Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json)
Hash identifier: Nz2ko/Vo2J68UUdtUrBrVPlNsu11sZBNZ1AQOSu7/lY=
Subject key identifier: 90:2D:8E:77:06:AE:2F:A4:74:6B:53:0A:DC:3A:FE:84:06:6B:AC:A9
Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d
Certificate serial: 0198D4A820FD11DB0A1E6F3C00AC72CAA319
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
Manifest number: 0822
Signing time: Sat 23 Aug 2025 02:00:44 +0000
Manifest this update: Sat 23 Aug 2025 02:00:44 +0000
Manifest next update: Sun 24 Aug 2025 02:00:44 +0000
Files and hashes: 1: aHJU3TtGM9M9L2c33hiqaeAD6-M.roa (hash: Jnk6c3GJ5E4y6b+inckEyRoPVADxMl1TsyYlid/Y0Y0=)
2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: eUUVXsrA6uk72civiGz5do0N8OXfTTgQUDhoDZrp76o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:20:fd:11:db:0a:1e:6f:3c:00:ac:72:ca:a3:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d
Validity
Not Before: Aug 23 02:00:44 2025 GMT
Not After : Aug 24 02:00:44 2025 GMT
Subject: CN=902d8e7706ae2fa4746b530adc3afe84066baca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:76:be:18:a1:16:cc:0b:cc:ab:16:26:fc:f5:
95:20:b4:30:31:be:23:f7:fb:77:c8:6a:43:f1:0f:
ec:0d:9c:03:d8:92:3b:4f:59:27:c4:e3:f8:fe:d9:
ef:13:0d:fa:72:15:ba:67:21:39:d4:8f:ee:6a:31:
fb:df:92:e1:d6:fb:69:fc:68:03:2a:e5:9c:5a:93:
57:f0:68:38:d7:c3:2f:8f:2b:87:57:fe:95:c0:11:
83:ff:e5:1a:99:49:1e:e7:f0:3e:07:f1:af:27:c2:
96:91:fb:68:6a:93:71:7e:80:dd:21:a4:01:82:6b:
6b:ac:52:45:6c:f9:b6:4e:51:0b:24:5f:3c:81:62:
ae:86:52:d3:4a:5f:02:88:d1:18:20:29:1b:25:5d:
c1:11:62:61:af:5f:26:e6:82:e7:7d:66:9f:f5:2f:
c5:d0:21:04:19:ff:cf:d3:f7:8a:60:79:ef:a6:6a:
bd:a9:bc:3a:b2:34:90:47:c6:23:18:ab:9d:5f:b0:
0e:87:9b:06:d2:e1:3d:23:44:d8:dd:4d:8e:ce:3c:
e4:75:c4:b4:75:ae:4d:04:b5:96:34:a6:0d:c3:fe:
01:c3:0b:a6:d2:e7:03:53:31:c1:ac:c3:1a:a8:92:
f4:22:20:cf:57:9a:6f:fb:39:a3:0c:47:5a:9b:c3:
b4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2D:8E:77:06:AE:2F:A4:74:6B:53:0A:DC:3A:FE:84:06:6B:AC:A9
X509v3 Authority Key Identifier:
keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
db:f8:30:64:b2:1d:58:18:eb:8f:93:7d:58:c6:38:d7:5a:21:
3b:96:d4:ed:8f:8f:4c:63:8b:ff:dc:54:ac:6b:cf:1d:4a:f6:
17:ed:0f:54:48:31:3e:ae:00:aa:db:c3:63:36:ac:c0:7c:de:
64:6f:24:6b:f2:a9:80:3b:2f:55:29:ef:1e:d1:b6:9d:a2:dc:
db:6f:69:e0:57:a6:f2:0d:ea:53:98:19:89:5d:8e:55:72:7f:
90:d6:1c:fc:61:50:bf:be:94:74:c9:6c:45:bd:61:7a:16:f1:
fd:24:5c:a3:ec:29:78:39:87:79:55:70:ef:be:5a:fd:6e:a9:
e9:9e:99:3b:38:73:37:f2:40:71:8d:b6:d0:a0:0e:d8:f5:1a:
9f:95:82:62:26:a8:15:ce:74:d3:41:3c:e5:da:06:47:fb:9f:
1b:b0:3b:1c:65:3b:b3:4d:ca:4d:5c:79:bd:5d:3b:c3:27:10:
18:73:f9:07:f1:78:6b:fd:33:90:d3:cd:06:3a:da:d1:34:48:
41:e6:d8:57:85:d9:ae:d7:1a:8c:2a:e3:46:2a:a6:cd:fa:bf:
6d:22:96:0a:8e:51:27:8e:1d:db:15:05:27:16:ee:c8:76:52:
e4:b6:b9:7f:5b:d2:23:b3:91:c3:c8:2b:39:13:dd:3a:cd:71:
dd:04:3b:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:27 2025 by rpki-client