Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json)
Hash identifier: g0rlVNOGQqbLbCI4JDlnXAIvK4e/qCzQ8VFAuELVANg=
Subject key identifier: AC:FC:22:A7:53:5D:22:37:8D:22:44:79:7F:EC:79:A0:BD:05:5A:AE
Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Certificate serial: 0199FBEB023C27132B3BFE63E09394CD4450
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
Manifest number: 0987
Signing time: Sun 19 Oct 2025 10:01:46 +0000
Manifest this update: Sun 19 Oct 2025 10:01:46 +0000
Manifest next update: Mon 20 Oct 2025 10:01:46 +0000
Files and hashes: 1: 1YtqoFQLtfGDiVmHDelz4DRg3EU.roa (hash: IK9E4boh47Pzwtuw3Las8hTZNUl+rwA5t6hlkkr2bx4=)
2: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: YSGNYWybD00iLA467Bhh042wKbIGIdkBAF0ahNjl34M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:02:3c:27:13:2b:3b:fe:63:e0:93:94:cd:44:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Validity
Not Before: Oct 19 10:01:46 2025 GMT
Not After : Oct 20 10:01:46 2025 GMT
Subject: CN=acfc22a7535d22378d2244797fec79a0bd055aae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a5:60:9c:c8:c2:19:19:8c:5f:3f:a6:af:d8:
b1:89:0b:f5:55:12:37:02:94:d7:f0:69:08:d3:13:
94:e8:7f:d6:6c:81:ec:32:4a:1b:82:47:5b:a3:38:
7c:26:41:de:45:75:c3:58:0e:cc:7a:3d:a6:4d:c3:
de:d3:36:be:3a:cb:fb:b0:e1:9b:86:85:42:7c:ae:
f1:2a:de:77:82:1a:bb:e6:bb:80:c0:65:08:d7:bb:
da:3f:55:47:00:a1:bb:d3:06:25:37:5c:e7:95:da:
b5:1b:71:32:0e:37:1f:4b:eb:ed:f1:56:f0:00:ba:
49:cf:4c:03:3f:5f:6a:17:7d:87:0f:45:48:3b:0e:
4d:f2:51:4d:01:2a:43:ec:2a:bf:66:46:b4:ae:34:
ac:c3:46:03:83:70:e5:70:2b:ff:b2:57:30:eb:e9:
43:92:04:e5:e9:71:42:2f:1c:8c:a5:4a:3c:ba:ea:
b5:cf:f4:ce:cb:40:89:c6:36:10:c6:c5:60:e3:00:
28:90:da:08:49:4c:e3:f2:b1:e9:32:1c:af:09:da:
07:cf:3e:53:15:7c:08:f7:12:5a:3c:04:f0:84:92:
c2:80:3d:e2:d8:95:92:bc:55:2a:51:ac:9d:d0:f2:
77:36:15:25:35:c7:b2:e1:68:e6:b4:68:7e:17:b3:
78:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:FC:22:A7:53:5D:22:37:8D:22:44:79:7F:EC:79:A0:BD:05:5A:AE
X509v3 Authority Key Identifier:
keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:ec:73:76:22:f7:55:d0:43:0b:96:9d:70:f2:74:e6:88:1f:
e3:af:ff:22:7e:ef:e4:df:33:6c:e7:04:4b:3b:b4:58:24:f5:
7d:05:d9:31:a5:dc:05:8a:9b:2e:ec:2f:d9:28:23:20:d3:42:
47:aa:0a:9e:47:3f:db:d5:d6:be:cb:31:a9:ee:61:83:a7:9e:
8a:f7:fc:96:9a:42:f4:47:21:86:6b:3a:8e:21:43:30:5f:e2:
83:98:0e:cb:32:f3:8f:9b:63:03:08:7c:d0:af:95:d7:e2:4c:
5c:6d:a3:b6:57:c3:05:0b:e4:97:6a:0e:67:3c:ed:db:3e:a3:
14:6c:a2:04:0a:0b:f9:87:36:04:cd:44:99:16:4b:ad:a8:2b:
67:5a:e6:93:17:54:3d:fd:ec:3d:08:ce:12:77:eb:03:d9:64:
ed:60:98:ae:79:1e:19:aa:7d:29:ac:3a:bd:aa:d4:2d:6c:d6:
b8:bf:38:18:03:1d:d3:f5:c9:e1:33:c5:9f:e5:ca:41:70:f3:
d9:a0:df:d7:70:af:2a:10:21:f1:f7:00:57:ea:e6:ff:02:06:
14:28:09:0d:ac:dd:f2:be:96:e9:98:85:5b:69:a2:9d:53:5f:
c0:5b:c4:d7:ca:f5:fa:6b:67:92:93:09:30:a1:09:71:ce:be:
71:95:9d:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:27:21 2025 by rpki-client