Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: j46/ThXB2D4Pxo6oDvxX+CyUuOOvfnzBbrxCEl977kE=
Subject key identifier: 0E:59:0D:63:83:39:AF:46:F9:E8:DA:43:12:7C:6D:D7:A7:5F:4E:AB
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 0198D5156E2B884EA512695E48E3863A908F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 0682
Signing time: Sat 23 Aug 2025 04:00:08 +0000
Manifest this update: Sat 23 Aug 2025 04:00:08 +0000
Manifest next update: Sun 24 Aug 2025 04:00:08 +0000
Files and hashes: 1: WhLENsO2y4UEzkuswA1wx41c4K4.roa (hash: qqWz2hpUFCfdOvnndjkfI9tgPQ2D7KLxkWgnxyi1reI=)
2: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: 8pp/4u7snsiprNPHLPAWrgYPhJOCjeHwDuH913iDicU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:6e:2b:88:4e:a5:12:69:5e:48:e3:86:3a:90:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: Aug 23 04:00:08 2025 GMT
Not After : Aug 24 04:00:08 2025 GMT
Subject: CN=0e590d638339af46f9e8da43127c6dd7a75f4eab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b2:57:bc:ca:90:2a:29:9d:48:b5:c3:f6:6e:
d4:c1:f5:76:6a:e4:bc:ca:f0:e5:d7:fb:c4:53:ea:
e8:0a:d4:97:31:0f:2a:00:fa:6d:6f:66:b7:d4:d3:
95:3b:44:3e:0e:f1:b5:59:ad:00:5f:37:41:4f:94:
1e:77:eb:be:00:a7:16:b0:cb:fc:bf:8f:95:d2:02:
ce:7c:89:ed:51:50:e0:b1:fe:91:35:dc:43:87:03:
f0:c7:63:73:4c:20:bb:a9:85:eb:51:2f:7d:bb:67:
c3:d0:68:aa:08:e1:e2:d6:79:d2:20:5c:b6:a2:e1:
6c:9e:82:79:0d:e2:77:79:fc:ec:c4:37:90:92:31:
8a:63:7a:55:48:a3:9f:16:7f:62:c4:ce:95:d9:90:
68:aa:6a:f9:1f:1e:26:21:8a:3e:e2:e0:23:91:fe:
b3:b9:8d:0c:93:1a:77:4a:48:a4:17:a5:c2:32:ef:
84:45:1f:3f:3e:eb:17:64:34:65:57:b9:86:52:de:
1e:1c:e4:ba:f9:66:0f:19:7e:e3:79:10:76:fa:ce:
05:d6:8f:49:e0:b6:bb:a1:94:b9:58:ba:ae:03:1c:
21:af:39:b4:b6:80:cf:21:bd:29:7a:f6:e9:14:c3:
a9:2b:4e:17:13:a4:50:61:86:73:06:c7:6c:4e:98:
39:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:59:0D:63:83:39:AF:46:F9:E8:DA:43:12:7C:6D:D7:A7:5F:4E:AB
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:30:6f:14:8c:4a:5a:35:0b:0d:64:c8:4a:44:88:6c:f9:c9:
fe:1a:fd:24:bd:43:f2:33:2f:ac:60:b9:8f:ec:b3:ed:41:81:
66:8c:a7:76:c3:c3:97:fa:66:54:13:c0:0b:ab:5b:32:72:2e:
e7:b4:9f:94:d4:89:2d:a4:04:79:ec:89:ad:b9:9c:58:74:8d:
20:cf:b1:ce:6f:d7:aa:a0:1a:98:81:3d:6f:a3:8e:fe:b1:65:
f6:fc:f8:c6:95:5a:e8:3d:43:d0:4a:48:67:e0:e4:e9:c7:b1:
1d:dd:89:9a:14:e4:c0:88:cc:c1:c9:77:ca:6a:f9:18:82:2c:
5e:1e:29:d1:07:cc:24:78:a6:a9:aa:af:c3:32:94:b8:74:ad:
f0:68:67:e0:7d:2a:69:e6:cb:b8:6b:c6:9b:e7:c2:a9:11:50:
82:b4:22:4f:cf:77:4f:8d:3d:b1:42:eb:83:d6:c3:4d:f7:0f:
58:a5:f0:51:19:8e:af:7e:a3:50:be:2f:49:92:a1:db:ef:25:
2b:29:1b:8f:ea:90:cd:cd:f8:f1:4b:da:2b:01:94:0c:58:7f:
4e:e0:19:8a:cb:52:6d:bb:35:ad:2e:0e:51:4e:af:b3:54:0a:
87:ef:2a:b4:24:70:30:9e:e4:bd:55:05:ff:10:47:b0:81:25:
fa:29:71:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:39:35 2025 by rpki-client