Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
File: aomTYnatLRhxB9-3QAeTADrBSac.mft (raw, json)
Hash identifier: lg8jL8Qj6oGlwcoLJ6BDI7Fg4Vqy884jcmQHrbf8XyU=
Subject key identifier: C0:59:DA:F9:79:6C:7F:37:F0:89:8B:2C:9E:12:76:52:29:A1:26:B3
Authority key identifier: 6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7
Certificate issuer: /CN=6a89936276ad2d187107dfb7400793003ac149a7
Certificate serial: 019A0110A52D59340A6DD9C8FF3B2F250E77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
Manifest number: 1673
Signing time: Mon 20 Oct 2025 10:00:59 +0000
Manifest this update: Mon 20 Oct 2025 10:00:59 +0000
Manifest next update: Tue 21 Oct 2025 10:00:59 +0000
Files and hashes: 1: aomTYnatLRhxB9-3QAeTADrBSac.crl (hash: x/4iWa5Awqn97FLYMkY9Gf/YDJr4TFHFb02miTc3upo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:10:a5:2d:59:34:0a:6d:d9:c8:ff:3b:2f:25:0e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a89936276ad2d187107dfb7400793003ac149a7
Validity
Not Before: Oct 20 10:00:59 2025 GMT
Not After : Oct 21 10:00:59 2025 GMT
Subject: CN=c059daf9796c7f37f0898b2c9e12765229a126b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ae:a6:5d:18:cd:10:e3:91:5f:f8:28:b9:a8:
39:36:36:16:12:23:52:96:55:60:ea:83:d8:80:c6:
cd:e2:7d:87:4c:a4:0c:5e:40:de:34:c7:bf:50:4e:
93:f9:30:91:51:d6:9f:db:2f:d2:6e:24:84:05:a9:
49:4a:54:52:1c:12:fb:6e:58:ea:4f:e6:e6:13:5e:
75:6b:2c:20:27:04:d4:17:92:7e:7c:70:39:ce:c4:
73:99:78:ee:92:58:df:38:f5:e8:30:b9:f1:4c:d8:
b6:36:29:e0:28:7f:a5:54:d2:4b:25:e6:5b:a1:b8:
32:4f:51:c4:11:0f:1e:1e:7e:71:78:75:0d:92:5d:
27:94:7b:d9:da:7b:b4:2f:e3:dd:93:d7:41:3d:9e:
7f:be:62:7d:42:63:a4:cf:62:b2:53:a2:91:af:f7:
45:fa:fe:f2:78:d8:11:6a:ed:da:c5:ba:f5:69:af:
ef:17:68:bf:77:fa:69:9b:9a:8a:61:56:26:35:dd:
e9:7a:c3:09:3e:50:2b:1e:c6:d4:21:24:13:e2:c4:
18:9c:b5:f1:01:5a:93:ae:21:87:12:73:c8:9c:da:
0a:f3:90:39:d7:ef:34:92:97:b3:28:60:0c:1c:07:
93:f1:d3:4f:f0:b0:03:80:b2:9b:81:58:a9:2d:df:
33:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:59:DA:F9:79:6C:7F:37:F0:89:8B:2C:9E:12:76:52:29:A1:26:B3
X509v3 Authority Key Identifier:
keyid:6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:61:22:0e:1a:80:14:fa:94:aa:2a:13:3c:b1:12:f0:fc:c9:
c1:5f:8d:88:90:1b:51:4e:67:69:e6:0f:cc:a5:c4:5d:43:22:
3e:76:e6:84:0e:ad:e6:e0:86:28:48:61:5c:57:96:47:b5:06:
50:b7:00:b0:51:57:be:ad:23:61:73:83:78:99:eb:db:9a:c1:
9f:b3:0c:9d:66:66:e4:31:01:18:bb:2a:10:68:39:fa:b0:b5:
d0:e2:86:27:0d:ca:a0:ad:bc:68:a1:6d:b6:52:06:ce:87:f5:
70:46:6a:f3:eb:7a:5d:ae:23:f2:37:e0:3d:23:58:5e:23:61:
cb:8f:8e:01:4d:cc:88:21:3f:7a:5a:97:f6:5b:03:69:84:99:
0f:61:f9:43:53:0c:9c:6c:b7:5f:14:96:d2:76:ff:0e:8f:9a:
81:aa:5e:02:49:ce:68:f5:0f:43:72:d0:b3:00:4a:d3:8e:30:
27:3b:b2:d3:b9:88:e8:d0:88:d0:49:7b:7e:79:81:1f:c9:98:
30:d5:2d:62:4c:b9:14:49:a2:27:32:55:06:f2:cb:e0:e5:92:
43:f9:42:6e:b6:9c:36:cd:7a:c6:7e:13:a7:20:66:0b:d2:62:
55:b2:58:ff:4d:e3:1d:77:cd:50:72:6c:f8:74:79:5e:98:41:
01:58:54:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:33:17 2025 by rpki-client