Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
File: aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft (raw, json)
Hash identifier: I5svI3kWHR1Sjl2ds70RHI3+MIMfS4DU5MzBtq86C6c=
Subject key identifier: 40:FE:4C:2A:45:47:EA:A3:81:50:37:B1:48:BF:29:F3:8D:31:1B:16
Authority key identifier: 68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
Certificate issuer: /CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Certificate serial: 0199FBEBA6AD12E6403CABD0289CB5ABDCBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
Manifest number: 1675
Signing time: Sun 19 Oct 2025 10:02:28 +0000
Manifest this update: Sun 19 Oct 2025 10:02:28 +0000
Manifest next update: Mon 20 Oct 2025 10:02:28 +0000
Files and hashes: 1: aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl (hash: z+Y1imIHqVVmIhmDY7N7vFF0hyUrrvCPk/uN7R3P4Kg=)
2: c3cfCpPele1fDi8UyS3_TO9IOZU.roa (hash: x4G7KBYVMCONibc2Rol9WiF29BGQsdbC/SUMmPlKdpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:a6:ad:12:e6:40:3c:ab:d0:28:9c:b5:ab:dc:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Validity
Not Before: Oct 19 10:02:28 2025 GMT
Not After : Oct 20 10:02:28 2025 GMT
Subject: CN=40fe4c2a4547eaa3815037b148bf29f38d311b16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:0f:19:df:01:87:8d:50:be:28:af:64:0a:9c:
a6:2d:63:6d:cc:83:c2:76:8c:bc:12:3c:8e:4b:38:
df:8e:51:26:36:90:bf:97:47:17:aa:47:f4:79:93:
3e:da:5c:c6:4e:d5:b6:91:5f:e1:2d:8d:1e:d9:69:
ee:9a:14:13:eb:14:43:fb:c9:bb:c9:95:ed:d4:78:
2f:4c:2a:dd:17:67:0e:6a:e3:7e:45:fc:00:df:fd:
13:89:33:11:ee:32:f7:90:0d:0d:9f:84:bb:3a:de:
26:2b:e0:53:3e:e4:8e:11:79:1c:16:3b:fd:91:38:
63:95:a4:56:38:4a:22:13:a6:c4:ec:31:ab:9a:7d:
22:74:65:45:1d:b6:6b:f6:44:92:a2:ed:61:23:9a:
8a:4a:36:71:4b:de:c1:c5:fc:ff:73:93:c7:16:5d:
81:83:34:cb:40:83:66:74:87:c8:ff:77:53:54:3c:
ca:fc:7b:d9:61:8f:3c:ba:b0:fd:aa:fa:d5:fb:ab:
4c:e9:80:9a:9e:e9:e9:7b:3d:02:5c:a8:e4:93:31:
74:ee:6f:7e:01:c2:ec:22:f1:64:5e:5f:85:4f:02:
8e:98:bd:c1:90:3d:ad:7c:bf:37:27:f5:1a:68:09:
69:ac:30:31:44:52:64:d2:17:6b:9c:66:74:26:b1:
22:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:FE:4C:2A:45:47:EA:A3:81:50:37:B1:48:BF:29:F3:8D:31:1B:16
X509v3 Authority Key Identifier:
keyid:68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:53:33:82:f2:21:e7:8b:f6:31:06:7e:52:a2:5c:18:a1:c5:
50:15:3b:75:b7:83:8c:fd:88:25:18:35:1f:06:25:40:f6:6c:
35:d5:a9:5e:dc:3b:b1:c9:32:72:68:4c:40:f0:07:87:b9:39:
de:33:47:61:68:58:87:cc:e5:19:b4:dc:84:c3:ab:54:4e:75:
8f:6b:96:a1:2c:11:2f:e2:8b:c9:58:be:33:ed:be:72:40:d5:
07:99:09:92:82:de:b7:29:70:ed:e3:1c:6c:3d:be:33:b7:be:
3b:dc:7d:b2:34:b4:b1:c2:62:89:a8:08:79:a8:26:88:67:c6:
04:5f:ba:43:13:c5:48:45:04:fa:3b:ec:5c:5d:ca:93:2b:e6:
51:43:fa:51:5c:91:76:9d:f1:fa:d2:b3:65:58:33:5f:00:f5:
17:eb:22:1b:68:a2:0e:6f:64:df:bd:12:b4:d7:fa:ba:f3:76:
61:48:ae:d0:f1:c1:18:b9:87:1a:48:3c:f4:47:fb:17:5b:a3:
64:76:fa:42:46:a6:c9:ec:8b:39:36:6a:2d:a4:09:d7:37:8e:
4b:b6:30:6f:a0:c5:ca:22:1a:2e:95:74:88:18:53:c3:1d:0b:
d0:d2:54:08:b8:76:bb:b3:7b:3a:f8:74:85:f8:c4:ca:84:51:
61:b6:1e:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 19:57:22 2025 by rpki-client