Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
File: aNLCXQU0pAJ8aVViqM5PABzVOW8.mft (raw, json)
Hash identifier: K4HXMPvfNOkNOIMpJm/asYv/QFnS2320foFRx3dudWY=
Subject key identifier: 02:40:25:07:CA:88:46:70:BC:EB:2F:C8:A9:52:AF:C8:A6:A5:9F:1F
Authority key identifier: 68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
Certificate issuer: /CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Certificate serial: 0198D5F18F0B14974C348CD60DDA23FE5C48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
Manifest number: 129D
Signing time: Sat 23 Aug 2025 08:00:34 +0000
Manifest this update: Sat 23 Aug 2025 08:00:34 +0000
Manifest next update: Sun 24 Aug 2025 08:00:34 +0000
Files and hashes: 1: SALrx8y5x39WJ8efwGiimpmg788.roa (hash: CtpmQiaYAVz0sehGOLMPmKtW82021GvqOFqhQ5ojIPI=)
2: aNLCXQU0pAJ8aVViqM5PABzVOW8.crl (hash: WZyjqMVbiGogLvvqBBVKvK7RS85XzfL/jvkzRr/6UHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:8f:0b:14:97:4c:34:8c:d6:0d:da:23:fe:5c:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Validity
Not Before: Aug 23 08:00:34 2025 GMT
Not After : Aug 24 08:00:34 2025 GMT
Subject: CN=02402507ca884670bceb2fc8a952afc8a6a59f1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ee:85:e4:b1:d1:17:5e:d1:12:5f:65:c4:d8:
9f:9d:c9:0b:09:0e:85:a7:2e:6c:85:ba:d8:4d:a4:
2e:ac:3f:b9:9b:9a:e6:c4:58:e9:87:86:7b:92:bb:
04:8d:b0:2b:05:f1:25:f6:c5:c0:ac:0a:f2:8c:e6:
b0:97:d1:b4:ac:6b:7a:8e:71:d3:af:da:21:73:f4:
ed:1a:e7:c0:64:dd:10:34:55:55:44:36:d3:42:6d:
07:25:7b:26:58:b7:99:af:56:6a:e5:08:be:b5:54:
93:ed:27:56:de:28:d9:ea:bb:47:4a:fe:38:5d:f9:
ef:97:c0:c4:4a:b5:6f:7c:73:d9:42:00:50:9f:90:
00:6e:36:af:60:64:ec:fb:7e:99:6d:2d:82:32:2f:
ce:81:2b:66:17:7d:ab:6c:df:52:eb:52:ec:d9:f0:
ff:07:5f:a2:86:fb:b5:c1:bf:52:ed:07:d7:e1:5f:
15:93:8a:ec:a2:81:ed:a9:4f:69:05:cb:66:43:25:
f8:f8:6a:20:1d:26:bf:12:d8:75:ba:9f:45:cb:a3:
a9:3b:f6:19:c7:76:db:08:b2:cf:f1:96:29:d7:34:
72:a4:ce:eb:0d:28:97:d1:14:1d:15:48:5d:81:c9:
45:01:f4:c4:01:ba:6b:1c:33:81:47:bd:d4:d5:17:
99:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:40:25:07:CA:88:46:70:BC:EB:2F:C8:A9:52:AF:C8:A6:A5:9F:1F
X509v3 Authority Key Identifier:
keyid:68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:30:07:fe:ae:a0:41:9e:d5:33:ff:14:7f:05:b5:65:24:b5:
48:dc:d4:6a:f6:65:1b:37:9f:74:19:b9:7d:fa:53:65:a2:6f:
2c:d0:b5:11:6f:5f:9e:f3:dc:ce:34:6a:61:bf:53:9f:08:5b:
a7:91:fc:e2:0a:32:2f:81:59:e0:6b:d1:7e:5e:81:3f:22:78:
4e:79:14:26:db:1d:99:19:bd:a5:d2:09:ed:89:74:ee:b5:69:
bc:04:85:b8:ae:e0:8f:3c:dc:4f:64:23:9a:be:22:c0:08:68:
b0:49:5b:c3:6a:d2:64:66:97:29:01:65:6a:9e:ae:02:f8:f0:
8b:28:d6:27:6d:72:2e:51:28:4b:7e:b8:e2:5e:78:bd:17:8e:
10:ff:c0:ff:b0:67:86:f8:85:37:1f:87:77:43:1b:c9:55:41:
d7:55:bd:c2:1a:a6:b2:eb:52:92:04:d9:49:a3:dd:26:f5:b3:
f0:30:7b:17:0c:0b:42:bf:8a:df:86:fb:b2:04:52:14:49:d1:
6d:86:5a:31:8f:a6:49:84:84:3e:b4:ba:67:43:7a:6c:a3:14:
03:61:ed:2a:f5:0b:45:00:1e:31:01:90:99:d4:2d:ce:b1:98:
8a:3d:54:18:5b:6e:4d:a4:80:ad:2e:d6:42:a1:c1:e2:42:1e:
53:85:eb:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:32:52 2025 by rpki-client