Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: 5W6P1+ETExAUNs+kDUs1mFRghBMuUrTNOxnPUXqfPSg=
Subject key identifier: 90:34:A9:51:8B:B8:7F:D0:68:FC:CE:B5:BF:5E:D8:E9:8B:DB:86:6F
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 0199FC8F318C2F1EDF01AB6922EA953AE18A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 071B
Signing time: Sun 19 Oct 2025 13:01:06 +0000
Manifest this update: Sun 19 Oct 2025 13:01:06 +0000
Manifest next update: Mon 20 Oct 2025 13:01:06 +0000
Files and hashes: 1: WhLENsO2y4UEzkuswA1wx41c4K4.roa (hash: qqWz2hpUFCfdOvnndjkfI9tgPQ2D7KLxkWgnxyi1reI=)
2: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: a/sjD6EX3G2/ZkuVg5sxS6hnVDG0V4NQqmhSy2VB6zc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:31:8c:2f:1e:df:01:ab:69:22:ea:95:3a:e1:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: Oct 19 13:01:06 2025 GMT
Not After : Oct 20 13:01:06 2025 GMT
Subject: CN=9034a9518bb87fd068fcceb5bf5ed8e98bdb866f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:6d:1a:70:ef:65:74:53:c7:04:50:99:24:ea:
c2:75:55:e5:af:45:cf:33:a9:f5:04:88:bc:d4:d2:
1d:09:f7:bd:01:4d:3a:09:c0:3e:55:30:fe:da:a5:
dd:9d:8c:81:6b:0e:05:d7:9d:d7:b0:88:5c:66:8d:
b6:bc:83:a9:a0:cd:3b:b4:5c:2a:ba:d9:b7:dd:d3:
10:8d:26:ba:c9:f4:4b:e7:c8:1f:b2:2a:1a:aa:f3:
e9:99:35:39:c1:0f:19:d4:47:64:49:45:6f:98:88:
4f:eb:ad:dd:7f:b8:2d:6d:d2:59:ae:4a:4e:24:11:
b6:9c:e4:46:6f:71:ad:18:d2:11:1b:db:80:53:49:
d9:42:52:a0:ee:52:a8:06:f8:a2:b1:f7:e8:0c:77:
73:51:f2:e8:54:71:71:79:86:4e:04:a7:17:38:57:
a9:5d:29:be:60:80:c1:9a:78:5c:c1:44:29:02:3a:
9c:89:b5:c9:54:3a:8d:98:0e:9c:8a:c8:2e:ce:5b:
8b:a0:60:15:70:33:1c:06:5b:3b:bb:54:af:8e:be:
0e:cb:21:35:79:69:50:38:19:60:3a:74:f2:8a:7e:
7c:76:e9:cc:16:fb:98:77:fa:38:17:36:d2:8e:e9:
0f:0b:d6:8e:45:9a:24:71:8f:0f:8b:ac:65:7a:9f:
f3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:34:A9:51:8B:B8:7F:D0:68:FC:CE:B5:BF:5E:D8:E9:8B:DB:86:6F
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:ac:82:3d:8a:8b:e3:f0:fb:fb:02:f8:03:a5:31:89:00:b0:
05:cc:78:03:cc:1f:6c:a3:21:bf:e5:1b:15:9c:67:d5:31:79:
97:bd:c2:10:69:6b:56:83:0c:78:0c:bd:95:ce:a3:cf:19:5c:
70:ba:49:a7:d3:c8:24:d4:ee:5b:8e:08:64:db:bd:74:4b:e3:
28:0f:97:9a:bf:a9:16:05:ae:0d:f7:e7:30:94:35:d8:a3:64:
98:a3:cb:7f:cd:93:bb:01:eb:c6:b6:df:f3:15:48:f0:12:f7:
7a:2d:57:c7:29:a1:ba:b3:e2:65:bb:86:c6:4c:88:c4:6a:9d:
eb:fd:cc:70:4f:70:86:fb:6f:bb:97:84:92:d5:65:90:93:c2:
cd:ce:df:82:70:34:63:51:5e:04:9c:66:92:57:3e:a4:1f:2d:
68:a2:6e:01:2d:12:b0:de:f6:f9:c4:3b:b3:19:fa:c8:98:61:
69:bb:df:c8:bb:bf:fc:b5:52:4e:2a:60:84:b3:df:4c:f9:ba:
2b:4e:c4:80:a9:cb:10:18:b2:ad:ac:67:94:46:09:3b:75:fb:
d4:2b:a9:ff:22:c0:04:3b:c2:b0:a9:d3:27:61:fb:84:e2:ee:
df:00:bc:14:16:23:62:2e:0e:38:c8:19:40:d0:35:6a:d5:01:
dd:6e:fc:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:29:40 2025 by rpki-client