Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
File: aOlYF0Bglex8tceyhrETM0l7lFE.mft (raw, json)
Hash identifier: yjII0+hiOXl/F7jJ/AP+FJ+HQU9mhUmpc9GwRBZfDtM=
Subject key identifier: 6A:4A:27:57:E0:F6:D9:2F:FB:04:08:E7:1A:6D:A5:CD:8A:BE:6B:BB
Authority key identifier: 68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
Certificate issuer: /CN=68e95817406095ec7cb5c7b286b11333497b9451
Certificate serial: 0199FD3481843E251350B96AEBB9621715CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
Manifest number: 08EE
Signing time: Sun 19 Oct 2025 16:01:40 +0000
Manifest this update: Sun 19 Oct 2025 16:01:40 +0000
Manifest next update: Mon 20 Oct 2025 16:01:40 +0000
Files and hashes: 1: ExEAGmrTaGZYkgcoaaGfFiacDZM.roa (hash: vfQhBpcBjSjG95UQaSsBC3edgr1xXnN4hhJBHCKa+Vc=)
2: aOlYF0Bglex8tceyhrETM0l7lFE.crl (hash: sK+SpWF/nzgqDMNWhT199GUIYdqcH0iFMBKYutaL5+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:81:84:3e:25:13:50:b9:6a:eb:b9:62:17:15:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e95817406095ec7cb5c7b286b11333497b9451
Validity
Not Before: Oct 19 16:01:40 2025 GMT
Not After : Oct 20 16:01:40 2025 GMT
Subject: CN=6a4a2757e0f6d92ffb0408e71a6da5cd8abe6bbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ea:1f:5e:9b:5b:d4:20:fb:44:76:fd:ab:c0:
09:97:60:2f:63:70:4d:82:83:8e:f7:b9:d4:a1:4c:
81:28:66:94:4c:3d:db:64:d8:18:d2:32:ca:45:5e:
54:8f:4f:01:c7:5b:ba:d8:90:c1:42:c0:0f:34:f4:
99:85:1a:be:d3:0c:a2:f9:40:4d:fe:f3:5c:c3:25:
ea:1b:b4:ad:6a:7d:9d:1a:9d:27:ee:d0:64:cb:20:
3d:65:f3:8e:fd:d1:6f:66:5e:e2:e2:84:7e:62:ee:
dd:17:aa:c7:43:f4:eb:d4:0a:46:c9:68:5d:69:c0:
07:6f:a9:5f:fe:9a:f8:52:8a:fb:76:fc:ae:98:5a:
19:24:29:63:6d:1b:0d:f6:d8:a7:41:05:98:d2:99:
d3:27:4c:0c:0f:f3:53:b5:1c:60:75:1b:2d:3a:aa:
49:48:60:e9:3c:fa:2d:32:89:41:34:ab:f9:41:7b:
d3:64:a7:95:6b:14:e1:24:56:80:52:71:5e:30:c6:
ee:92:9d:f1:64:d4:b8:0f:94:51:34:07:72:fe:59:
ed:bb:fd:ea:54:ed:c3:44:d7:93:1e:a2:ef:ef:6a:
45:02:10:d4:3b:2c:03:9a:f2:79:fc:dd:9f:8d:9a:
5e:a5:8a:cd:1e:6e:4b:b4:59:90:df:c8:21:ff:ae:
bf:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:4A:27:57:E0:F6:D9:2F:FB:04:08:E7:1A:6D:A5:CD:8A:BE:6B:BB
X509v3 Authority Key Identifier:
keyid:68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:52:1f:eb:a4:3b:e2:b0:04:d1:12:ee:1a:ba:f9:10:83:6b:
19:43:ab:d4:47:f2:0f:86:21:05:11:94:c8:4c:07:dc:26:0b:
46:02:fd:1f:77:13:af:3a:8c:a6:46:51:53:c7:95:2e:85:ed:
56:00:c3:f0:98:6f:94:86:83:19:c9:ab:76:a9:cf:54:0b:76:
c0:11:ef:3d:3b:28:bb:3d:d5:ec:c9:47:20:ae:d9:2d:ad:42:
7e:a4:fc:3f:d5:a9:24:da:5e:8b:af:02:4b:c8:fc:0b:d2:84:
3b:fe:dd:ee:72:e0:48:b6:dd:07:71:54:20:d3:74:5c:03:97:
8c:cd:1b:24:b7:00:18:e5:e2:60:20:46:fc:78:c8:38:73:1b:
aa:ab:6f:ad:15:c5:aa:18:b2:65:44:aa:a5:9e:b9:29:3a:67:
69:87:f2:5f:df:a4:69:32:7f:63:df:39:be:58:e0:2e:77:8a:
78:62:e9:1a:7d:b2:c7:e6:1c:9d:20:e5:7e:9d:a0:63:d8:16:
da:94:c0:8a:e7:33:46:e4:f5:29:53:65:6e:cf:4f:cf:2d:7b:
37:3f:3b:49:71:4a:0e:90:5b:70:4a:32:f1:02:c3:60:da:90:
9e:36:23:29:35:13:b3:02:7a:39:4b:f2:31:42:7d:bf:df:aa:
f8:8b:53:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:10 2025 by rpki-client