Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
File: AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft (raw, json)
Hash identifier: k+sxukd7f+mGbDGbvVDvTqwaGOv3VjEOJs2Em/NnXvI=
Subject key identifier: C5:DA:AE:EF:21:7D:5C:9F:43:16:59:BC:1C:BB:50:FB:0B:F4:3A:AC
Authority key identifier: 00:08:58:94:96:BF:86:D2:D0:F8:87:4B:76:CA:C8:43:02:5B:CD:3B
Certificate issuer: /CN=0008589496bf86d2d0f8874b76cac843025bcd3b
Certificate serial: 0197B74598B77A2B98A85CD40215617297A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
Manifest number: 0E77
Signing time: Sat 28 Jun 2025 16:01:20 +0000
Manifest this update: Sat 28 Jun 2025 16:01:20 +0000
Manifest next update: Sun 29 Jun 2025 16:01:20 +0000
Files and hashes: 1: AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl (hash: Eo7NC2kHI0HcZjNZmPDP9SszrxSzN78bq6S4YbmE1Bw=)
2: D6FQ_AOx7VEUAwBlUYJ5Pt1jupM.roa (hash: 4lHXyj3pRBx2LFAwlRyUS6mFr8ntH6TaBTAezCtdNUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:98:b7:7a:2b:98:a8:5c:d4:02:15:61:72:97:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0008589496bf86d2d0f8874b76cac843025bcd3b
Validity
Not Before: Jun 28 16:01:20 2025 GMT
Not After : Jun 29 16:01:20 2025 GMT
Subject: CN=c5daaeef217d5c9f431659bc1cbb50fb0bf43aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c9:49:51:48:52:08:c1:75:43:ff:0e:96:32:
96:32:54:ed:fa:45:b2:a9:9a:8a:61:d3:c2:07:b0:
0c:97:7b:c8:2d:ff:f7:6d:77:01:9d:5f:08:4a:42:
b9:4c:c5:df:eb:69:f6:6d:be:47:04:9c:45:91:4d:
e7:f4:69:a8:2e:6a:20:c4:4b:7e:7a:41:4d:77:27:
16:0b:75:74:70:7e:8e:8b:3b:ac:15:00:b4:a9:5c:
54:7c:02:d6:0b:18:39:8b:76:fd:5a:16:6d:97:d0:
6d:90:b1:dd:47:dc:c0:d0:19:01:d1:37:13:ad:cd:
8c:6f:4b:0c:55:60:0b:b6:0e:30:d0:1b:c8:9a:d8:
70:d2:c5:1a:03:19:6d:bb:f5:9a:cf:12:1a:b7:7e:
cb:56:d2:85:6e:a2:42:35:4b:cf:e5:c8:64:c8:f7:
dd:37:21:91:a2:66:89:24:73:83:62:26:2d:78:67:
da:08:c1:25:6f:d8:93:33:cb:c9:ad:6a:94:ad:b3:
53:7b:09:93:ed:cd:1f:aa:26:62:bf:ac:62:5d:ad:
f2:35:e7:a0:8e:0e:b6:22:13:54:51:0d:26:89:90:
c2:e2:72:01:66:c6:3f:08:9c:12:d1:50:7e:2c:7e:
0d:94:fa:38:b1:cc:cc:99:6d:de:60:22:f7:1d:2a:
24:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:DA:AE:EF:21:7D:5C:9F:43:16:59:BC:1C:BB:50:FB:0B:F4:3A:AC
X509v3 Authority Key Identifier:
keyid:00:08:58:94:96:BF:86:D2:D0:F8:87:4B:76:CA:C8:43:02:5B:CD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:ce:64:7d:d1:91:0b:ac:11:d4:4a:8f:cb:d9:05:73:5d:b2:
03:85:02:1a:c3:76:e7:71:c2:fd:85:ba:89:3e:c0:73:31:81:
f9:6e:28:e3:e6:2e:62:ac:d4:59:fa:c6:5f:d5:e4:37:34:f8:
4d:59:aa:20:f7:91:1a:e1:9e:a4:6f:8f:01:34:03:60:d4:20:
c6:b0:5d:24:d3:fe:e1:8b:c5:5c:ac:6a:33:53:dd:9e:2d:29:
20:d7:1d:52:85:60:a9:cf:4a:68:a4:17:0e:0f:34:cf:97:78:
fb:9a:b3:be:6d:12:ce:4a:4f:e2:27:7c:d0:ad:94:1c:be:e5:
00:79:39:c5:ed:71:72:33:ab:3b:db:9e:53:c7:a3:3d:78:40:
d5:d9:75:c5:b6:ee:7d:71:fc:c1:34:eb:03:d1:a8:4d:b5:04:
f4:e2:11:36:a2:fd:be:a2:b7:9b:2d:2a:e2:9b:9f:4a:2b:98:
27:31:58:6b:60:a0:50:5e:6f:ca:fb:81:e7:07:9a:ee:48:ea:
40:78:33:b6:d1:93:31:2e:08:cb:9b:9b:33:fb:da:ed:b8:d4:
cf:6b:f0:ba:25:98:3e:91:a2:09:3e:42:92:fb:24:b9:17:af:
31:d3:cd:67:be:65:3d:d4:4c:b1:22:26:78:b9:44:87:15:f2:
4b:36:da:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:58:16 2025 by rpki-client