Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
File: aJQuPste6nkqdvray-wBqFaOl_Q.mft (raw, json)
Hash identifier: dGXrkFKG9uVLXip46L1SzFHtFCFZgJrBqPEAv5GutaI=
Subject key identifier: 4C:9F:A5:2A:DA:B8:DD:6B:F6:38:EF:2E:6B:2B:87:EE:6D:0D:E4:61
Authority key identifier: 68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
Certificate issuer: /CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Certificate serial: 0199FB7CF465065F6050D35B3082F27020D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 08:01:34 +0000
Manifest this update: Sun 19 Oct 2025 08:01:34 +0000
Manifest next update: Mon 20 Oct 2025 08:01:34 +0000
Files and hashes: 1: 2I7Ug_0TKUirYBKdCRFB3X-yPVM.roa (hash: OuAKBuCtiZrdtqQo3Ia+YQ9DdlyXDqDuhn9BW+I9wGc=)
2: aJQuPste6nkqdvray-wBqFaOl_Q.crl (hash: Bv0Gn5aozYuCBEgCqx9Oy/ZutCfeeXJYrT3xJl1QUhM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:f4:65:06:5f:60:50:d3:5b:30:82:f2:70:20:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Validity
Not Before: Oct 19 08:01:34 2025 GMT
Not After : Oct 20 08:01:34 2025 GMT
Subject: CN=4c9fa52adab8dd6bf638ef2e6b2b87ee6d0de461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a1:bc:2c:ad:7a:da:d1:fc:33:73:cc:84:11:
27:3a:65:33:bd:50:88:dd:3a:c1:ef:c7:b6:a4:f2:
78:4f:8c:8a:7f:66:d4:c0:89:23:0f:ac:2d:4c:10:
87:cd:a6:85:4b:9f:4d:7c:54:69:32:33:d5:42:c3:
23:33:92:69:dd:38:46:21:18:e9:9a:9d:d6:1b:2b:
b3:e9:07:96:d1:11:cf:a7:0f:ea:da:79:c8:15:56:
15:42:95:31:83:2a:0d:a4:f9:7c:ba:72:cf:87:bf:
fd:06:e7:90:4e:ba:7e:d3:3c:6f:d3:a8:8c:56:75:
f8:a5:91:ed:f3:9c:59:b5:5b:35:92:ea:bf:7e:da:
d0:b4:0f:8d:d2:87:78:25:cb:4f:86:03:b5:89:c1:
6d:69:cc:36:66:85:e1:d2:9d:c5:27:38:e9:f9:2d:
ac:58:6f:1b:a1:6a:98:a5:ad:26:ca:3c:b0:52:99:
bb:cb:44:bd:c7:fa:95:fc:4e:77:26:af:aa:ea:88:
0b:1a:b9:50:f2:5d:8f:31:47:4e:2f:eb:14:6b:15:
53:21:f3:6f:4e:9e:b3:69:cf:23:01:6b:cb:6d:c8:
39:f7:56:60:21:e7:ed:43:01:6f:91:98:c7:00:38:
e6:93:ad:68:ca:c9:f5:d5:67:98:b7:dd:bd:ac:4c:
b7:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:9F:A5:2A:DA:B8:DD:6B:F6:38:EF:2E:6B:2B:87:EE:6D:0D:E4:61
X509v3 Authority Key Identifier:
keyid:68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:01:98:73:65:b3:56:31:fc:e3:cf:41:a8:d7:f6:72:cc:5e:
c8:4f:c0:32:74:89:c7:a9:bf:ec:4b:fc:80:e1:d3:a3:29:42:
e4:48:b2:3c:60:27:db:b9:9b:8d:28:c0:e1:6b:f8:ed:f9:ea:
d1:0b:09:ac:88:8f:8e:2b:95:3e:4b:1c:4f:65:42:cc:6f:0b:
21:08:57:fe:bb:ca:e2:10:aa:a5:33:7a:21:a3:05:39:6c:04:
93:3b:95:b5:3a:52:94:88:d2:fd:51:f9:ec:7c:2e:46:ab:91:
7c:bc:1d:67:16:30:a1:21:d9:de:7c:11:8d:e7:12:db:a0:3c:
07:bf:d0:a3:4a:bc:77:52:32:a2:2a:0c:5a:b2:91:1e:9f:8a:
fd:57:fa:ca:c7:3f:53:b1:86:5e:19:e5:85:9c:af:85:a6:69:
99:bd:54:1c:c5:04:83:a9:bf:48:55:c9:a7:72:04:de:72:7b:
92:1c:f3:1f:75:42:a5:4c:28:84:45:d8:79:49:fe:45:f9:c7:
1f:08:79:62:2e:6a:69:20:57:d1:02:17:73:c7:98:0f:da:34:
ff:23:ba:84:5a:d8:91:a3:f8:9d:7d:00:aa:3f:dd:ae:b0:d3:
3e:cc:a6:1b:70:36:73:a8:77:97:db:e4:09:66:6c:1c:6a:fa:
92:75:c9:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:02 2025 by rpki-client