Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json)
Hash identifier: DfLtZfM5oYQIM98OxqFrHd0kFtLNIHq1Ebs32wvOImM=
Subject key identifier: 93:8B:BF:9C:F6:F1:C6:B6:A3:D3:05:AD:09:B1:D7:62:0A:1A:9A:AE
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 0199FD341216766E474EB615219F8053A729
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 16:01:12 +0000
Manifest this update: Sun 19 Oct 2025 16:01:12 +0000
Manifest next update: Mon 20 Oct 2025 16:01:12 +0000
Files and hashes: 1: Q01X85MGyHMF5rr2gbqyxSbVGJU.roa (hash: 3pLndBzBIS9IcjtzdUX4XacaMZCMolKRG+4KwxWHWEU=)
2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: eJRHkZnU5b4yrdLh0aPPH29fL40T9rYKvl76Z7DkDKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:12:16:76:6e:47:4e:b6:15:21:9f:80:53:a7:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: Oct 19 16:01:12 2025 GMT
Not After : Oct 20 16:01:12 2025 GMT
Subject: CN=938bbf9cf6f1c6b6a3d305ad09b1d7620a1a9aae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:40:cd:fb:7e:7e:73:43:24:e9:1f:0b:3b:9c:
cb:b9:88:d1:50:4c:90:5b:25:36:19:76:36:ea:cf:
fb:ec:37:aa:89:98:f6:28:94:81:68:2c:9e:33:ce:
56:26:70:08:04:84:37:25:65:8f:b0:d9:0f:31:e7:
32:53:ac:d6:de:16:c4:d1:63:55:9c:10:56:aa:23:
74:e6:a4:09:58:8b:77:8a:1a:07:ba:47:3b:b4:96:
dd:14:a4:6e:d5:ce:81:13:1d:b1:3a:67:b9:66:ce:
85:10:83:44:02:be:32:d3:bf:95:31:ea:f1:df:b2:
55:ed:2a:26:1e:f8:a6:1f:f9:07:82:10:a4:27:f0:
92:84:a9:f0:e5:f6:fb:83:8b:fd:f2:e8:f7:c5:d7:
68:6c:59:3a:1e:47:57:33:6a:7b:77:21:25:89:ab:
37:bb:b5:c5:d7:f2:19:3b:57:6b:93:c8:cd:e2:b9:
d0:81:c8:b7:9d:32:08:58:f6:78:f9:c2:57:55:cd:
d2:56:77:7f:f5:84:a4:e1:40:49:e4:a3:ca:49:48:
1d:c4:83:fd:86:8e:b2:1d:fe:09:76:74:e9:62:2d:
39:f9:19:26:69:41:bc:a1:d7:61:61:d1:27:25:e7:
3f:eb:8e:f2:2a:25:26:fc:6e:e5:0f:4c:38:63:31:
d7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:8B:BF:9C:F6:F1:C6:B6:A3:D3:05:AD:09:B1:D7:62:0A:1A:9A:AE
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:e7:f2:9b:14:77:3c:ed:49:12:38:7a:13:29:b0:56:9d:ef:
d7:9d:a9:99:7f:f4:7b:65:2c:a3:4c:db:8f:06:48:21:97:ea:
f6:7a:12:4b:75:b9:69:64:10:08:a4:36:41:d1:79:24:fe:e0:
46:9e:d0:92:e1:c7:c7:40:a0:82:16:8b:6e:16:45:d4:54:11:
94:ac:29:f4:5e:81:22:af:36:a0:da:62:a4:f4:03:b7:9c:bd:
11:23:d1:53:4c:6c:47:80:87:78:d7:b8:aa:bb:c0:7d:d4:e6:
82:f2:8a:d5:7e:8a:ed:d5:b0:4b:a4:5b:13:b7:e0:b7:cf:31:
06:61:59:16:36:25:da:d7:cd:e3:a5:26:18:be:96:ba:06:05:
cf:29:18:1e:d9:3a:1c:d4:36:6f:0f:20:ff:36:cd:63:71:52:
25:af:1d:5a:3e:a2:26:e2:f3:f5:e0:52:6e:78:30:e9:8a:6c:
fc:95:85:35:6a:8b:7c:71:72:82:7c:88:c2:34:b6:fa:e4:b5:
0d:df:29:e1:54:5d:4f:69:ee:55:a8:be:a2:c6:8a:af:28:f2:
f5:8e:29:b1:2f:0b:4b:8a:38:9d:d7:85:3f:4d:f9:d5:c3:05:
14:45:ab:22:36:36:b9:96:31:64:52:75:e7:6b:f9:38:a5:f4:
ec:c1:c9:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:32:00 2025 by rpki-client