Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
File: aaTWkWuTFZqoCYSps3dGg7tVDr0.mft (raw, json)
Hash identifier: IBqbqToixKE4I5PS+hxC0pJpGWBuRcOQz1QRtDiY4No=
Subject key identifier: 2F:34:A7:9F:13:1D:DD:39:0B:1D:4B:C8:2F:47:10:95:02:8B:C1:AB
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 0199FF594BDFE69D5020FC51C64502A5DCC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
Manifest number: 1427
Signing time: Mon 20 Oct 2025 02:01:06 +0000
Manifest this update: Mon 20 Oct 2025 02:01:06 +0000
Manifest next update: Tue 21 Oct 2025 02:01:06 +0000
Files and hashes: 1: Jqr-CXHYnZmzg_xVdImaXbMmVEI.roa (hash: XvpOhA/u1tpu0r7xTILje32qKTHGeywG7gPta8XZExU=)
2: aaTWkWuTFZqoCYSps3dGg7tVDr0.crl (hash: t6hZxXm5nX2oBkECqpm9SNP7D60FNaPjYdD5t0eQBWU=)
3: lqHZHTtSjRTsulRT9uODOQE8lxE.roa (hash: ps3jNh8IrB0LkmVcReSQZ1oXuY/U8lzEpr6J8ijs+08=)
4: xE9IyAhq0aHlL6_ym_xgvZ2_5uk.roa (hash: 1YgjglAtdi0WFBDpDXQ7veTTeatE49sPF4fCDK08QO0=)
5: z6mBzW6H29uI5KxETsJqR2soNbo.roa (hash: UhKW2I+drpoL0LurJwnMOqRysLzBC/O6KKhMC7EQlLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:59:4b:df:e6:9d:50:20:fc:51:c6:45:02:a5:dc:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: Oct 20 02:01:06 2025 GMT
Not After : Oct 21 02:01:06 2025 GMT
Subject: CN=2f34a79f131ddd390b1d4bc82f471095028bc1ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:43:7c:ed:53:cc:25:2e:14:42:b3:c5:09:f1:
ee:44:be:86:92:6b:e8:5e:30:73:3d:32:84:58:64:
7b:89:3c:6a:74:d2:3a:90:3e:e0:e3:80:64:36:95:
ac:47:72:8b:52:7d:ba:b3:41:18:9d:1a:ea:45:22:
b0:6c:92:d2:9b:01:9b:f5:17:6f:ab:7b:fa:c4:13:
f0:3f:35:2f:bd:ca:91:ce:37:8b:dc:64:93:3e:f3:
a2:ba:f6:89:c2:5b:a6:6a:99:38:ed:05:c9:30:d4:
31:36:93:88:9b:a1:54:63:d9:5c:ad:b4:f8:88:7b:
b2:cd:c2:cd:d9:06:37:92:57:93:9c:d8:37:18:2c:
22:ec:97:a2:af:45:ce:84:16:50:a5:6c:3e:e6:19:
54:a0:08:55:b6:67:42:ec:8e:6b:87:c1:5b:d8:e7:
4c:c1:e0:3f:95:7c:79:38:8f:ae:a2:26:77:78:99:
89:c3:78:ae:95:05:85:4e:3e:c6:09:20:de:84:44:
d4:78:d7:72:57:51:28:75:0b:3f:14:af:08:07:a9:
2e:58:5e:cc:1e:45:50:80:a4:44:72:de:33:6b:f7:
a8:b8:c2:28:f3:68:5e:9e:f9:6b:4c:5d:be:6e:db:
6c:7e:5e:cf:8a:9c:22:6a:1a:63:80:d9:17:0d:97:
9f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:34:A7:9F:13:1D:DD:39:0B:1D:4B:C8:2F:47:10:95:02:8B:C1:AB
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:a8:2a:80:23:97:3f:a1:ce:79:2f:ce:a9:31:4d:b9:d1:4b:
99:3e:e5:5e:12:15:62:84:f4:d4:f7:b3:fc:d3:03:76:75:37:
38:98:40:72:4a:60:94:c6:df:36:30:42:0d:04:31:7b:3d:1e:
98:ad:e0:31:70:89:4f:9c:41:9a:4f:d1:34:68:77:d1:a9:26:
20:61:31:fc:65:7e:0b:6b:be:9c:0c:86:90:90:e2:eb:26:ce:
70:d7:b3:8d:86:d2:f6:4c:fa:96:70:8a:6f:41:7f:b5:33:8b:
6c:d3:a4:45:56:60:aa:bc:44:f7:18:54:54:51:de:c9:37:c3:
2e:f7:80:4a:bb:da:ff:d7:f3:fc:8c:8d:af:22:5c:db:5e:74:
5e:e5:79:68:d2:8b:c7:a0:ee:84:a8:a9:c9:5b:29:34:64:98:
32:5d:5b:ec:25:fe:fa:09:b9:d8:58:d6:d1:3a:33:b4:93:00:
e8:12:af:29:f2:d8:b4:ac:40:09:19:00:19:39:38:52:f5:38:
7c:d1:5a:b5:5d:3b:8d:66:1b:24:29:4b:33:df:a0:40:7f:de:
5a:b4:56:de:1c:7a:67:74:cd:86:8a:e2:3f:a4:e5:60:3b:86:
5b:b6:b9:2b:b7:c1:c9:16:31:fd:90:d9:3b:96:53:fa:29:c5:
e3:3f:da:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:48:13 2025 by rpki-client