Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
File: ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft (raw, json)
Hash identifier: PCZWMpaNIxzsyU2GV+OL/isnNjzY5sC+Fx8hNAytI38=
Subject key identifier: B9:45:1F:34:9B:16:F5:95:F8:1D:A5:6B:3D:03:AF:D8:3E:2C:12:E8
Authority key identifier: 6B:20:81:8B:18:6B:0B:9C:B0:9A:F5:42:0D:1E:5A:E3:34:FE:39:74
Certificate issuer: /CN=6b20818b186b0b9cb09af5420d1e5ae334fe3974
Certificate serial: 0198D515A843BBB161BE85EBA3AF218CA6D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 04:00:22 +0000
Manifest this update: Sat 23 Aug 2025 04:00:22 +0000
Manifest next update: Sun 24 Aug 2025 04:00:22 +0000
Files and hashes: 1: ayCBixhrC5ywmvVCDR5a4zT-OXQ.crl (hash: r/L1l0oLW7YWtSiTnZ2KULkkcD4qiEy7kKPL0pNpapI=)
2: o_9E0nw7QGxoWCZk4QqgNmZyf9E.roa (hash: 1PmMo5WtlImsrpdUj9rWhTyVCZubOTGK5D/YW7g4Mss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:a8:43:bb:b1:61:be:85:eb:a3:af:21:8c:a6:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b20818b186b0b9cb09af5420d1e5ae334fe3974
Validity
Not Before: Aug 23 04:00:22 2025 GMT
Not After : Aug 24 04:00:22 2025 GMT
Subject: CN=b9451f349b16f595f81da56b3d03afd83e2c12e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c7:ab:52:b8:3e:c9:3a:ff:9d:a1:7b:a3:c6:
f8:ef:44:53:10:4e:3c:ff:13:18:5f:aa:e9:f8:5b:
fb:99:e2:a2:d6:cf:cf:fa:02:43:c7:b6:32:6d:c5:
55:a7:65:03:a1:f8:3a:dc:e2:22:d6:76:c6:3d:b1:
b0:8f:2b:19:7c:61:b4:16:33:5b:a0:c4:c2:67:f9:
ad:29:c3:dd:4b:bd:4e:e3:1d:da:df:e2:7d:42:2b:
ab:9f:cb:81:e5:41:72:b3:85:fa:94:42:13:a2:39:
c7:40:77:b5:3a:56:50:79:7f:c9:40:c5:e5:5a:01:
86:02:a5:2c:56:27:62:5a:44:31:d5:ba:12:58:3b:
4a:5e:04:0d:83:44:a1:72:6d:a1:21:9b:ea:7d:b5:
06:17:31:26:69:d5:45:17:86:74:3c:32:16:f0:a9:
37:4e:1e:ee:a7:8a:75:dd:49:74:0d:97:c6:85:c4:
45:60:ee:3d:6e:47:4c:8e:8b:06:f5:64:8b:ad:f6:
6f:92:e0:7d:dc:6a:ba:cb:10:57:1c:a8:47:33:f6:
00:96:3e:ed:78:65:e1:5d:69:dd:23:cc:43:ee:50:
18:ff:a4:88:3a:2d:5b:99:e6:3e:4c:98:d0:3d:b4:
1c:b9:0c:f6:8a:d5:a0:e3:31:5c:75:fa:51:95:d1:
56:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:45:1F:34:9B:16:F5:95:F8:1D:A5:6B:3D:03:AF:D8:3E:2C:12:E8
X509v3 Authority Key Identifier:
keyid:6B:20:81:8B:18:6B:0B:9C:B0:9A:F5:42:0D:1E:5A:E3:34:FE:39:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:50:35:e6:81:2e:29:83:56:7d:c3:6b:b2:48:c3:b1:c1:23:
21:2b:e7:e4:57:f4:cb:27:1c:a1:3c:a3:86:71:e8:fb:e6:33:
c7:f9:3b:d5:54:71:65:2d:d9:ba:ef:5a:fc:22:49:8f:d2:ff:
b4:77:a9:ca:e6:4e:ec:04:6f:ea:c5:8a:e7:96:4e:c3:b0:cd:
ff:9e:5e:98:b8:91:a8:8f:86:43:d0:97:61:10:e2:dc:39:4d:
da:2f:75:c2:ea:66:fc:28:97:f0:7c:85:de:21:fe:8a:d0:bb:
0a:c1:88:76:4b:fd:5d:eb:b4:94:ae:1e:9f:06:11:84:a5:c7:
0b:3f:e6:11:b6:8a:38:13:88:b5:4c:1a:26:30:2c:64:7c:26:
98:60:ee:b8:16:d3:2e:59:1f:aa:50:03:0f:5c:b7:0a:4d:3a:
19:0d:a7:f7:4e:52:a2:a6:f4:8c:e9:fd:47:03:0e:7c:9c:ca:
1b:6a:b4:db:b6:e2:7e:fb:1a:9a:8b:54:cc:89:a0:40:c4:9b:
16:d8:b4:bd:64:83:9c:49:ad:73:ce:a5:16:b9:9b:9b:90:a0:
b1:8c:f6:d6:b8:c7:08:5c:91:af:26:ec:c8:ec:b6:49:70:de:
93:9a:27:a6:a5:60:95:b7:06:66:bc:9b:cc:d9:8a:39:c1:31:
2b:e4:82:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:36:11 2025 by rpki-client