Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
File: aYLwUTKpmJUH6_bumJUYdTuizbU.mft (raw, json)
Hash identifier: vzJ83+CqAuSJGK2IBFjx2rf+LQZRyzhU7MQfvvBnrDY=
Subject key identifier: 97:8F:5B:75:07:E5:40:82:D0:B7:99:B0:02:39:7A:15:7E:07:95:FB
Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Certificate serial: 0198D54DF519763A0355B7443EBC378E37F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
Manifest number: 0AFB
Signing time: Sat 23 Aug 2025 05:01:52 +0000
Manifest this update: Sat 23 Aug 2025 05:01:52 +0000
Manifest next update: Sun 24 Aug 2025 05:01:52 +0000
Files and hashes: 1: aYLwUTKpmJUH6_bumJUYdTuizbU.crl (hash: D9YKjeT7tx7uU8LLB7bbPZgFOI0vYWNkX/caCjLD4es=)
2: fAKnpTzt0oxsrzvaA1bygJJ8CWQ.roa (hash: cdf+GHG9jpY7S3hS2aX03Crb7b2Au3gPgbB6NvaxmuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:f5:19:76:3a:03:55:b7:44:3e:bc:37:8e:37:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Validity
Not Before: Aug 23 05:01:52 2025 GMT
Not After : Aug 24 05:01:52 2025 GMT
Subject: CN=978f5b7507e54082d0b799b002397a157e0795fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f9:2b:eb:d1:b4:08:6d:9c:8b:01:98:aa:c0:
07:ce:80:c1:58:6d:e6:b7:e3:3b:9a:0c:17:09:a0:
80:55:d6:06:37:6e:43:a4:8b:74:b5:24:00:71:15:
35:17:fe:7f:d0:49:b6:4b:50:08:78:d1:3b:27:c8:
c6:90:c8:76:c6:72:4f:77:70:ac:c9:d5:e8:da:23:
52:86:c9:61:ad:c5:54:1b:31:79:cc:d0:d0:3d:4b:
ff:a7:c0:b2:bd:80:61:11:78:6f:c7:35:05:56:cb:
18:43:c5:6d:5a:85:74:93:58:65:89:bf:78:04:0f:
af:89:35:df:03:c6:67:9f:ad:31:ba:88:cb:ca:49:
d6:79:35:61:26:4c:04:b6:40:ba:c6:5c:26:28:97:
98:ab:45:b9:a9:b5:d1:82:01:28:77:c9:37:ad:2c:
9d:54:05:12:11:3f:de:bf:a0:6f:b0:c2:3c:5a:bd:
6c:8a:e8:c3:c2:86:13:e9:82:23:ec:21:09:71:89:
6d:68:33:2b:5c:6c:bb:0c:27:c2:ef:99:5c:84:03:
07:da:40:17:18:83:6f:ee:fc:da:13:ae:b3:c6:32:
b6:05:90:6d:aa:0b:e1:4f:8a:f8:aa:54:6e:fe:2e:
41:8e:00:59:f1:fd:1d:fe:f3:91:c2:a2:87:48:2d:
42:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:8F:5B:75:07:E5:40:82:D0:B7:99:B0:02:39:7A:15:7E:07:95:FB
X509v3 Authority Key Identifier:
keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:56:e6:f3:5f:5e:76:b3:94:b4:50:fb:99:4c:dd:04:a9:76:
01:d1:8a:b6:0e:2f:0b:db:b6:9f:1d:63:23:3a:0f:7b:b6:35:
fe:ab:5f:fe:0c:a9:78:e9:2f:d1:87:73:55:8c:be:e7:d6:7b:
99:43:99:6b:21:94:47:9c:b0:d5:71:a2:ca:11:46:df:41:8a:
78:11:1c:a0:6b:7b:a1:51:63:4c:5c:c6:56:fd:32:4e:fc:ed:
9a:d3:ac:a9:67:fe:2e:f6:fa:55:1c:23:6b:cd:a4:8b:ae:06:
28:aa:c0:5e:df:8f:52:ca:80:70:97:20:62:76:c8:5f:22:44:
ab:c6:47:b2:28:b7:d5:b2:35:61:65:6b:0d:3a:29:5a:cc:f1:
3d:5a:00:44:da:40:94:0e:fe:da:38:23:a5:2f:3c:0d:42:dc:
b9:85:0a:cd:e8:4a:d8:51:25:b8:66:ec:ef:d1:fd:e5:68:e4:
19:c5:b8:6e:67:4c:0b:b9:26:c6:19:2f:e7:c5:4f:15:59:41:
a2:52:13:82:03:d1:0c:79:27:40:ae:1e:57:7a:87:24:40:fc:
ea:d6:6a:22:1d:28:04:4a:ea:c1:71:d4:a1:ba:9b:4e:f7:a9:
55:7a:09:ab:81:f5:b6:9a:e2:d7:fc:5b:0a:17:87:c5:ac:32:
36:31:50:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:50 2025 by rpki-client