Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
File: aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft (raw, json)
Hash identifier: ZLSAxSnuV9DVNKx34Zot/04Cg5Be2lx8DbC1OC262kI=
Subject key identifier: 40:B1:26:C6:23:C1:D5:72:74:43:A1:E1:49:10:6A:C0:D3:CB:40:6F
Authority key identifier: 69:8D:47:BE:DF:84:89:AA:02:D3:DB:46:F9:8B:4F:7A:26:4B:48:0A
Certificate issuer: /CN=698d47bedf8489aa02d3db46f98b4f7a264b480a
Certificate serial: 0199FC8FC50E4BF1C8B77E525EB3CB88AB6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
Manifest number: 1671
Signing time: Sun 19 Oct 2025 13:01:44 +0000
Manifest this update: Sun 19 Oct 2025 13:01:44 +0000
Manifest next update: Mon 20 Oct 2025 13:01:44 +0000
Files and hashes: 1: aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl (hash: axLo4TXRXOQ2oi6x94zLx1Mt9qyoeXTKYoNQ1R0+OKY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:c5:0e:4b:f1:c8:b7:7e:52:5e:b3:cb:88:ab:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=698d47bedf8489aa02d3db46f98b4f7a264b480a
Validity
Not Before: Oct 19 13:01:44 2025 GMT
Not After : Oct 20 13:01:44 2025 GMT
Subject: CN=40b126c623c1d5727443a1e149106ac0d3cb406f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:53:26:cd:c4:99:a9:b3:c4:42:28:55:af:c5:
cb:40:b2:1a:6a:f3:c4:b0:84:7e:e8:4a:da:ed:d2:
dd:c9:f1:f1:08:3b:12:a7:a9:99:a3:cc:61:9c:1b:
38:9c:65:75:ee:a0:3f:c7:d2:eb:64:51:fb:9d:66:
22:ac:a0:c0:2a:8e:b3:0b:9c:4c:d7:49:95:e2:a0:
a7:75:75:18:9e:91:8a:e6:dd:86:28:5b:30:a9:f7:
c6:00:e8:69:09:5f:77:26:7f:4c:6b:9f:0e:1c:24:
34:8d:b1:86:3c:ee:df:ac:83:94:d3:92:42:eb:95:
bc:00:0f:88:97:74:e2:70:89:d8:c3:02:69:3e:88:
c5:35:5a:af:3a:30:60:57:cc:f1:7e:53:fe:61:9e:
b0:f1:b3:8c:c4:2c:2b:a6:68:be:b0:ca:45:86:ab:
1b:0e:7e:ad:64:09:ab:92:bc:17:42:13:03:04:12:
13:3d:1b:8e:19:9e:73:dd:4b:a9:8a:b1:47:80:ee:
e4:cf:eb:3a:5c:e0:fc:ee:b7:7f:95:1a:05:0a:82:
4a:75:25:53:02:9c:41:d9:1b:f5:5e:ad:f7:86:43:
44:70:0b:cd:03:2e:b1:c2:ce:56:0d:18:8a:8b:79:
89:f2:fb:25:92:b0:a1:26:68:eb:fb:ef:ed:92:a2:
6d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B1:26:C6:23:C1:D5:72:74:43:A1:E1:49:10:6A:C0:D3:CB:40:6F
X509v3 Authority Key Identifier:
keyid:69:8D:47:BE:DF:84:89:AA:02:D3:DB:46:F9:8B:4F:7A:26:4B:48:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:45:e2:ec:7f:3b:9a:72:c7:af:23:01:c5:88:83:3d:72:19:
14:70:51:4e:a1:e7:79:b3:b6:61:0a:b8:63:4a:c0:2d:f7:2c:
41:29:1c:0c:c7:e2:c2:ed:c2:86:a6:4f:74:19:6c:f6:d6:97:
4b:2f:56:01:17:ac:53:41:ae:2e:01:4d:fb:be:ed:7e:34:9c:
d4:fe:8e:58:41:ee:69:aa:65:c1:cb:e2:a5:58:0b:3c:f6:0e:
fd:2a:e1:30:32:c8:9b:44:44:e2:af:ec:d7:02:1e:3c:42:2c:
fd:ec:13:0c:a5:84:12:b2:90:68:c0:91:c5:10:06:16:e4:db:
a4:ed:7e:14:55:0a:d7:1a:ee:e0:d6:ce:29:85:cb:14:fc:84:
5e:0b:ba:38:c4:72:26:f0:78:0a:fb:b9:7b:53:07:89:0c:0c:
ec:35:e6:91:d7:28:de:ea:93:ec:2f:b0:68:3d:0c:4c:bd:29:
ae:55:ff:08:8e:3a:7e:4e:d2:e5:19:11:1c:ea:2c:da:d4:02:
ca:63:64:78:09:7e:bb:4b:8b:4f:8e:91:f6:e5:70:d6:c9:d7:
e7:2c:b7:c2:28:d1:44:95:c2:97:af:ca:8f:68:3e:91:46:0e:
d7:75:c4:40:0d:97:f5:ca:6a:77:19:00:2f:99:de:0a:57:7a:
74:e7:07:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:58 2025 by rpki-client