Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
File: aYLwUTKpmJUH6_bumJUYdTuizbU.mft (raw, json)
Hash identifier: UDKTj7pSJA1RuXe3Pr29QmyWKswAhigSDYvkDK4TvMw=
Subject key identifier: 85:74:25:8A:CB:0B:E8:03:54:F0:5B:DF:A1:59:2B:F9:AB:60:27:48
Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Certificate serial: 019A00A2DCB55D4AF0DA758CCAE5827799AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
Manifest number: 0B96
Signing time: Mon 20 Oct 2025 08:01:04 +0000
Manifest this update: Mon 20 Oct 2025 08:01:04 +0000
Manifest next update: Tue 21 Oct 2025 08:01:04 +0000
Files and hashes: 1: aYLwUTKpmJUH6_bumJUYdTuizbU.crl (hash: MJVn1RzT7Gz6jfbnsLZybyBryyLScPbhz9SE7p6D2Bg=)
2: fAKnpTzt0oxsrzvaA1bygJJ8CWQ.roa (hash: cdf+GHG9jpY7S3hS2aX03Crb7b2Au3gPgbB6NvaxmuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 08:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:a2:dc:b5:5d:4a:f0:da:75:8c:ca:e5:82:77:99:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Validity
Not Before: Oct 20 08:01:04 2025 GMT
Not After : Oct 21 08:01:04 2025 GMT
Subject: CN=8574258acb0be80354f05bdfa1592bf9ab602748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:df:54:78:77:e2:1b:c4:10:73:c0:df:c2:6b:
b2:d7:17:3e:f0:35:5a:89:0c:ff:07:d6:4a:40:09:
4c:e5:e1:46:cc:7f:2f:15:3a:e7:15:40:31:c9:09:
2a:46:b2:de:50:9d:87:af:85:4a:14:1f:04:8c:a4:
5a:0c:be:be:b3:4a:e5:65:ae:d5:a0:74:fa:f2:cc:
2a:d7:35:c3:25:d5:01:e1:3e:57:72:32:f7:c7:5c:
e0:b2:32:f2:5a:21:2b:00:d8:5e:07:31:c9:0b:a3:
b0:79:61:c6:8e:9a:90:92:18:6f:1a:61:ff:46:a9:
f0:ea:39:3a:e0:a9:3e:97:a9:5d:a7:a4:67:93:f9:
0d:d5:41:2c:b0:98:4a:79:aa:24:0d:64:9f:29:69:
ca:14:b1:0c:e7:03:a8:3a:23:62:6a:e4:ff:bc:81:
3e:ef:c6:d3:1a:7e:19:a4:80:75:f2:4b:61:78:b8:
04:2e:10:1a:a7:72:cc:c5:4a:0a:63:6d:e1:57:c7:
2f:4b:80:f1:5b:fe:35:f9:5b:39:48:75:4e:9a:19:
32:95:68:d8:80:1e:11:30:91:0a:e3:11:33:54:ad:
7e:79:99:d0:87:29:d7:15:8e:5a:09:3a:d9:e3:53:
9e:52:61:cf:90:02:8f:a8:32:2a:9f:da:f4:84:16:
53:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:74:25:8A:CB:0B:E8:03:54:F0:5B:DF:A1:59:2B:F9:AB:60:27:48
X509v3 Authority Key Identifier:
keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:30:dd:f0:d2:db:20:fd:a1:65:10:a2:02:62:5f:c8:8a:28:
52:fe:6e:9d:d3:9b:ea:6f:57:80:95:3f:91:d1:8b:db:43:fa:
1a:f7:4f:20:60:8e:3e:a1:3d:95:fa:d6:d4:90:af:9c:05:d9:
b6:c2:ae:9c:27:8a:07:c1:d0:e7:83:f0:fd:89:12:ec:6e:b0:
34:25:94:7f:ee:2a:67:e3:53:23:24:4d:ca:c3:c5:a2:b3:b1:
97:32:21:45:56:54:bd:23:e4:d2:41:2e:fe:2d:cf:1b:df:76:
37:d6:4a:bc:48:44:2a:86:e2:2f:43:1c:ae:9b:7a:fa:ec:42:
a1:e0:b5:72:43:32:66:46:f0:87:42:78:c9:14:43:fb:72:a5:
33:0c:ef:43:d6:71:f0:db:cd:e9:f9:3e:7e:3d:42:f9:8e:b3:
56:46:21:aa:7e:19:9c:b4:76:ff:40:5c:6f:22:57:dd:c3:28:
e2:be:96:2f:52:48:70:34:e3:b5:1c:4f:fd:ee:28:1f:1e:4a:
b4:37:75:6b:3f:2b:3e:34:0d:5c:50:8a:a5:c7:96:a2:96:eb:
26:a3:de:bf:92:97:30:de:4f:c0:fe:15:a4:2c:af:ab:40:da:
f1:eb:20:5f:ea:c6:a4:92:78:1d:20:f0:fa:f2:65:5f:51:30:
80:5e:e7:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:19:00 2025 by rpki-client