Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json)
Hash identifier: N35nHEJg2YYBnKwPI8+L7eaLIcUqDAayCrBkX3KHsIk=
Subject key identifier: 70:32:CE:FD:96:9D:98:FF:0B:C4:CC:5F:DB:7C:35:81:9C:A0:AC:1D
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 0198D5BBE119C383E0D835A5100D03FB91D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 07:01:56 +0000
Manifest this update: Sat 23 Aug 2025 07:01:56 +0000
Manifest next update: Sun 24 Aug 2025 07:01:56 +0000
Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: N2AbzFIbKtOvK3ZBJhSaRzYp8La5Ik9DfLg7ZbrelIw=)
2: qen-QoIAAGwgpqx4OQAF6M4rR_M.roa (hash: Pfgs1o9qvVrkxz8on7jtYneDypFRD7JuU2XED3GEHk4=)
3: sJjIi8LxyBaapUPztypafiGazB4.roa (hash: snoS7xcNMuCgLXX7PRPXvmr0bu9uS7kTUSsVN0SedsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:e1:19:c3:83:e0:d8:35:a5:10:0d:03:fb:91:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Aug 23 07:01:56 2025 GMT
Not After : Aug 24 07:01:56 2025 GMT
Subject: CN=7032cefd969d98ff0bc4cc5fdb7c35819ca0ac1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e2:41:df:3a:79:d4:9f:87:02:4d:b2:1d:55:
1d:cb:d2:27:f0:f6:6c:e9:99:b6:48:e6:fc:54:bf:
1d:e5:a3:96:6d:1e:1f:84:ae:c1:bc:48:d6:a2:c3:
60:e7:b9:bb:99:42:bc:3b:3d:5b:87:48:d3:d1:5e:
8c:e3:39:6c:9b:79:e0:f7:db:2b:49:92:46:2b:86:
62:95:3a:9f:96:f0:79:47:28:ce:14:57:3a:49:b8:
4f:17:fa:f2:12:ed:4f:35:78:05:84:b7:89:4a:f6:
4d:82:a2:f0:b0:79:ff:67:f9:70:10:8a:e4:9b:52:
fe:9d:50:94:44:5e:e6:fc:a8:e7:f6:44:32:8b:e3:
36:7f:68:6c:5e:35:35:99:6e:fe:f1:d9:01:dd:ae:
11:d3:9e:2f:cf:da:3e:c9:3b:ef:2b:ca:9c:7d:d0:
2b:88:e3:87:57:92:50:ef:15:be:65:6a:e8:5a:85:
7d:1c:33:b1:3b:43:c7:15:da:e1:1f:c0:89:32:07:
8b:a6:d1:0e:42:01:b3:65:72:e9:ea:5d:0e:37:66:
de:db:b8:cb:b8:b1:f9:49:b2:bb:8e:db:d1:0b:0c:
cd:64:44:4d:05:53:a1:b3:18:13:f5:21:e3:16:6e:
42:43:a0:66:d8:bc:04:8a:a1:92:bd:11:67:6f:b8:
14:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:32:CE:FD:96:9D:98:FF:0B:C4:CC:5F:DB:7C:35:81:9C:A0:AC:1D
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:89:fd:f8:79:2b:0b:37:05:f3:f6:09:89:ef:40:7f:db:32:
33:b4:bf:d0:4d:1c:e4:6d:ad:4f:07:e1:32:21:d8:a9:da:b5:
19:a9:bf:29:f2:9a:6e:96:a3:93:5f:a5:f1:42:fa:1f:06:af:
49:3b:8b:b2:bb:fb:11:3b:84:86:9d:c4:34:79:e6:3f:f9:06:
9d:71:01:c9:f4:28:c7:aa:ac:d8:90:aa:7a:24:24:27:3c:3a:
c0:5f:62:1d:83:87:3b:4b:56:73:a4:89:4b:72:fb:03:94:0d:
7a:e7:31:54:0f:8b:a7:a3:12:69:84:24:e6:d1:55:42:85:bf:
f8:77:02:37:7d:1b:15:69:99:0e:6a:06:2a:93:bf:3b:db:10:
0b:ae:10:b5:f3:fe:8c:73:c8:7e:0d:66:97:57:be:da:a6:2e:
7a:dc:5c:d8:90:5c:e1:9e:6a:c1:9d:48:ba:6e:6a:ef:a8:06:
ef:d8:42:6b:33:bf:c6:80:78:1a:fd:bd:e6:4c:5e:7f:d8:6e:
b4:e0:03:4f:a5:b6:45:1f:55:08:e1:ed:b0:3f:c1:40:b9:8f:
d2:0e:01:bf:55:ba:6d:2a:66:5a:7d:da:c2:e2:86:aa:97:35:
53:ce:df:bc:b2:bd:40:b1:6a:84:36:26:b1:16:42:6c:5f:e7:
83:c4:71:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:16 2025 by rpki-client