Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
File: aajmjRKuKTryNpBDzVmgINrCQGI.mft (raw, json)
Hash identifier: qo8KrZkwNQbFJPqYXzWaeXuwge6OTT9OfZig+zzHhCI=
Subject key identifier: F4:F3:0D:CB:28:75:63:ED:1F:64:84:3F:F1:56:C1:E4:A1:A8:D6:01
Authority key identifier: 69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
Certificate issuer: /CN=69a8e68d12ae293af2369043cd59a020dac24062
Certificate serial: 0199FC58A02346EB9F57F41B4D6FC7EEA49C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
Manifest number: 0BD4
Signing time: Sun 19 Oct 2025 12:01:30 +0000
Manifest this update: Sun 19 Oct 2025 12:01:30 +0000
Manifest next update: Mon 20 Oct 2025 12:01:30 +0000
Files and hashes: 1: aajmjRKuKTryNpBDzVmgINrCQGI.crl (hash: XVfJvTr5qQ2q8Nge4X0Vzrt24JcbsRNnlm1x/vMcSKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:a0:23:46:eb:9f:57:f4:1b:4d:6f:c7:ee:a4:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a8e68d12ae293af2369043cd59a020dac24062
Validity
Not Before: Oct 19 12:01:30 2025 GMT
Not After : Oct 20 12:01:30 2025 GMT
Subject: CN=f4f30dcb287563ed1f64843ff156c1e4a1a8d601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:06:02:4e:bf:7d:68:f4:56:ed:4d:c4:55:9f:
3d:6c:0c:1b:50:72:ca:ad:f3:68:9b:7a:a0:a7:8d:
65:97:6e:19:9c:56:a3:69:01:ee:f2:00:b6:de:ac:
f8:f8:c5:02:b3:e1:4b:9f:50:c2:28:7c:a6:d1:16:
4e:b5:5f:a4:0c:e4:79:63:24:d6:7f:3d:1c:b0:b3:
d3:0c:d4:4f:9c:f2:d0:bc:71:5f:c4:db:d4:73:41:
03:e5:4a:97:12:50:cc:60:73:21:9b:57:fa:ab:8e:
9e:39:30:a4:e5:99:16:4b:6f:7d:1e:eb:87:33:8f:
d1:4d:c7:08:5b:40:30:9a:f3:72:fd:04:b0:c9:06:
75:fb:66:7c:b1:5e:95:ff:17:78:22:ae:6c:d0:a7:
b7:42:9c:1f:fe:94:87:f5:ec:f0:af:d2:40:e4:b8:
c4:18:94:44:2e:4a:79:91:33:5b:60:35:d2:02:62:
ff:4a:87:33:92:b9:fe:0f:76:7a:58:de:9f:9e:a2:
14:89:2e:63:8d:32:04:37:3f:ea:3b:34:ed:9c:c0:
92:a5:4c:51:ed:dc:56:6a:5b:f8:29:ab:37:a9:3d:
f4:54:ec:58:4c:4e:07:14:cb:3b:14:ff:5b:6c:b3:
6a:6e:26:c4:61:5f:ba:2c:cb:f1:50:e2:8c:f5:30:
93:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F3:0D:CB:28:75:63:ED:1F:64:84:3F:F1:56:C1:E4:A1:A8:D6:01
X509v3 Authority Key Identifier:
keyid:69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:be:6e:87:d2:52:1a:b2:60:02:b2:16:e8:a6:a9:b6:66:5e:
92:ce:7a:1c:25:0f:82:dc:75:7b:ac:46:90:98:e6:ef:58:14:
92:56:b5:35:ef:4e:50:49:ee:5a:0e:11:1a:e8:bb:9c:3b:68:
8d:72:a8:55:fc:ab:dd:2c:6a:ba:83:0a:ee:9e:39:9c:05:d4:
b0:13:f3:df:ca:a4:14:b1:23:e9:ac:31:a4:d9:58:61:ae:4c:
15:b8:02:14:ff:d3:ac:4d:41:fd:da:84:57:27:c4:f4:ae:f3:
01:e4:75:18:96:d2:27:5e:58:68:e6:5c:59:1c:64:57:13:9e:
0f:fd:e6:f4:96:a6:64:84:78:d9:e9:a8:ad:89:f5:4d:7c:2c:
a1:b6:6d:0c:2a:a8:a8:27:fd:a1:38:28:45:18:a3:c2:00:b6:
50:10:11:40:74:ae:8a:ef:7a:4c:36:76:2a:72:7b:e2:90:f6:
c2:80:8a:ec:36:b5:85:26:e2:b2:ed:a2:ab:1b:5a:48:32:16:
6f:42:13:f9:13:c7:c0:62:3b:46:1e:3b:71:a0:52:b2:1c:ec:
85:07:49:0b:23:e3:80:fb:d9:b4:a3:7c:1f:df:86:19:d0:f2:
53:2e:34:33:05:7c:56:74:f5:58:9b:a5:f2:bd:4d:ab:a0:71:
46:e5:9b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:35:13 2025 by rpki-client