Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
File: aomTYnatLRhxB9-3QAeTADrBSac.mft (raw, json)
Hash identifier: R6ZDJURPsnCbm8WkeUUGtbcE8vgEH2mrDg308NRZkiE=
Subject key identifier: CE:3A:05:83:AE:84:6D:49:BE:CE:1A:74:20:B5:97:3D:99:E7:97:65
Authority key identifier: 6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7
Certificate issuer: /CN=6a89936276ad2d187107dfb7400793003ac149a7
Certificate serial: 0198D7A940B07BAEF8896BCA99435FC18838
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
Manifest number: 15D9
Signing time: Sat 23 Aug 2025 16:00:50 +0000
Manifest this update: Sat 23 Aug 2025 16:00:50 +0000
Manifest next update: Sun 24 Aug 2025 16:00:50 +0000
Files and hashes: 1: aomTYnatLRhxB9-3QAeTADrBSac.crl (hash: elJd0u4wSG/qVPM7YGojuHCxPpGQp7GmyChE18bPeHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:40:b0:7b:ae:f8:89:6b:ca:99:43:5f:c1:88:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a89936276ad2d187107dfb7400793003ac149a7
Validity
Not Before: Aug 23 16:00:50 2025 GMT
Not After : Aug 24 16:00:50 2025 GMT
Subject: CN=ce3a0583ae846d49bece1a7420b5973d99e79765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:48:d3:26:85:c6:8b:ef:12:3b:83:b8:d8:11:
1c:30:c1:58:8b:bd:d6:6e:c8:ea:09:0e:22:21:45:
34:5f:65:dc:3a:89:94:2c:5f:c0:fc:fc:a5:14:db:
64:be:dc:23:0a:fb:91:ba:9d:f4:12:10:05:9a:72:
21:86:20:f2:89:3c:c8:52:02:20:07:1d:3c:cc:ff:
94:3e:7b:5b:8d:91:36:aa:3e:b5:ac:b5:bf:1a:68:
9f:8c:6b:69:ad:5c:2e:06:ae:c5:da:95:0f:b3:72:
c8:e2:ff:5e:5c:a3:70:da:bf:d6:f5:bd:6f:24:e3:
79:c3:0b:83:37:38:2d:72:87:16:c9:73:2c:96:17:
2e:7a:5b:00:67:84:60:08:f0:d0:1d:ca:f8:ad:f4:
21:b1:ec:57:84:2f:1e:3f:ec:9b:78:fa:f7:30:cb:
12:c2:73:9c:06:d6:41:2d:ac:41:d3:3f:b2:00:42:
63:a3:dd:11:46:c5:f2:14:95:1b:df:26:63:d3:31:
cc:b6:15:f9:9b:a1:d1:67:45:aa:79:e0:bf:3c:9d:
12:32:2f:47:06:a2:1e:ae:3b:bb:4b:9c:34:ba:b7:
7c:f5:8a:bc:15:e0:b0:ae:d6:bc:74:bc:08:6b:e2:
3d:60:a5:c1:4a:30:de:f4:cb:3d:b5:a8:0a:38:ae:
02:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3A:05:83:AE:84:6D:49:BE:CE:1A:74:20:B5:97:3D:99:E7:97:65
X509v3 Authority Key Identifier:
keyid:6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:de:a7:f0:9a:ca:20:8d:2a:ed:eb:cb:76:cc:ec:a6:90:06:
25:79:ae:69:03:e2:96:e9:c0:93:45:3b:08:33:d6:19:e6:17:
90:0c:1d:93:0b:cc:37:10:31:f5:98:50:ae:ad:db:a3:59:7e:
00:7b:46:58:57:c3:33:08:03:2b:d3:00:09:cc:be:0f:98:79:
1d:0f:34:72:d2:75:0b:26:54:a5:4d:27:da:5a:87:7d:6e:0b:
1d:23:89:9c:11:80:d9:e5:80:9e:1d:0d:02:ef:90:36:de:24:
75:d6:eb:8c:4d:5c:02:3f:a0:28:0a:f4:c1:cb:13:88:a2:7e:
33:0b:27:27:2e:b5:18:26:09:e4:6a:c2:1a:74:34:6a:3d:d1:
c8:5e:f1:d6:99:3b:1f:17:24:fa:21:37:a1:8e:82:4a:d5:4d:
93:8c:1b:fc:56:e5:21:20:da:51:84:27:2c:00:99:c3:13:1a:
5c:b8:c8:3b:a7:60:ac:14:0a:8c:d1:63:9b:a6:d5:28:18:4f:
5c:fb:31:52:22:aa:e1:a3:af:2d:bc:81:02:f9:b0:bc:97:96:
fc:53:9b:3c:5d:0b:e8:64:79:d2:ed:64:25:ba:2c:8e:50:9f:
d9:df:c4:b9:e8:cf:b2:cd:26:fd:f8:04:31:a8:7b:70:74:dd:
f2:d3:a2:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXqUCwe674iWvKmUNfwYg4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhODk5MzYyNzZhZDJkMTg3MTA3ZGZiNzQwMDc5MzAwM2Fj
MTQ5YTcwHhcNMjUwODIzMTYwMDUwWhcNMjUwODI0MTYwMDUwWjAzMTEwLwYDVQQD
EyhjZTNhMDU4M2FlODQ2ZDQ5YmVjZTFhNzQyMGI1OTczZDk5ZTc5NzY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEjTJoXGi+8SO4O42BEcMMFYi73W
bsjqCQ4iIUU0X2XcOomULF/A/PylFNtkvtwjCvuRup30EhAFmnIhhiDyiTzIUgIg
Bx08zP+UPntbjZE2qj61rLW/GmifjGtprVwuBq7F2pUPs3LI4v9eXKNw2r/W9b1v
JON5wwuDNzgtcocWyXMslhcuelsAZ4RgCPDQHcr4rfQhsexXhC8eP+ybePr3MMsS
wnOcBtZBLaxB0z+yAEJjo90RRsXyFJUb3yZj0zHMthX5m6HRZ0WqeeC/PJ0SMi9H
BqIerju7S5w0urd89Yq8FeCwrta8dLwIa+I9YKXBSjDe9Ms9tagKOK4CwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM46BYOuhG1Jvs4adCC1lz2Z55dlMB8GA1UdIwQY
MBaAFGqJk2J2rS0YcQfft0AHkwA6wUmnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYW9tVFluYXRMUmh4QjktM1FBZVRBRHJCU2FjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi8yYWI2MmQtMDcwYy00YjA2LWIzOGEt
NzNhN2E0NzM2MDM4LzEvYW9tVFluYXRMUmh4QjktM1FBZVRBRHJCU2FjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi8yYWI2MmQtMDcwYy00YjA2LWIzOGEtNzNhN2E0NzM2MDM4
LzEvYW9tVFluYXRMUmh4QjktM1FBZVRBRHJCU2FjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOd6n8JrK
II0q7evLdszsppAGJXmuaQPilunAk0U7CDPWGeYXkAwdkwvMNxAx9ZhQrq3bo1l+
AHtGWFfDMwgDK9MACcy+D5h5HQ80ctJ1CyZUpU0n2lqHfW4LHSOJnBGA2eWAnh0N
Au+QNt4kddbrjE1cAj+gKAr0wcsTiKJ+MwsnJy61GCYJ5GrCGnQ0aj3RyF7x1pk7
Hxck+iE3oY6CStVNk4wb/FblISDaUYQnLACZwxMaXLjIO6dgrBQKjNFjm6bVKBhP
XPsxUiKq4aOvLbyBAvmwvJeW/FObPF0L6GR50u1kJbosjlCf2d/EuejPss0m/fgE
Mah7cHTd8tOiIw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:39:48 2025 by rpki-client