1:29:d9:35:87:68:5d:b6:
b8:56:b5:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 07:31:10 2025 by rpki-client