Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
File: aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft (raw, json)
Hash identifier: VjPAY17lveFTfejUQGeKFu14WhZgu17I50K8li4grnk=
Subject key identifier: AC:59:3C:60:E3:0C:5B:9E:5E:79:39:43:8C:BC:C6:B3:C5:18:B5:73
Authority key identifier: 69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
Certificate issuer: /CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Certificate serial: 0198D47283126D100BC3A123966EA8E8364F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
Manifest number: 0AD0
Signing time: Sat 23 Aug 2025 01:02:10 +0000
Manifest this update: Sat 23 Aug 2025 01:02:10 +0000
Manifest next update: Sun 24 Aug 2025 01:02:10 +0000
Files and hashes: 1: aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl (hash: XwaNs25I6LZcTiwBjNSoK6NuO2CTA9wYw2DTYoTA9r8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:83:12:6d:10:0b:c3:a1:23:96:6e:a8:e8:36:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Validity
Not Before: Aug 23 01:02:10 2025 GMT
Not After : Aug 24 01:02:10 2025 GMT
Subject: CN=ac593c60e30c5b9e5e7939438cbcc6b3c518b573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1d:cf:0f:ff:3f:55:07:4a:92:68:76:6d:19:
4a:ef:5a:f7:ed:06:e0:ba:cf:cd:71:25:b1:5d:14:
ab:66:f6:ac:79:2e:1b:95:f8:e9:11:71:35:37:74:
99:2c:17:df:36:6c:be:b7:2e:34:9b:ae:90:84:c3:
00:23:b1:29:25:eb:c9:c5:33:c2:ed:5e:c9:d0:f9:
dc:ce:80:e3:bb:f8:37:7e:bf:47:79:f6:14:22:de:
11:e4:8c:9b:f9:91:40:12:44:80:df:50:15:62:c0:
89:7a:73:8e:23:ae:b2:99:42:b4:5d:be:19:88:22:
da:1e:da:91:0d:d0:2b:94:36:15:84:81:a0:34:b9:
2b:b9:69:23:de:2c:dc:4a:56:82:5e:2e:f6:fc:ee:
5b:50:3b:ac:bf:02:fd:80:82:37:47:62:4a:b2:be:
ca:50:7c:4d:1e:2c:0d:ac:b0:d8:75:dd:0b:1c:d5:
ec:cd:61:a4:3c:f3:f6:7e:94:4a:db:d7:33:0c:7b:
fe:00:a5:18:78:fb:27:41:68:1a:75:cc:f3:0a:e5:
7a:af:1b:c1:a9:b7:5b:4a:99:57:83:c7:be:33:49:
14:15:55:94:c5:b8:03:4b:26:b3:01:e2:43:c1:72:
ab:ba:64:77:d7:1a:c9:24:93:17:20:b5:3b:98:40:
63:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:59:3C:60:E3:0C:5B:9E:5E:79:39:43:8C:BC:C6:B3:C5:18:B5:73
X509v3 Authority Key Identifier:
keyid:69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:0f:a1:58:73:8f:10:44:5e:1d:aa:a2:84:d0:9f:04:0b:84:
ae:ba:c9:b0:3d:a3:58:eb:b1:e1:6b:08:c9:35:20:f0:ec:b3:
2b:c2:b1:25:98:94:59:58:d9:89:9e:94:9a:00:1b:ac:07:de:
b4:a5:3b:dd:eb:26:e1:d9:35:df:9f:a6:55:ef:10:60:d1:50:
1a:3b:c7:90:0b:bc:d9:c2:bf:00:16:d4:f0:a8:28:c4:30:85:
94:c5:f0:0c:47:5b:23:a6:50:a1:8c:6b:ea:89:d1:0c:2c:17:
1c:b0:44:fc:da:16:4a:8c:b5:6c:c1:4a:c0:08:7c:ac:29:bb:
89:e8:3c:45:02:3a:d6:3d:84:ad:bf:b5:e5:3e:89:78:bc:93:
a5:38:8b:4b:e4:2c:23:35:da:1d:68:69:03:a3:ee:5e:1d:a7:
96:17:71:a0:38:7d:f4:e5:20:c9:82:c0:93:53:69:d7:f7:4d:
99:dd:9d:00:3b:63:b3:13:49:56:fc:de:67:74:2f:0f:c4:a7:
5d:13:2d:c1:34:eb:56:4a:39:f0:dd:e0:e7:08:a5:d2:4d:bc:
3f:3e:43:e7:23:39:93:dc:47:02:2b:a2:4d:3b:ee:1a:9c:d8:
05:47:2b:68:8f:69:b0:ad:ae:85:c5:bc:f0:7f:6e:d8:66:ff:
dd:66:af:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcoMSbRALw6Ejlm6o6DZPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ZTNhZDhiMDIyNDUyMWNkMGFlNzQ5MmM2OTRiYzJkNGVl
MWZkYjIwHhcNMjUwODIzMDEwMjEwWhcNMjUwODI0MDEwMjEwWjAzMTEwLwYDVQQD
EyhhYzU5M2M2MGUzMGM1YjllNWU3OTM5NDM4Y2JjYzZiM2M1MThiNTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuh3PD/8/VQdKkmh2bRlK71r37Qbg
us/NcSWxXRSrZvaseS4blfjpEXE1N3SZLBffNmy+ty40m66QhMMAI7EpJevJxTPC
7V7J0PnczoDju/g3fr9HefYUIt4R5Iyb+ZFAEkSA31AVYsCJenOOI66ymUK0Xb4Z
iCLaHtqRDdArlDYVhIGgNLkruWkj3izcSlaCXi72/O5bUDusvwL9gII3R2JKsr7K
UHxNHiwNrLDYdd0LHNXszWGkPPP2fpRK29czDHv+AKUYePsnQWgadczzCuV6rxvB
qbdbSplXg8e+M0kUFVWUxbgDSyazAeJDwXKrumR31xrJJJMXILU7mEBjlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKxZPGDjDFueXnk5Q4y8xrPFGLVzMB8GA1UdIwQY
MBaAFGnjrYsCJFIc0K50ksaUvC1O4f2yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWVPdGl3SWtVaHpRcm5TU3hwUzhMVTdoX2JJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iZDhlYzEtMTdhNC00NGRmLTg4M2Qt
ZTk3ZDIyNmZiZWVhLzEvYWVPdGl3SWtVaHpRcm5TU3hwUzhMVTdoX2JJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9iZDhlYzEtMTdhNC00NGRmLTg4M2QtZTk3ZDIyNmZiZWVh
LzEvYWVPdGl3SWtVaHpRcm5TU3hwUzhMVTdoX2JJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVg+hWHOP
EEReHaqihNCfBAuErrrJsD2jWOux4WsIyTUg8OyzK8KxJZiUWVjZiZ6UmgAbrAfe
tKU73esm4dk135+mVe8QYNFQGjvHkAu82cK/ABbU8KgoxDCFlMXwDEdbI6ZQoYxr
6onRDCwXHLBE/NoWSoy1bMFKwAh8rCm7ieg8RQI61j2Erb+15T6JeLyTpTiLS+Qs
IzXaHWhpA6PuXh2nlhdxoDh99OUgyYLAk1Np1/dNmd2dADtjsxNJVvzeZ3QvD8Sn
XRMtwTTrVko58N3g5wil0k28Pz5D5yM5k9xHAiuiTTvuGpzYBUcraI9psK2uhcW8
8H9u2Gb/3WavnQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:32 2025 by rpki-client