Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json)
Hash identifier: AwiG/6rFvIIVLq38Ds3sDSaa9ToFl4WxfIDtBuJ97Ok=
Subject key identifier: 60:39:3E:C8:F2:44:9F:CD:76:64:25:F7:1A:A9:0A:F9:47:46:19:A4
Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Certificate serial: 0198D472E28111BD20635C3CFA39A38BC3F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
Manifest number: 08EE
Signing time: Sat 23 Aug 2025 01:02:35 +0000
Manifest this update: Sat 23 Aug 2025 01:02:35 +0000
Manifest next update: Sun 24 Aug 2025 01:02:35 +0000
Files and hashes: 1: 1YtqoFQLtfGDiVmHDelz4DRg3EU.roa (hash: IK9E4boh47Pzwtuw3Las8hTZNUl+rwA5t6hlkkr2bx4=)
2: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: sg74Dbvz6yllMY9AjPxV3GOtJ92IF7dum9HPs0roHg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:e2:81:11:bd:20:63:5c:3c:fa:39:a3:8b:c3:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Validity
Not Before: Aug 23 01:02:35 2025 GMT
Not After : Aug 24 01:02:35 2025 GMT
Subject: CN=60393ec8f2449fcd766425f71aa90af9474619a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:95:c5:32:da:c1:40:f4:d5:f5:85:2f:08:38:
ba:f0:32:cb:4e:86:14:e4:0f:7e:11:ff:78:70:60:
64:96:66:97:e4:0a:43:32:94:2a:e8:c6:e9:46:61:
7b:aa:9f:85:2f:66:e7:49:18:dc:e4:59:ff:87:16:
fa:46:7b:96:02:48:14:70:1f:97:dd:1d:b3:22:1a:
7a:d7:65:a7:da:6b:d2:94:bc:b0:df:aa:05:b2:cc:
38:88:37:57:af:69:4d:e9:e7:34:65:31:94:03:2e:
15:f8:38:f2:29:12:c9:86:8b:bd:07:f7:84:ca:66:
f6:4b:d7:42:2a:80:bd:8a:a8:78:e9:d0:ff:13:3a:
ee:50:bc:8a:e0:be:1e:03:cc:f1:b0:00:b0:f4:fd:
9e:73:03:80:84:38:28:90:15:c4:10:da:d4:05:90:
bc:a4:31:cb:3c:27:f5:14:78:60:64:e9:ed:11:3f:
c4:9a:3f:ac:04:a4:e6:7e:06:f6:08:86:02:72:ba:
cd:cc:9f:05:cb:58:1d:38:07:3c:41:cb:6c:6f:7f:
df:2e:45:31:c2:be:b5:52:aa:09:06:e4:e6:33:59:
29:de:5f:c5:95:b0:19:57:3b:08:3a:37:5e:7e:c9:
53:c0:70:a8:02:b0:24:f3:89:19:24:36:0f:41:eb:
54:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:39:3E:C8:F2:44:9F:CD:76:64:25:F7:1A:A9:0A:F9:47:46:19:A4
X509v3 Authority Key Identifier:
keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:14:bb:1e:27:bb:44:ab:4d:cf:c6:d1:88:27:10:6d:e9:07:
cd:b8:a0:de:1f:ae:f5:9f:21:fd:2c:67:75:88:4d:8f:c8:86:
bf:82:4d:99:ae:96:30:ed:33:d9:b6:d3:ac:e0:a0:20:9c:5f:
a4:01:a9:fa:e9:21:4e:16:5b:31:68:8e:b4:d6:c3:e6:88:cc:
ed:8c:b2:ab:70:9c:27:01:a7:fc:0d:3e:73:dd:d6:36:07:66:
d7:1e:c6:dd:70:ca:37:82:9f:bf:97:5f:22:cb:4c:2a:20:7a:
a7:3b:1d:18:cf:3b:02:00:76:7e:25:72:6c:6b:94:86:42:f7:
f1:49:ca:05:16:3f:0f:28:05:e6:36:93:ff:4e:13:cd:c3:84:
a0:4c:3c:7e:2e:83:a5:bb:a8:59:2e:7d:67:f6:1d:9e:d4:b5:
f6:48:a3:fd:cd:37:42:55:d4:5c:7a:36:ca:5e:c3:a1:d7:a3:
af:86:91:97:b9:6b:3d:15:cd:ad:0c:4c:ca:77:68:7c:62:b3:
4d:ba:82:a8:9f:15:04:fd:71:23:60:1b:7c:f1:dd:f2:ec:f1:
9d:90:c3:b7:39:eb:a2:d6:8b:61:91:56:a9:bd:64:f6:3b:62:
50:2e:7e:67:06:db:18:7a:22:04:91:3b:1d:46:14:79:0e:c5:
a2:6d:97:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:11:36 2025 by rpki-client