Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
File: aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft (raw, json)
Hash identifier: jhbDgXvWN3CO51Hj0crb3wiR1slN27dSDo/f7W4JfFg=
Subject key identifier: 7F:42:E0:18:62:E1:00:A1:83:68:44:C5:E1:8C:65:10:D3:5F:D0:FF
Authority key identifier: 68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
Certificate issuer: /CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Certificate serial: 0199FE7D9E7F42AC41017C3E75080B617165
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
Manifest number: 06A6
Signing time: Sun 19 Oct 2025 22:01:09 +0000
Manifest this update: Sun 19 Oct 2025 22:01:09 +0000
Manifest next update: Mon 20 Oct 2025 22:01:09 +0000
Files and hashes: 1: VftZMAe-HTAVpMfwxes2FDGztqs.roa (hash: KKajIYpdkVhXrGRISoXddoe+7uEBtFz7JC2M/TbIWjs=)
2: aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl (hash: NR7LXBnOQMe46gmqE5siShNU+iBe4J7sPdySjp/72MQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:9e:7f:42:ac:41:01:7c:3e:75:08:0b:61:71:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Validity
Not Before: Oct 19 22:01:09 2025 GMT
Not After : Oct 20 22:01:09 2025 GMT
Subject: CN=7f42e01862e100a1836844c5e18c6510d35fd0ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:fe:8c:a9:66:74:a5:91:f7:21:8f:cf:ca:3e:
32:ea:72:b6:a3:dc:18:1b:d6:cf:02:4f:17:01:5e:
30:8d:98:f6:a1:76:46:69:5a:04:80:d7:7d:50:82:
a5:5a:50:3e:7b:56:4a:92:0b:6b:eb:56:5a:96:15:
a7:98:24:17:8e:e8:50:dd:20:0d:72:3b:83:86:08:
8b:27:73:e5:4c:40:cd:b2:7d:eb:78:73:fc:51:af:
64:c8:e8:10:5c:44:be:22:c9:84:57:62:51:11:a4:
ae:52:18:f6:2a:d5:12:10:97:10:82:1c:1d:20:e3:
5e:3a:8a:d5:c4:ea:57:e2:fc:ce:0b:e6:88:30:0d:
cd:dc:99:ba:48:34:0f:4f:1b:0f:58:56:d7:9a:20:
15:cf:ed:64:34:c4:9c:ef:8b:31:12:3b:f5:32:4a:
85:4a:83:4f:ac:c7:10:36:ee:e8:65:93:f8:f0:c4:
c7:49:76:b4:b9:fb:c0:81:c4:a1:e5:d1:90:19:02:
c4:96:9a:6b:27:b8:73:8a:69:ca:5d:ab:4c:62:88:
fc:8e:cc:0a:0a:33:ee:d3:8a:bd:71:6f:80:c5:f9:
b3:67:a1:99:3b:54:df:fa:ad:62:0a:d8:97:2f:21:
b0:b8:ba:09:a5:0a:2a:11:e8:cd:8f:07:77:0b:24:
19:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:42:E0:18:62:E1:00:A1:83:68:44:C5:E1:8C:65:10:D3:5F:D0:FF
X509v3 Authority Key Identifier:
keyid:68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:ec:78:10:65:b1:2c:21:dc:1e:f6:7e:b4:d0:b1:15:9c:c7:
54:7f:33:a7:b0:0e:49:55:b8:d1:23:06:b4:7b:c8:bf:c9:9b:
f8:e8:87:3f:4f:e9:36:4a:31:00:55:2a:ed:f3:8d:33:0b:99:
30:7d:d1:95:34:3b:8f:5c:ac:47:b9:d9:12:c7:a8:e6:4c:ed:
da:82:8b:b5:ee:99:12:00:71:24:61:d3:f1:ad:6e:f9:30:f4:
02:f7:aa:c4:c1:60:4b:04:0d:cb:bc:5f:d0:a7:3f:52:da:05:
05:0a:c0:a9:6c:00:8d:0e:65:19:82:22:55:c6:11:7f:08:7e:
9f:f1:6c:0d:aa:56:86:c5:e8:d1:cf:08:ff:0e:67:31:27:25:
98:c6:34:dd:cd:b9:3a:00:a1:7b:fb:f4:64:d8:e3:48:f5:96:
ef:c6:72:46:10:95:1d:03:76:a0:76:58:00:40:4d:af:85:79:
33:07:c8:a2:4e:fc:a1:03:3c:36:50:72:1a:96:62:f5:65:97:
dc:5f:d7:ec:55:14:53:a6:e9:2f:9b:f0:b7:85:00:b9:f2:8a:
5e:28:2b:ee:00:1e:99:3d:01:b0:10:52:d9:fc:9e:a6:8d:19:
1a:36:26:5b:9c:9e:cc:c7:fb:21:40:08:22:12:7f:f8:ff:ee:
24:42:ec:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:11:15 2025 by rpki-client