Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
File: aaTWkWuTFZqoCYSps3dGg7tVDr0.mft (raw, json)
Hash identifier: A7CajES86defsS8uAR39blmbVl7NP/Dpxw4cVcfSaQ8=
Subject key identifier: E5:FB:75:20:12:02:0A:AF:23:BC:5E:97:09:77:A0:AA:CA:85:D0:B7
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 0198D5F1B3CF6079CE46129FB174370645C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
Manifest number: 138D
Signing time: Sat 23 Aug 2025 08:00:43 +0000
Manifest this update: Sat 23 Aug 2025 08:00:43 +0000
Manifest next update: Sun 24 Aug 2025 08:00:43 +0000
Files and hashes: 1: Jqr-CXHYnZmzg_xVdImaXbMmVEI.roa (hash: XvpOhA/u1tpu0r7xTILje32qKTHGeywG7gPta8XZExU=)
2: aaTWkWuTFZqoCYSps3dGg7tVDr0.crl (hash: AwsrphzMtkMnJ9FLH+FAl3xJMAA3lDAkR+poZ926Pxk=)
3: lqHZHTtSjRTsulRT9uODOQE8lxE.roa (hash: ps3jNh8IrB0LkmVcReSQZ1oXuY/U8lzEpr6J8ijs+08=)
4: xE9IyAhq0aHlL6_ym_xgvZ2_5uk.roa (hash: 1YgjglAtdi0WFBDpDXQ7veTTeatE49sPF4fCDK08QO0=)
5: z6mBzW6H29uI5KxETsJqR2soNbo.roa (hash: UhKW2I+drpoL0LurJwnMOqRysLzBC/O6KKhMC7EQlLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:b3:cf:60:79:ce:46:12:9f:b1:74:37:06:45:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: Aug 23 08:00:43 2025 GMT
Not After : Aug 24 08:00:43 2025 GMT
Subject: CN=e5fb752012020aaf23bc5e970977a0aaca85d0b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:94:3c:bb:c6:4d:c5:09:ff:af:c1:2a:b2:14:
cd:9c:c9:e9:85:27:a5:8b:13:b9:86:9c:87:08:52:
db:45:4e:d9:27:39:e9:94:d7:84:aa:21:d6:0f:2e:
c5:63:d3:56:75:a3:b6:18:f8:b3:6d:6f:c6:18:f6:
00:0b:9a:b1:84:91:e1:72:36:8b:a7:02:d7:c7:ed:
57:20:4a:b4:2a:bf:db:6b:24:e7:f1:33:96:3f:49:
d1:5a:58:6f:29:1d:17:20:c1:f1:81:cd:70:84:d4:
57:95:1c:80:92:db:d3:90:04:1e:87:31:51:03:af:
9c:89:cd:95:52:89:97:13:07:5f:d4:9e:22:d9:db:
df:e7:ea:1c:1d:66:dd:55:bc:f1:18:8c:ae:46:3c:
66:dc:c2:ce:c9:ff:ea:98:ee:6c:8b:c2:b6:6c:f9:
14:fd:ad:ff:d6:dc:21:e0:73:e5:34:61:95:c7:e5:
92:e8:59:26:11:04:75:8b:fe:df:dc:9f:4b:11:e1:
4b:f5:e6:22:88:cc:33:bb:cd:64:b0:d6:17:b2:e0:
17:c1:14:5f:d5:b6:c8:d5:d0:fa:48:41:f1:7f:f3:
7f:3e:43:54:35:ae:86:26:fb:d3:04:a9:1b:00:3a:
1e:79:c5:89:66:7b:62:27:32:bf:4f:5c:57:1e:d3:
26:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:FB:75:20:12:02:0A:AF:23:BC:5E:97:09:77:A0:AA:CA:85:D0:B7
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:9e:28:4a:33:df:ed:c2:33:96:88:1c:c0:1c:5f:c7:78:bb:
ad:0f:dd:de:d8:b6:e0:6d:87:64:b3:da:9d:47:e2:97:34:1c:
97:1e:b0:54:f0:44:c0:4f:ab:41:e7:34:e6:e6:4b:d6:ec:3e:
e2:66:13:95:f6:be:ea:03:fb:b9:51:fc:6a:cd:a9:bd:df:d6:
2c:90:29:86:ea:a8:b5:ac:2e:28:18:98:91:54:7c:72:f1:00:
b7:78:eb:d5:1f:84:26:34:1d:1a:b7:ed:b2:72:00:fe:e7:a0:
a2:f1:6d:a7:9f:d6:f5:70:0f:35:28:62:9d:97:da:5c:5a:8f:
13:43:11:8f:54:dd:7e:44:2f:d1:92:38:d6:22:86:17:11:ae:
bb:b0:fb:dd:4b:0a:2d:53:f0:6b:03:1e:c5:6a:73:63:a8:92:
b9:92:d9:19:01:48:4a:a5:36:7e:10:be:93:10:19:41:81:ec:
4a:17:30:1b:a0:57:1c:e0:91:fa:b9:b4:5b:3a:31:19:13:c5:
e7:9b:c4:ba:f2:fc:0f:e1:42:13:e0:89:cf:49:a5:96:df:35:
c5:53:85:62:35:4a:f1:e6:67:5a:f6:b0:5c:7d:47:c2:de:7b:
ee:b0:44:18:de:48:53:01:ab:d5:49:ba:48:79:13:82:d4:0a:
98:9b:b1:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:13:12 2025 by rpki-client