Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
File: aHyL8iKia_HJxmOMw1bSg1UC8tY.mft (raw, json)
Hash identifier: QaxKwJMAajgAWitAtu2fYquXArx2Yutk+OIOGprtmsg=
Subject key identifier: 57:26:99:59:B1:ED:67:23:6B:5A:44:DE:D5:A5:0F:62:9C:93:1B:4D
Authority key identifier: 68:7C:8B:F2:22:A2:6B:F1:C9:C6:63:8C:C3:56:D2:83:55:02:F2:D6
Certificate issuer: /CN=687c8bf222a26bf1c9c6638cc356d2835502f2d6
Certificate serial: 0198D661146B979FF332F3AB77379E21154F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
Manifest number: 078A
Signing time: Sat 23 Aug 2025 10:02:23 +0000
Manifest this update: Sat 23 Aug 2025 10:02:23 +0000
Manifest next update: Sun 24 Aug 2025 10:02:23 +0000
Files and hashes: 1: aHyL8iKia_HJxmOMw1bSg1UC8tY.crl (hash: DUUk3pg4v6mDhgc8TFqcLlTQukk0tiUI2nVBTNWDSxA=)
2: szxe0DPYsGTMI_tgKM1yaWgLDtI.roa (hash: fjZgmmGMINi/iYDucRgC4NEVBx45QTUkAnBaw6M5XK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:14:6b:97:9f:f3:32:f3:ab:77:37:9e:21:15:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687c8bf222a26bf1c9c6638cc356d2835502f2d6
Validity
Not Before: Aug 23 10:02:23 2025 GMT
Not After : Aug 24 10:02:23 2025 GMT
Subject: CN=57269959b1ed67236b5a44ded5a50f629c931b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:05:e9:c9:2f:d0:3e:94:a0:64:8a:41:02:1f:
95:9c:9d:cf:32:49:95:6c:96:f3:2e:de:96:9b:c7:
2e:38:3e:1d:9b:e3:90:be:7d:9a:ed:a2:05:1f:d7:
01:be:a1:51:88:84:52:c3:e1:3d:2d:ef:9a:e6:6b:
e2:d2:c4:bb:58:13:44:bf:d4:d6:67:40:b4:88:6e:
47:c1:1e:a4:42:3b:8d:1e:cd:3b:af:31:1d:7a:d2:
e5:06:09:f1:43:20:b6:d2:eb:ec:66:7a:0a:5b:48:
d8:6b:28:e6:9a:2d:2c:cc:f2:af:31:a0:fd:48:e9:
ae:1e:30:4f:fe:d3:5e:97:f2:81:0b:5f:b4:97:f5:
56:4a:c0:1a:40:9a:8c:66:ff:c1:5a:a8:b6:98:c1:
23:52:1b:48:da:d8:69:11:cf:22:79:5b:25:bb:f4:
44:1d:e5:cd:a6:bc:09:a0:2f:2a:ae:d7:f0:a1:5f:
e5:3a:8a:c8:29:80:a1:71:a0:19:21:0e:eb:83:f7:
42:35:52:77:cb:95:7f:e7:bb:c3:d1:28:c6:a7:da:
e8:76:2d:b1:d5:37:c1:e9:a9:84:96:e5:07:9e:bb:
55:65:70:56:c7:05:1b:60:bf:08:2d:ff:4a:26:56:
7d:fb:37:51:57:bf:a8:2e:3a:02:9e:b8:24:66:be:
d4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:26:99:59:B1:ED:67:23:6B:5A:44:DE:D5:A5:0F:62:9C:93:1B:4D
X509v3 Authority Key Identifier:
keyid:68:7C:8B:F2:22:A2:6B:F1:C9:C6:63:8C:C3:56:D2:83:55:02:F2:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:54:ab:d7:02:fe:00:71:94:7b:54:8c:37:22:47:15:af:72:
cc:d8:f9:7f:0a:f7:25:4f:49:59:55:da:d4:ac:ee:61:01:e6:
04:d3:49:1b:95:3c:f9:4d:6c:da:5e:f7:8a:8b:73:b1:fa:ad:
94:a5:1d:de:84:40:a2:2e:c0:01:75:e7:24:c7:9d:03:e1:20:
d9:43:85:d4:77:3d:04:d1:86:ac:26:a5:ea:09:4e:c1:ea:09:
01:d3:a2:03:d5:fe:5c:d4:d5:a1:c3:a8:38:07:73:4f:5d:7f:
72:46:4a:12:22:9c:c7:48:a5:86:5e:d9:bc:d9:66:d2:03:4d:
d7:57:98:44:0d:a0:93:a3:dd:61:d7:67:28:8d:78:b8:c8:21:
6c:37:d2:72:64:e3:4b:f4:70:73:70:c9:44:f8:e8:29:66:eb:
75:09:97:ea:61:57:a2:99:01:68:5d:03:d3:e2:7f:54:41:4b:
dc:ae:2b:d4:8f:8f:6d:26:04:01:06:14:8e:54:7b:c1:4a:6c:
31:7e:90:c2:a0:c7:bd:e0:69:e9:59:34:9d:51:ef:6b:ea:9b:
e6:41:78:21:85:a2:2a:66:8d:01:e8:8d:73:a8:b4:f5:85:9a:
54:87:e7:c7:63:14:46:e3:f8:b8:8f:7f:d7:92:4c:3c:2e:37:
7d:d4:e5:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:27:19 2025 by rpki-client