Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
File: aajmjRKuKTryNpBDzVmgINrCQGI.mft (raw, json)
Hash identifier: opJkXOGPxnzxpzo86abzXHWNrl1tYZToLB/Z14rXPI0=
Subject key identifier: 5E:59:1E:3C:B2:FB:E1:03:2A:C1:50:27:D9:1F:7B:71:37:9B:60:55
Authority key identifier: 69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
Certificate issuer: /CN=69a8e68d12ae293af2369043cd59a020dac24062
Certificate serial: 0198D4E0CC5CAD81852FEDB6B28D382033E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
Manifest number: 0B3B
Signing time: Sat 23 Aug 2025 03:02:38 +0000
Manifest this update: Sat 23 Aug 2025 03:02:38 +0000
Manifest next update: Sun 24 Aug 2025 03:02:38 +0000
Files and hashes: 1: aajmjRKuKTryNpBDzVmgINrCQGI.crl (hash: r8PCnxMzxNRSwUEDe56lzf+vC4miNN+3ft5apG/QqU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:cc:5c:ad:81:85:2f:ed:b6:b2:8d:38:20:33:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a8e68d12ae293af2369043cd59a020dac24062
Validity
Not Before: Aug 23 03:02:38 2025 GMT
Not After : Aug 24 03:02:38 2025 GMT
Subject: CN=5e591e3cb2fbe1032ac15027d91f7b71379b6055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b8:54:1a:49:f6:99:e7:04:f2:3d:37:fa:70:
ff:28:76:26:25:27:ac:ab:f8:8b:b2:a3:8f:ba:6d:
23:5e:b0:36:53:ef:6c:32:4c:17:fc:0c:a7:f2:df:
9f:2f:52:21:dd:29:4c:cf:58:99:e2:37:cb:a6:4a:
b0:48:03:ec:9c:c4:77:97:83:6c:c3:9a:4b:29:1c:
72:fe:ad:78:22:48:24:9c:e7:f1:9f:b1:23:d2:10:
c8:96:b6:36:94:bd:71:1a:42:bc:02:78:eb:28:e0:
88:8f:09:aa:ab:42:69:75:11:fc:4b:7f:51:35:85:
bf:88:8d:05:ad:fc:c0:87:1e:45:c1:d3:cc:d4:cd:
53:3e:46:e2:7c:30:91:62:0c:33:32:39:fa:00:b7:
cf:70:9f:d8:27:7d:18:8e:59:06:ba:66:3a:32:dc:
96:fa:1b:2e:81:74:04:3b:5b:79:67:16:40:6b:a8:
61:13:11:da:c1:ae:e1:79:d6:8e:cd:88:3f:9d:0c:
9b:3f:76:f6:6f:5c:9f:78:28:b1:97:c8:88:4c:cc:
64:1a:54:16:e7:d3:d4:f0:70:7e:fe:7c:ce:01:cf:
2b:6a:99:1a:d9:de:ed:af:24:1e:ec:71:1b:5a:c3:
95:f7:03:7f:8d:ef:11:08:15:36:8e:7b:8e:3b:a9:
fd:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:59:1E:3C:B2:FB:E1:03:2A:C1:50:27:D9:1F:7B:71:37:9B:60:55
X509v3 Authority Key Identifier:
keyid:69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:70:18:da:b1:0f:37:3d:b9:ba:93:c8:bd:56:67:6a:1e:8c:
4d:4c:f9:90:f7:1a:e3:5f:e4:0a:ce:f9:01:00:3d:75:a5:7f:
d5:96:f4:03:86:f1:e7:2f:7a:22:7f:a9:7f:da:94:64:35:18:
5a:1d:01:86:23:77:9e:ca:a6:06:d2:5f:0d:47:ae:7d:02:e7:
b4:09:24:5b:28:eb:b8:0c:99:f7:f7:65:fa:8a:7b:be:fd:37:
5a:16:04:45:b6:64:72:01:67:db:ec:fc:0a:89:ea:07:96:05:
2a:6e:97:c1:c4:1e:63:d1:3e:35:74:c2:c5:49:9d:59:c9:44:
44:5d:ec:e6:65:f4:f6:e5:32:b9:b1:0b:ff:c8:89:bd:5d:50:
dd:40:3e:a1:97:1a:23:ed:41:4c:7a:d7:cf:3d:9a:f6:6e:29:
be:75:d4:2d:8a:fd:1b:46:4b:7f:82:2f:04:d4:f1:a6:94:d9:
a8:ce:6e:90:fd:1a:20:49:0c:64:94:d1:19:c3:e8:cb:6d:12:
a3:6b:14:42:eb:f3:06:62:bc:7f:e9:a8:58:39:71:16:02:c9:
09:b0:b0:18:45:b5:09:41:e3:5e:a6:ef:53:10:1e:f2:e0:98:
a2:e8:88:81:34:46:05:9f:b1:31:8a:22:51:1a:bc:e5:ee:45:
70:b2:34:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:29 2025 by rpki-client