Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
File: aNogbIPVBeJUs-88dlD5-5NFNDU.mft (raw, json)
Hash identifier: H6W2llPf4BTfMve+zYltcPGpbCHjo2B+k7e9O0B8Dow=
Subject key identifier: 40:A9:FD:DD:D1:1B:F0:9D:38:0C:0B:63:07:47:A4:7B:5B:B1:FF:6C
Authority key identifier: 68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35
Certificate issuer: /CN=68da206c83d505e254b3ef3c7650f9fb93453435
Certificate serial: 0199FC584C2ABF0AFDE66B06D49F0C37C7D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
Manifest number: 09D1
Signing time: Sun 19 Oct 2025 12:01:09 +0000
Manifest this update: Sun 19 Oct 2025 12:01:09 +0000
Manifest next update: Mon 20 Oct 2025 12:01:09 +0000
Files and hashes: 1: 9yjOyCjaNQvZmslgCNfY4UdjDvM.roa (hash: BLcuMbjq4mGuK5Vn41A+M+OAou14cd2H96ukojI5mmM=)
2: aNogbIPVBeJUs-88dlD5-5NFNDU.crl (hash: ktadFXJ24K+9rZaQyQDVfo6NBrHE0MsflJQOVe9l5HQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:4c:2a:bf:0a:fd:e6:6b:06:d4:9f:0c:37:c7:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68da206c83d505e254b3ef3c7650f9fb93453435
Validity
Not Before: Oct 19 12:01:09 2025 GMT
Not After : Oct 20 12:01:09 2025 GMT
Subject: CN=40a9fdddd11bf09d380c0b630747a47b5bb1ff6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ec:d3:c0:54:bc:00:7d:44:18:42:a6:e9:8b:
8a:c5:00:73:df:38:38:76:7b:b3:e7:4f:5a:49:91:
20:e4:99:98:66:27:22:a9:72:0c:3f:b4:71:9b:df:
3e:4d:b0:c0:73:01:83:5e:6a:db:08:76:02:f1:3f:
12:e5:22:a3:38:76:11:4b:d7:9c:e7:b1:6c:dd:3a:
ec:73:bc:fb:56:0c:c8:d9:c9:fa:7c:0c:bb:39:ab:
ee:0c:3c:04:99:d0:6c:53:1b:74:31:34:22:62:25:
a0:42:12:fd:c9:3a:be:22:ce:e4:80:83:35:95:74:
2d:99:1c:cd:40:2d:b6:03:ba:90:11:7b:3e:17:de:
1f:47:c1:2e:a1:3b:9b:45:54:d2:51:55:80:af:61:
fd:b9:e4:c4:d1:87:40:26:90:28:1c:4a:85:57:f4:
a4:9a:74:66:61:65:74:9e:e3:15:bb:ea:df:ef:a4:
8e:90:72:57:b1:33:3d:60:06:44:25:4a:bb:5a:a4:
44:99:21:3b:ee:ed:e9:26:a5:21:a5:2c:7d:f3:ff:
e1:d3:c2:f5:a7:1f:40:79:da:84:b9:b6:a0:02:7f:
cf:81:aa:9c:bd:dc:53:e0:2f:3a:fe:91:0a:39:47:
ad:8c:91:46:1a:20:b5:14:b6:44:41:d0:8f:ff:a2:
98:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A9:FD:DD:D1:1B:F0:9D:38:0C:0B:63:07:47:A4:7B:5B:B1:FF:6C
X509v3 Authority Key Identifier:
keyid:68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:04:2b:cf:fa:98:f8:2d:22:03:79:3e:af:2b:43:79:b0:8e:
11:83:28:28:6c:3b:13:d0:28:ff:2b:cb:c0:63:c7:16:9c:76:
90:9e:c9:0d:2f:1f:7b:74:b7:93:27:b3:c8:e4:e0:94:7d:9e:
2e:42:3f:e7:8d:5a:69:47:4e:8d:48:5d:d6:55:5e:31:2b:2e:
66:f2:69:61:8e:4d:d9:20:c7:81:2a:2f:92:3b:f8:e6:e4:e1:
8a:07:0c:e1:4c:d0:7f:e0:b2:3f:8f:41:70:3c:48:15:ef:12:
61:84:d0:0d:97:1e:29:c9:7d:cd:25:ee:ba:ac:f3:3b:9f:38:
8b:11:7f:28:11:b2:b7:2f:46:ba:85:d2:d6:1c:d7:07:40:db:
9a:11:5a:96:a4:7f:67:91:26:41:c2:54:43:6f:fa:fe:b5:63:
17:88:43:54:27:55:de:d4:1c:ab:02:95:b7:d6:08:f0:7b:3a:
40:33:1e:54:6c:43:e6:65:3b:cb:7e:60:54:63:b0:4c:b1:d1:
50:99:f7:0d:41:a8:b1:0e:ab:cd:a1:08:e4:e1:2d:8c:a6:95:
14:dd:d1:18:8e:8a:c2:b1:cf:b1:49:37:d3:d8:36:a2:16:59:
10:0a:54:99:22:94:f9:0d:f3:e5:55:aa:51:54:a8:8b:fe:51:
a2:8f:92:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:37 2025 by rpki-client