Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json)
Hash identifier: MRM43S3rsoDoenDOu3K+ptoQAY0wJKChvPanx3LysZ4=
Subject key identifier: F5:DE:BF:D1:14:68:12:89:A5:DD:EE:16:33:61:19:B5:95:9E:B0:CA
Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Certificate serial: 0199FD6B2FEC3A2621ED6094F69A0E301DFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
Manifest number: 1636
Signing time: Sun 19 Oct 2025 17:01:24 +0000
Manifest this update: Sun 19 Oct 2025 17:01:24 +0000
Manifest next update: Mon 20 Oct 2025 17:01:24 +0000
Files and hashes: 1: 5gxDURtK1rmOAdh1eWuh-NkY76k.roa (hash: QaQOgPlbLBzFETMJyWwYJQCd8vML1MyClKfr5uYQDoc=)
2: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: bAaXZnbv5Miyq+vj3SbrvdGD7wAjhCzyUazqKc4pokk=)
3: svZ0I0CIbPuXgkYBH_VdeOt4OII.roa (hash: qDnNSem+sBmAuaKOVojckKZEahJzHvEbGjkFY5x9Sqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:2f:ec:3a:26:21:ed:60:94:f6:9a:0e:30:1d:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Validity
Not Before: Oct 19 17:01:24 2025 GMT
Not After : Oct 20 17:01:24 2025 GMT
Subject: CN=f5debfd114681289a5ddee16336119b5959eb0ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3b:0f:d3:95:cb:e3:50:3f:5a:50:2a:9e:82:
b0:2d:78:be:dd:f1:c8:71:45:0f:2b:5c:8a:f0:02:
c8:32:01:57:9d:99:e3:cb:1c:c3:09:04:7c:5e:9e:
f3:a9:d2:ce:91:ce:ff:a1:01:ad:d5:2d:a3:23:31:
18:42:36:e6:ce:fe:87:5e:a9:fe:f3:4a:3c:bd:a8:
b7:42:7e:31:91:98:19:6a:df:9d:93:d7:72:97:31:
34:54:f2:3f:9b:12:47:7b:fd:f0:97:d3:ad:c3:6b:
78:ff:e1:57:f3:40:ba:c9:01:98:da:cb:27:76:7d:
48:8b:8a:6e:15:06:56:d6:a5:70:6c:92:64:9d:83:
44:dd:25:20:cc:42:e3:b3:ae:a6:b3:ea:14:1f:fa:
f1:21:78:9f:10:d1:b1:a6:3b:fc:04:15:48:1f:a3:
de:a6:b7:99:bf:68:e8:b5:2f:ea:62:6b:45:c8:e0:
38:7f:e2:20:75:93:0f:36:2c:51:5d:e4:a9:e2:60:
c8:5f:72:19:17:48:e8:03:c1:31:81:18:fa:b6:48:
cd:2a:0c:85:7f:21:dc:58:02:9f:89:00:58:1f:19:
b3:ef:e2:c2:cb:a5:2a:1a:8d:4e:0f:0d:6a:78:1c:
f2:38:86:78:d8:05:c7:e5:91:94:3d:e6:c8:9c:e9:
41:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:DE:BF:D1:14:68:12:89:A5:DD:EE:16:33:61:19:B5:95:9E:B0:CA
X509v3 Authority Key Identifier:
keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:f8:fd:c1:07:6d:82:f8:71:14:b0:36:07:cf:64:12:a2:28:
bd:ac:28:3b:3d:4b:3a:26:5f:ba:f6:2b:f2:47:e6:ff:29:e6:
0e:73:67:a1:5d:fb:98:de:d8:c8:b7:30:f1:b8:04:54:36:4d:
b3:c3:b6:a4:28:da:c3:ad:22:11:30:df:6f:43:cc:9f:95:6f:
9f:f5:07:cc:f8:7c:3e:15:e2:d3:70:8e:ed:d0:1a:5b:be:f6:
da:c2:f8:15:6e:b3:8a:99:e3:c5:e8:7b:4a:09:47:ac:21:a7:
3f:06:02:50:7a:9a:06:92:c2:86:1c:d1:cf:7f:72:fa:93:38:
ea:70:6b:40:2f:83:56:a5:95:61:84:02:67:53:43:f0:54:0a:
58:3e:0b:49:fa:cd:80:00:83:79:88:d2:d0:4b:b2:58:f0:40:
11:a4:5b:11:a9:e5:c2:08:4e:6a:d3:29:ac:56:e0:82:b5:fd:
9f:57:b0:61:6d:90:b5:5e:80:22:85:31:f7:2a:6e:a3:99:05:
b7:68:c8:95:4d:8e:91:30:46:c7:3d:d9:18:e7:6f:42:d0:81:
90:f1:60:70:77:bb:f7:83:ad:86:7b:ed:b5:a9:cb:18:a7:76:
c3:fc:c5:be:04:08:6a:88:de:db:ce:77:07:83:1a:ea:a6:b2:
2d:6d:3f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:00:21 2025 by rpki-client