Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
File: aaKML4THXo0DiGlDVRUt0rcx8kk.mft (raw, json)
Hash identifier: 7fMNZTVAkgc70MKaauRnc9EbvNvqiTowpcfQ3g74l/o=
Subject key identifier: 2D:F1:8B:88:11:0D:86:02:5C:64:BD:FC:4C:EF:CE:E7:60:FD:09:EA
Authority key identifier: 69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49
Certificate issuer: /CN=69a28c2f84c75e8d0388694355152dd2b731f249
Certificate serial: 0198D7A891023B51DC5DFDBA47193874A22A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 16:00:05 +0000
Manifest this update: Sat 23 Aug 2025 16:00:05 +0000
Manifest next update: Sun 24 Aug 2025 16:00:05 +0000
Files and hashes: 1: WdYc6wSLVkfUe7irxf4uyXxEIsM.roa (hash: dpYwLA3RR3eH0lZ7/JtVVQoaXF1Y2bKy7GfyH86APlE=)
2: aaKML4THXo0DiGlDVRUt0rcx8kk.crl (hash: dAL8mdzGT8rBf5KsBE+pFnLHxCR8PUNSAHxzrEHOF78=)
3: tUMiGCgmsKV0vxqojlEA4oJxpRM.roa (hash: UydNeJbpnz/tc0fGV+RmvBf+BwmLoVjaXgDPrRLbpVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a8:91:02:3b:51:dc:5d:fd:ba:47:19:38:74:a2:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a28c2f84c75e8d0388694355152dd2b731f249
Validity
Not Before: Aug 23 16:00:05 2025 GMT
Not After : Aug 24 16:00:05 2025 GMT
Subject: CN=2df18b88110d86025c64bdfc4cefcee760fd09ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7a:68:6e:a2:8f:87:29:18:dd:24:8a:51:c9:
93:63:35:1d:bd:81:3d:00:39:a9:51:d1:cd:d3:f2:
76:52:a1:cc:e7:7e:c4:9f:00:04:13:eb:40:9e:94:
08:e9:5f:95:6e:5a:99:8f:c5:44:be:fa:4f:b6:5b:
24:e8:3e:d0:19:2c:1b:43:87:e0:11:db:17:61:1f:
a9:54:c3:a6:88:e5:fb:7f:cf:af:ea:17:60:d2:6b:
1a:35:8d:2e:8e:8f:b3:aa:7d:07:09:29:97:46:e7:
14:de:82:eb:9a:b7:0c:0b:66:a7:1c:c1:f7:83:8d:
ad:2c:04:92:43:4e:22:a6:e7:2b:f8:29:4d:1e:6e:
d1:75:8a:fa:ac:41:75:14:56:26:62:29:a1:b8:6e:
44:05:83:a6:57:17:6e:c6:f7:ee:93:2a:bc:32:9d:
c0:65:3e:eb:56:71:54:d2:fd:df:ef:73:ed:59:0a:
88:38:44:8e:48:7d:e1:c5:92:a1:47:a6:ef:d7:a0:
52:12:df:6e:65:51:a1:56:2d:57:a6:9d:e1:46:91:
af:b9:82:39:f5:02:ba:9a:43:0c:08:5e:b1:56:1e:
9c:c3:46:71:db:27:e9:9d:a7:ce:d6:e0:c1:7c:a3:
20:cb:2d:07:24:48:2a:0f:60:27:4c:94:92:62:2f:
9c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F1:8B:88:11:0D:86:02:5C:64:BD:FC:4C:EF:CE:E7:60:FD:09:EA
X509v3 Authority Key Identifier:
keyid:69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:c9:b1:63:f6:7b:74:1b:7a:48:19:e1:4e:b7:6e:bd:27:aa:
95:40:12:46:82:5a:6e:d5:de:dd:cf:67:9b:7d:1d:96:86:91:
ef:15:73:6b:3a:93:88:07:82:00:68:46:c1:fa:66:2a:c8:01:
56:20:85:11:4d:21:e5:ef:85:f6:44:22:7d:f5:0c:9d:59:49:
0e:9b:8f:1a:da:ce:6a:cb:d5:c5:a2:8f:f8:0a:15:7f:e0:5f:
79:31:e7:eb:16:97:bc:59:99:44:00:a9:b0:33:52:ee:a9:f1:
ca:17:de:bd:94:32:6d:28:ba:46:50:95:1e:de:5b:ed:6d:78:
f0:a7:b9:2b:15:1c:dd:63:8c:49:2d:9b:09:a8:c0:22:e8:c5:
35:39:6d:3e:ed:ce:4b:f8:c4:9b:c5:5b:bd:3b:1b:89:19:61:
a7:67:81:d4:0a:c8:9a:d1:40:ce:79:41:7b:77:ab:92:88:f3:
66:26:cf:21:42:17:b2:0e:cc:c1:cc:3f:39:aa:13:c1:11:56:
bc:cd:3e:7c:42:bf:46:9b:49:22:2b:79:30:0f:82:17:89:ee:
53:6a:94:bb:0d:bb:66:fa:ee:af:21:19:23:40:52:a4:79:fb:
dd:a6:4d:c0:6b:a8:85:fc:61:e7:a0:6c:a5:11:2a:e6:f4:b6:
41:01:ff:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:47:21 2025 by rpki-client