Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
File: aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft (raw, json)
Hash identifier: kuLFQpt6GnZMHiLVCYGcL207r1yNICgixwYBhOv+NZA=
Subject key identifier: 57:BA:23:58:BC:6C:85:F1:37:9B:7E:E9:CC:B5:B2:33:55:16:25:28
Authority key identifier: 68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
Certificate issuer: /CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Certificate serial: 0198D705B3BFD54D79EC22E25468C39F962F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
Manifest number: 060D
Signing time: Sat 23 Aug 2025 13:02:11 +0000
Manifest this update: Sat 23 Aug 2025 13:02:11 +0000
Manifest next update: Sun 24 Aug 2025 13:02:11 +0000
Files and hashes: 1: VftZMAe-HTAVpMfwxes2FDGztqs.roa (hash: KKajIYpdkVhXrGRISoXddoe+7uEBtFz7JC2M/TbIWjs=)
2: aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl (hash: kvfSRX7pCDCrP03x2M8hQllbLtScJv9HyS1snUdLq5g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:b3:bf:d5:4d:79:ec:22:e2:54:68:c3:9f:96:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Validity
Not Before: Aug 23 13:02:11 2025 GMT
Not After : Aug 24 13:02:11 2025 GMT
Subject: CN=57ba2358bc6c85f1379b7ee9ccb5b23355162528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d9:23:c9:51:ec:6d:ef:14:79:6c:12:54:4f:
0c:4b:84:ec:9c:d0:27:b7:25:95:e4:4a:86:38:45:
46:0b:0c:1c:3f:b7:9e:65:7d:45:4c:af:4a:02:c6:
67:58:f9:d1:e3:d9:1f:27:4d:de:ce:90:a2:87:18:
c0:61:0d:fe:45:1d:f2:b8:a9:a7:19:e1:7f:17:9e:
ef:35:05:b5:c7:2f:dd:16:68:63:fe:75:5e:03:fb:
d5:59:3f:dc:8b:57:d7:b5:a0:86:e3:0d:98:7d:47:
d3:08:9c:4e:87:85:c5:7b:17:77:58:f5:43:38:ac:
09:90:4e:7c:ab:89:99:7d:8e:24:8f:fd:03:bf:d2:
e5:8c:02:74:13:29:ac:a9:b0:74:40:98:ad:3f:d9:
29:3d:94:35:18:4c:bc:38:fd:e6:68:e0:23:bf:46:
81:76:24:74:bf:eb:3e:72:dd:ec:2b:6d:96:51:6f:
e2:c5:ef:92:92:00:27:51:77:63:db:06:0f:28:75:
2e:e2:5a:a2:21:4b:0e:4d:ee:1e:a5:65:3a:98:9e:
76:91:14:c0:23:7c:b8:60:c1:41:fb:5d:dd:c6:b6:
70:03:ce:d4:18:c4:f4:18:ff:27:d7:e2:9b:f3:c2:
02:8b:cd:c4:26:fe:3c:26:d5:da:20:e2:21:b2:b0:
bd:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:BA:23:58:BC:6C:85:F1:37:9B:7E:E9:CC:B5:B2:33:55:16:25:28
X509v3 Authority Key Identifier:
keyid:68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:0a:22:69:ff:42:86:f6:29:3c:51:2b:d8:e0:3c:35:b0:a8:
9c:6e:d8:76:51:0b:73:e0:e6:c7:d4:e2:c1:dc:3e:01:e3:73:
a7:ec:01:b9:98:be:4b:82:cb:a1:8f:dc:8e:13:24:56:61:d4:
46:4a:68:6e:77:d0:a7:19:4c:02:c7:a9:1a:b6:f1:d0:32:a0:
1d:2f:45:f3:b1:74:e0:88:7d:02:fd:14:2d:a9:26:1f:3f:65:
ca:26:f1:48:12:f9:80:50:b1:e8:a4:10:84:2b:2a:7a:f6:24:
20:33:77:25:02:8c:f5:ae:b9:02:d4:6b:96:2f:1f:1d:5f:72:
df:1b:f0:13:c7:49:57:2b:69:49:1d:85:61:8a:dc:79:6a:46:
2b:ca:84:66:f7:a9:e2:73:62:6b:af:5c:4e:c3:b6:69:94:dd:
ff:0d:e4:da:d6:f1:85:0d:95:61:10:04:6f:c8:08:80:d8:0e:
e3:18:35:c3:8c:78:03:f0:93:ac:fb:36:d1:5d:e6:b2:2f:5c:
9e:42:a6:7a:e1:72:d0:00:09:73:9a:63:03:5f:d8:22:7d:a1:
f6:23:30:20:8e:42:cd:ae:2f:b5:9d:07:dc:2c:26:28:bb:d4:
0f:45:43:a4:15:2f:81:2f:64:a6:8c:84:f3:10:31:9d:33:a9:
71:ab:a0:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:44:48 2025 by rpki-client