Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
File: AoNhMH79nzq-_mm9FN4OG9YLbmo.mft (raw, json)
Hash identifier: 2oo+vTwOJAo11KHJAxkVPAl5fxR3pfqOl23y7q5DQ8E=
Subject key identifier: F6:42:32:DC:64:19:FD:AB:24:7A:53:9E:5C:7D:60:7D:0D:C1:4E:DB
Authority key identifier: 02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
Certificate issuer: /CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Certificate serial: 0199FFFE6208008BDCBAB6585D05CD6A4AB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
Manifest number: 16E6
Signing time: Mon 20 Oct 2025 05:01:25 +0000
Manifest this update: Mon 20 Oct 2025 05:01:25 +0000
Manifest next update: Tue 21 Oct 2025 05:01:25 +0000
Files and hashes: 1: 2Zm15nya-qIgvvpfAijKMsgEkJ4.roa (hash: R6UtE66nKKM8V86y41wgOOrSUcLC3hcokGTEuECcZNA=)
2: AoNhMH79nzq-_mm9FN4OG9YLbmo.crl (hash: bEazQvYSDSIs6RjWl9gFYBvavuEZjU7mWm+1H9hVQnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:fe:62:08:00:8b:dc:ba:b6:58:5d:05:cd:6a:4a:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Validity
Not Before: Oct 20 05:01:25 2025 GMT
Not After : Oct 21 05:01:25 2025 GMT
Subject: CN=f64232dc6419fdab247a539e5c7d607d0dc14edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:bf:f0:be:0d:ca:f8:24:42:ac:e8:3a:2a:5f:
15:61:17:f8:bc:49:0b:00:36:31:e5:93:b2:fa:73:
87:a5:d8:d3:4b:8b:ca:61:86:c7:82:5d:6d:4b:0d:
5f:ef:ef:6b:44:07:75:f4:6e:53:61:0a:2c:b3:71:
d2:71:db:7d:a7:c1:a0:6a:ca:46:57:e9:ea:3c:6f:
f8:4d:a3:41:f0:a9:e1:47:62:87:3b:99:83:3e:fc:
df:e9:a4:13:da:0f:9c:27:1d:ba:cb:f7:65:db:06:
6b:e9:35:02:e3:98:30:6d:28:45:8f:a5:bb:fb:6b:
eb:65:6f:aa:a0:58:25:7a:be:bf:f5:f6:aa:5a:1e:
89:27:5c:e5:70:2c:ac:01:02:4f:41:3a:73:e1:1c:
f2:bd:a1:49:38:76:13:2c:9d:c9:fa:b2:98:66:27:
14:ab:6c:f9:f8:fb:1a:16:d3:83:98:c1:84:0f:49:
b4:e9:0d:f4:4e:25:95:26:1a:8d:3e:89:4d:9c:f3:
48:4c:cb:fa:12:c2:78:8a:02:f5:49:83:f9:7c:9a:
da:f0:27:83:04:57:0d:87:04:d9:cd:2e:e9:00:75:
69:da:63:57:ad:31:d3:1f:41:d9:ca:71:a5:31:f4:
f7:30:c7:0c:26:f8:94:96:00:51:0a:c6:59:30:cc:
35:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:42:32:DC:64:19:FD:AB:24:7A:53:9E:5C:7D:60:7D:0D:C1:4E:DB
X509v3 Authority Key Identifier:
keyid:02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:38:15:00:3e:d0:48:1a:5f:cf:cc:44:08:a2:38:a9:40:c4:
1a:ee:88:1e:9f:73:b3:44:cd:b6:84:31:15:1f:08:ea:39:e1:
e2:37:bf:53:b2:01:8e:6b:10:7b:42:15:bc:31:d5:df:93:df:
ed:86:93:b7:98:0c:1c:be:f9:57:65:bf:50:9d:5c:5f:e3:61:
bc:b1:eb:16:1f:29:78:52:8a:ca:ef:72:05:1a:9d:04:31:ef:
5a:29:43:f2:1d:62:b2:fd:c5:e0:47:a6:17:89:bf:2f:4b:d4:
72:58:eb:fb:28:c6:ca:ed:0c:3c:70:df:97:40:6c:53:8c:03:
6a:0b:8f:82:df:19:3b:3a:18:46:e4:a2:cc:45:d3:6f:cc:0f:
e8:97:63:13:a8:b5:5c:14:69:97:55:ab:08:cd:bb:cb:37:8c:
b7:51:7e:a8:dc:94:42:f1:d5:d9:9b:5f:4a:73:f0:f0:1d:a1:
a8:5e:78:f8:43:ad:f9:5d:b3:80:ab:36:e4:59:21:28:9a:a6:
59:e5:a3:a9:43:00:19:b3:98:fb:94:57:a8:6d:1f:a0:5c:f4:
27:71:94:57:16:00:30:8a:14:93:7e:d8:40:47:60:27:31:4a:
11:37:63:75:f9:e1:6d:5c:eb:cf:d3:9a:1c:be:97:0c:b8:9e:
09:ba:04:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:24:55 2025 by rpki-client