Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft
File: aXJqlhM2--eCCz10joEvSVyHLTU.mft (raw, json)
Hash identifier: kwk+7pSkx+zYWN5lESYZVflj1Q0xZ4UQ77bcIZYrl3o=
Subject key identifier: 21:B2:57:D0:AC:02:7D:CD:81:12:67:85:9C:79:BC:5B:BC:9E:E2:15
Authority key identifier: 69:72:6A:96:13:36:FB:E7:82:0B:3D:74:8E:81:2F:49:5C:87:2D:35
Certificate issuer: /CN=69726a961336fbe7820b3d748e812f495c872d35
Certificate serial: 0198D5BC4725E207290BDB4C68779B74376F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXJqlhM2--eCCz10joEvSVyHLTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft
Manifest number: 0E39
Signing time: Sat 23 Aug 2025 07:02:22 +0000
Manifest this update: Sat 23 Aug 2025 07:02:22 +0000
Manifest next update: Sun 24 Aug 2025 07:02:22 +0000
Files and hashes: 1: TPjf70pa6qBZmpfYB0iX9CcL4Y4.roa (hash: swAbvLbVBmlLATlL/hX7o87L+INYtKkOcONzc8lraTI=)
2: aXJqlhM2--eCCz10joEvSVyHLTU.crl (hash: nU2UeIAdE/fMG10Ng6/0v+U2yeDafVmmlCETIlXIdhs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aXJqlhM2--eCCz10joEvSVyHLTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:47:25:e2:07:29:0b:db:4c:68:77:9b:74:37:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69726a961336fbe7820b3d748e812f495c872d35
Validity
Not Before: Aug 23 07:02:22 2025 GMT
Not After : Aug 24 07:02:22 2025 GMT
Subject: CN=21b257d0ac027dcd811267859c79bc5bbc9ee215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dd:8b:8a:fc:47:17:94:ac:9e:c8:4f:9a:26:
16:2c:e9:d9:da:f4:23:ae:88:a7:a2:b9:bf:31:50:
21:39:65:2e:94:95:e7:9f:7d:22:55:4c:42:d4:6c:
25:4a:59:42:a5:e3:96:60:96:1e:58:e4:57:e4:5d:
6e:e1:dd:10:bb:7d:0a:06:74:2b:4c:fb:b3:93:4d:
03:6a:8b:0a:a9:29:18:84:9f:5d:46:78:79:bd:19:
7d:67:fe:88:f9:0e:49:0f:fe:51:a5:6c:75:4f:49:
e8:c6:26:2d:58:77:11:f9:c7:c8:63:36:cb:18:7d:
8d:50:a9:7f:97:fa:e5:9d:5d:c2:ec:3b:4a:60:a4:
0b:30:55:c0:23:a2:2f:ca:51:be:2b:04:7f:dd:e9:
84:c4:29:7e:26:08:57:6b:ab:29:91:79:8b:12:eb:
a2:fe:5f:20:84:39:a9:b8:c9:ae:72:4d:f1:cd:57:
e9:f0:f6:b9:ea:d5:31:8a:57:61:ee:5b:ef:e4:8c:
b9:6f:57:36:63:06:90:1e:db:5e:ae:0c:c6:05:99:
69:74:97:e1:a0:99:70:ae:2a:0b:97:4e:2c:63:fd:
16:50:ad:a3:17:28:0e:ca:17:c0:15:f3:cc:f3:1f:
68:d4:ed:4e:f2:a6:b2:b3:4d:ff:ae:a7:82:18:b7:
8c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:B2:57:D0:AC:02:7D:CD:81:12:67:85:9C:79:BC:5B:BC:9E:E2:15
X509v3 Authority Key Identifier:
keyid:69:72:6A:96:13:36:FB:E7:82:0B:3D:74:8E:81:2F:49:5C:87:2D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXJqlhM2--eCCz10joEvSVyHLTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:1b:da:8c:6c:a6:87:26:27:86:5a:0c:64:b7:77:eb:e8:fc:
ce:64:9d:1d:68:c8:db:5e:ec:aa:43:f2:bf:7b:04:b0:70:f6:
f9:3c:89:bd:ea:d6:16:d1:71:9e:81:63:17:68:62:1c:9e:d1:
ab:69:11:51:f5:67:79:c2:6f:a6:6c:bb:2a:d6:c8:bb:e1:42:
85:3f:2b:ba:5e:6b:17:a0:7b:dc:35:3b:b7:78:4f:3a:95:eb:
1c:a7:9d:0d:94:f2:e9:16:af:26:6c:60:42:6f:ae:f7:2c:e3:
15:3a:84:4d:31:df:ac:10:43:15:f3:25:de:05:7c:3a:3e:5c:
00:c0:6d:19:b9:0c:d6:eb:0c:37:eb:09:a3:2e:19:56:20:e6:
19:73:a9:12:81:4d:39:d0:c7:d8:66:e0:c7:ae:f1:59:7b:51:
0a:46:b8:f7:c8:32:d1:38:ac:b5:1f:43:d5:ce:06:f2:10:12:
6f:5a:26:b5:44:98:ce:ec:2a:97:70:41:e6:53:54:57:2b:3e:
97:51:a3:7a:a4:ce:8b:ec:77:94:a2:21:ae:0b:91:60:9d:58:
3c:16:cf:aa:ea:e2:e0:27:29:d9:b9:a2:d7:0e:47:aa:a6:9d:
c6:e8:a4:f3:ad:75:60:5a:db:56:00:0e:38:30:c6:b3:ac:01:
59:79:a3:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:04:53 2025 by rpki-client