Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.mft
File: ruqgluuzdlfk060hdmQRctbiArw.mft (raw, json)
Hash identifier: m3J3/GJxuYbamsClgYeLJxaasC5fnnaFIt4hriEMGJs=
Subject key identifier: EF:6F:5C:10:F8:A6:E7:49:38:6F:32:86:0B:A2:A6:2B:C1:2B:AD:15
Authority key identifier: AE:EA:A0:96:EB:B3:76:57:E4:D3:AD:21:76:64:11:72:D6:E2:02:BC
Certificate issuer: /CN=aeeaa096ebb37657e4d3ad2176641172d6e202bc
Certificate serial: 0198D515AFC46A2FF146BAF7603B950956F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.mft
Manifest number: 0AE1
Signing time: Sat 23 Aug 2025 04:00:24 +0000
Manifest this update: Sat 23 Aug 2025 04:00:24 +0000
Manifest next update: Sun 24 Aug 2025 04:00:24 +0000
Files and hashes: 1: ruqgluuzdlfk060hdmQRctbiArw.crl (hash: AIYs5v0uf+adqiTD6K3KOCyObZ7SMXtjEzFooPER5xU=)
2: skCVKxk18u8iDsYso8A72bgiHug.roa (hash: nn/x2nXxtAw5Z/QReAqKvy2u4x4tQ9QyKaEVK0rkZpA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:af:c4:6a:2f:f1:46:ba:f7:60:3b:95:09:56:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeeaa096ebb37657e4d3ad2176641172d6e202bc
Validity
Not Before: Aug 23 04:00:24 2025 GMT
Not After : Aug 24 04:00:24 2025 GMT
Subject: CN=ef6f5c10f8a6e749386f32860ba2a62bc12bad15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3f:6d:f5:93:d5:8e:82:b7:59:2b:28:35:d9:
28:76:58:a5:a8:72:75:30:09:1a:74:18:f0:bb:c6:
3a:c2:6f:8d:fe:35:e0:71:c1:e5:21:d3:81:1e:23:
0e:bc:1e:c6:78:0e:93:29:34:67:c8:d8:2c:2c:61:
b3:17:b0:4c:96:b9:fd:1f:d2:6d:66:12:91:26:4d:
bb:40:f7:5b:e0:a0:93:07:5c:1a:5e:f3:3f:e4:25:
3e:94:82:2f:eb:b3:a7:c0:e2:1c:f0:ae:09:01:55:
be:b2:39:36:c9:d4:18:7c:66:70:0b:4d:fa:63:7b:
de:82:97:42:b4:6d:44:38:62:a9:e3:cd:89:2d:45:
5e:3e:52:a8:7f:c4:ef:0e:ff:68:e2:ec:4c:93:d4:
9c:ee:c9:51:0f:74:fc:2b:2c:3d:7b:b5:c6:0e:4c:
50:ad:28:31:e1:b7:c2:ac:3c:23:f1:11:e0:1e:0f:
9f:ee:56:86:1e:bf:2c:bb:79:4c:bf:42:22:8f:a8:
d8:d6:35:dd:4c:52:ce:60:36:0c:fe:2d:24:a7:1f:
0e:d7:65:be:27:cf:81:76:b8:dd:a3:3f:5b:a3:96:
5b:19:2a:5b:17:69:4d:f7:52:ac:82:af:a9:48:8a:
75:df:6c:d1:7a:0a:76:db:ea:53:fc:fe:a1:12:52:
30:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:6F:5C:10:F8:A6:E7:49:38:6F:32:86:0B:A2:A6:2B:C1:2B:AD:15
X509v3 Authority Key Identifier:
keyid:AE:EA:A0:96:EB:B3:76:57:E4:D3:AD:21:76:64:11:72:D6:E2:02:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:d3:6f:6b:4f:89:a8:51:8a:1e:bd:be:2b:bd:46:f3:bf:d0:
b8:88:d3:7f:81:54:6f:fc:1f:28:d4:7a:16:88:af:1d:ef:45:
14:02:2a:a7:b8:1c:2b:6b:10:2c:8a:d0:7b:c5:7d:59:3c:50:
4b:bd:b8:c5:19:b2:43:d6:c7:29:32:af:5e:90:85:19:1b:8b:
1f:a6:8e:0d:8a:ee:6b:48:8d:86:8d:8a:61:81:d4:e7:fe:98:
ca:2e:fb:c2:e1:0b:2d:02:09:22:a4:f0:d3:e2:3e:c4:ec:67:
d2:5f:ef:e4:4c:89:6a:ec:1d:e7:62:48:74:48:d9:d1:1b:5b:
eb:8f:fd:8d:5d:5c:78:85:48:0f:e2:3e:dd:b1:52:6a:ef:da:
e3:b9:b2:fc:a7:b4:58:00:39:8c:21:02:24:1f:53:f3:66:9f:
07:de:15:49:61:d0:2f:39:69:2a:e6:af:4b:90:0a:5c:94:7b:
83:24:29:3e:89:a7:6f:21:84:e3:55:62:93:9a:d7:3b:f1:14:
08:fd:56:fe:54:6f:35:f5:04:d4:da:53:54:ae:42:90:89:98:
d5:5f:23:de:e9:00:1a:42:37:27:dd:61:f9:00:66:ab:c1:79:
7e:a5:a0:5d:4e:6c:69:fc:86:94:8f:ed:3d:80:94:61:7f:4a:
49:a7:88:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:40:31 2025 by rpki-client