Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
File: aJQuPste6nkqdvray-wBqFaOl_Q.mft (raw, json)
Hash identifier: 4epGeYEXauafR4UNaBgPvZNBSE0wxvn5ybjiG/Te2eU=
Subject key identifier: 4A:07:DD:23:C6:D1:A9:26:22:24:F0:11:22:07:BE:3F:ED:16:7E:2A
Authority key identifier: 68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
Certificate issuer: /CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Certificate serial: 0198D5F19C20D76EB49FD5CBA7A38CB6225F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 08:00:37 +0000
Manifest this update: Sat 23 Aug 2025 08:00:37 +0000
Manifest next update: Sun 24 Aug 2025 08:00:37 +0000
Files and hashes: 1: 2I7Ug_0TKUirYBKdCRFB3X-yPVM.roa (hash: OuAKBuCtiZrdtqQo3Ia+YQ9DdlyXDqDuhn9BW+I9wGc=)
2: aJQuPste6nkqdvray-wBqFaOl_Q.crl (hash: eVXge7W3mwofX4kFExnnxkR1/baztA99ZfXd/VACP28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:9c:20:d7:6e:b4:9f:d5:cb:a7:a3:8c:b6:22:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Validity
Not Before: Aug 23 08:00:37 2025 GMT
Not After : Aug 24 08:00:37 2025 GMT
Subject: CN=4a07dd23c6d1a9262224f0112207be3fed167e2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f2:49:2a:10:ec:df:74:f9:5c:70:bd:e0:90:
5b:ac:dd:5f:c6:aa:4b:1b:0e:ac:c9:fd:b6:73:28:
e9:8a:37:9c:5d:31:1c:3f:cb:85:be:85:7d:71:c3:
b2:ca:6c:d4:f9:fa:88:df:6b:11:67:03:5e:44:34:
15:8d:2b:0c:4c:38:a4:79:c8:0c:7f:0e:57:90:17:
28:c2:e0:73:e7:42:83:c1:65:74:d3:dc:bf:dd:b8:
60:e1:7b:f1:ac:a2:b0:16:27:62:b3:8d:9d:b5:b1:
fd:e1:89:23:01:7d:49:9e:17:f7:1d:d9:57:03:9c:
98:8e:4f:83:9a:d8:e1:31:21:b2:74:4f:79:4a:c0:
55:0f:da:b2:d1:94:84:fc:51:8a:0b:2a:75:37:58:
32:73:a3:d9:c6:98:a7:03:4b:b0:1e:12:f4:67:77:
b6:bd:18:66:7e:a4:98:17:dd:12:99:b7:86:8b:59:
12:a2:22:e0:a0:ba:59:92:aa:18:57:82:94:23:fb:
82:73:75:f8:c7:ee:ec:bf:f9:65:ae:f8:88:fb:92:
32:20:47:53:18:bd:2b:51:bf:1e:88:fc:a8:6f:72:
36:8d:af:bd:30:60:18:86:4d:14:22:97:74:f5:cc:
de:f6:73:ce:16:fd:b2:df:75:b0:24:96:e2:41:3c:
1a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:07:DD:23:C6:D1:A9:26:22:24:F0:11:22:07:BE:3F:ED:16:7E:2A
X509v3 Authority Key Identifier:
keyid:68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:c8:76:71:5e:25:37:5f:7f:b8:98:b2:71:65:46:1c:1c:7e:
4e:68:3a:04:09:42:4d:5f:96:e0:3c:87:a0:48:d3:51:d2:61:
01:3b:42:7c:c9:51:40:8d:d0:29:77:a2:d1:50:54:26:98:22:
f1:fd:72:69:16:6a:6a:1e:61:1f:da:c6:e2:6e:a3:ce:65:03:
84:25:19:c5:38:5a:ce:70:45:44:51:fe:87:fc:49:f9:52:e0:
ec:4a:a1:93:a1:4e:99:bc:46:99:7c:62:d5:43:0d:ad:47:95:
3a:ef:29:e1:34:79:a0:1e:51:b1:c9:8c:74:92:3f:2d:58:f4:
b4:72:73:18:41:c3:13:7f:f2:32:22:07:8b:da:8b:96:79:61:
38:5a:59:2b:15:39:d7:39:9d:e1:76:55:eb:1c:bd:39:8d:af:
27:1f:c5:cb:a6:8e:3e:b2:ee:5c:ee:43:b7:39:3a:17:b4:9f:
00:df:41:97:da:96:6e:e9:96:9b:fd:8f:34:3c:53:ba:fc:54:
17:8c:75:ff:8d:4a:a3:4c:61:a6:80:1c:86:eb:36:9d:2b:95:
48:a9:4f:e6:7e:2f:e0:fa:34:9f:ee:97:8c:67:dc:c1:e2:12:
bd:24:75:4e:aa:99:f8:8e:40:ba:ea:3d:e3:66:0c:0c:6b:e9:
f4:3e:7b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:13:39 2025 by rpki-client