Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.mft
File: aUSJSM9NjazkdxjA9yWe3usJPns.mft (raw, json)
Hash identifier: XrJV85WIjvKs6IbPbLZ9OhKwMAtwN2q2zUfasrtLNpA=
Subject key identifier: E1:CC:22:07:73:66:84:A1:25:82:49:03:86:18:DA:AD:9A:AA:FD:EA
Authority key identifier: 69:44:89:48:CF:4D:8D:AC:E4:77:18:C0:F7:25:9E:DE:EB:09:3E:7B
Certificate issuer: /CN=69448948cf4d8dace47718c0f7259edeeb093e7b
Certificate serial: 0199FB45D8EBB9F6EF685CE7768419749B85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aUSJSM9NjazkdxjA9yWe3usJPns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.mft
Manifest number: 16DF
Signing time: Sun 19 Oct 2025 07:01:22 +0000
Manifest this update: Sun 19 Oct 2025 07:01:22 +0000
Manifest next update: Mon 20 Oct 2025 07:01:22 +0000
Files and hashes: 1: aUSJSM9NjazkdxjA9yWe3usJPns.crl (hash: FXNtIyxfnjV5JWUUnQ0EtU6+BYYm0vLsfOoX9yBYFdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.mft
rsync://rpki.ripe.net/repository/DEFAULT/aUSJSM9NjazkdxjA9yWe3usJPns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:d8:eb:b9:f6:ef:68:5c:e7:76:84:19:74:9b:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69448948cf4d8dace47718c0f7259edeeb093e7b
Validity
Not Before: Oct 19 07:01:22 2025 GMT
Not After : Oct 20 07:01:22 2025 GMT
Subject: CN=e1cc2207736684a1258249038618daad9aaafdea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9b:d2:90:42:b7:79:b9:b5:9a:91:fe:bd:69:
91:7d:be:a0:f6:88:7d:bf:86:f2:ce:91:9a:db:52:
2e:b2:03:58:9d:1f:3f:99:2d:5d:23:f6:eb:2d:e0:
85:d6:e3:bb:9b:fa:16:56:2c:71:d9:8c:2d:0a:19:
37:3d:24:33:15:bb:61:5a:95:0c:e6:d9:ad:b6:c4:
8c:55:7c:93:4c:11:7d:55:db:a4:13:7e:8c:1a:c3:
e1:86:e3:25:55:c0:9d:9e:9e:f5:37:8e:87:44:61:
24:aa:fc:4e:be:14:aa:b2:42:d5:0c:a4:fe:d8:f4:
92:84:08:84:17:d1:5c:5f:88:81:e6:d2:ce:82:c2:
70:ee:99:87:82:e7:c4:bb:83:e1:57:a3:8b:c1:f8:
b6:ee:4d:3f:c0:a8:7e:4e:bf:41:8d:90:b3:38:6b:
1e:ed:d2:39:ab:cd:c9:b7:ca:b6:f0:a6:2d:bd:8a:
f9:02:db:3d:d7:73:c4:6b:1c:fd:28:6d:92:53:8e:
89:6e:dc:23:6a:4e:b5:e1:d9:34:5b:1e:74:31:33:
f7:99:d0:38:99:c1:46:15:e0:16:c1:86:6d:23:05:
1d:86:93:a0:c1:de:b5:a9:c5:e0:5f:00:8f:51:23:
cb:ce:50:23:4b:7a:49:59:b4:f9:6b:70:03:d5:dc:
65:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:CC:22:07:73:66:84:A1:25:82:49:03:86:18:DA:AD:9A:AA:FD:EA
X509v3 Authority Key Identifier:
keyid:69:44:89:48:CF:4D:8D:AC:E4:77:18:C0:F7:25:9E:DE:EB:09:3E:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aUSJSM9NjazkdxjA9yWe3usJPns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:66:58:69:31:86:37:fc:23:b1:06:be:7a:74:c4:73:c0:97:
28:42:62:e8:d4:89:51:86:7a:c1:1d:f0:5b:86:3b:3c:83:36:
9d:5e:1b:42:05:16:15:a9:02:b4:3a:68:9f:7a:ce:d9:ac:40:
6d:2c:5a:27:0d:75:15:7c:e4:94:f5:99:d3:bc:37:a3:8a:b5:
bf:63:db:6c:16:91:ea:84:59:64:d4:9c:39:a0:81:96:3d:69:
ef:ff:b5:f7:0e:e2:24:81:61:fd:b8:32:d5:29:18:18:36:b0:
7f:33:c6:cc:42:fd:6e:38:69:04:04:f4:68:b9:f1:2d:80:c9:
32:13:41:6c:ba:9b:d0:d3:b1:be:04:bb:1d:36:e9:be:00:58:
62:44:6f:13:0a:82:3a:cf:e8:f0:0b:61:56:12:98:dc:f9:83:
8f:8c:b3:bb:15:31:b7:5b:cb:f9:4e:83:9d:36:2b:2a:84:0a:
e9:25:b9:15:17:66:4b:8a:48:5d:e3:3e:e4:bc:5e:8f:d7:bc:
28:e6:3d:f7:38:52:1e:87:f3:e0:52:51:c1:33:58:dd:ba:3b:
af:27:6f:b3:0d:fe:61:96:71:e7:76:c7:4b:80:4b:c7:1f:84:
dd:2f:45:d8:57:fe:57:ca:b8:ea:0c:cb:f0:e1:2a:f5:8b:8c:
07:ff:19:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:54 2025 by rpki-client