Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
File: AoNhMH79nzq-_mm9FN4OG9YLbmo.mft (raw, json)
Hash identifier: T8u8Hltb+M5buFjGEp33OcgHRB5H55UxV6b7CLXVZLE=
Subject key identifier: 01:61:01:9A:89:F6:89:FC:CA:4A:BA:DB:91:FD:11:2B:AD:A5:95:02
Authority key identifier: 02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
Certificate issuer: /CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Certificate serial: 0198D697F05BDFFE9947818A4F66541FDB79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 11:02:18 +0000
Manifest this update: Sat 23 Aug 2025 11:02:18 +0000
Manifest next update: Sun 24 Aug 2025 11:02:18 +0000
Files and hashes: 1: 2Zm15nya-qIgvvpfAijKMsgEkJ4.roa (hash: R6UtE66nKKM8V86y41wgOOrSUcLC3hcokGTEuECcZNA=)
2: AoNhMH79nzq-_mm9FN4OG9YLbmo.crl (hash: CCNCI4YQyhtzI3OmpRy6IUaf4m5NKENIDADJ+kX46IA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:97:f0:5b:df:fe:99:47:81:8a:4f:66:54:1f:db:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Validity
Not Before: Aug 23 11:02:18 2025 GMT
Not After : Aug 24 11:02:18 2025 GMT
Subject: CN=0161019a89f689fcca4abadb91fd112bada59502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c9:55:5a:f1:8f:08:65:32:47:6c:d3:a1:8d:
12:cf:03:46:f3:75:82:9e:ef:93:8c:e2:29:66:14:
6d:32:c8:d9:0b:1f:56:e2:c8:10:52:57:28:3e:c6:
b3:85:95:1a:9e:16:99:ad:a9:c5:29:01:37:a3:11:
64:b4:57:ca:aa:6c:f7:93:bd:9a:e4:40:01:9e:c7:
78:56:47:08:0c:68:48:dd:00:e5:01:e0:30:cd:4b:
bb:6d:d4:c8:58:e3:d8:c7:3d:79:79:29:f5:e5:78:
66:97:c3:18:19:aa:a1:f0:91:0e:74:18:e2:29:ee:
b8:23:f6:6d:27:ba:e7:1f:6c:86:3b:6e:42:70:b8:
1e:7c:bf:a8:2c:7e:e5:33:d5:b4:34:a4:7c:8a:64:
89:44:c5:84:d8:58:75:19:dd:ea:14:b0:f3:8c:94:
e7:01:c8:2f:7f:d2:d7:ec:f1:02:7e:6c:06:59:4e:
ac:95:e2:04:7e:be:63:6c:50:ad:aa:55:ed:00:b4:
eb:a9:85:11:1b:a0:a9:e6:d3:53:04:71:68:f9:e5:
79:c5:22:71:a8:3c:4b:dc:43:3c:c0:37:b2:22:31:
48:8f:53:f7:8f:d3:9f:16:02:77:20:43:0c:66:d4:
4b:dc:fa:eb:7b:af:10:08:2c:61:f7:cd:63:f5:7d:
bd:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:61:01:9A:89:F6:89:FC:CA:4A:BA:DB:91:FD:11:2B:AD:A5:95:02
X509v3 Authority Key Identifier:
keyid:02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:f5:93:3b:d1:8f:d1:98:fa:75:b0:c9:69:24:12:e2:50:0b:
97:3c:5c:13:8c:d1:88:19:11:9b:b2:4d:d5:04:92:14:44:07:
5c:f5:49:d5:8e:de:6c:b0:3d:04:ed:89:c7:f4:20:a9:08:67:
0c:c2:da:2b:31:5a:3a:1c:42:2a:6c:9a:5c:a8:b0:8e:d6:df:
74:22:f4:57:fa:84:9f:9f:99:65:2d:44:b9:8c:83:70:b2:15:
09:79:b8:a6:8c:23:ce:d8:72:06:31:20:21:16:4e:e9:bc:eb:
f6:76:68:08:99:ec:2e:3e:a3:e0:8b:bf:ed:ec:17:de:32:87:
8c:cb:23:87:df:26:42:94:d3:d0:40:0f:e6:7a:d0:53:48:4c:
21:da:56:58:b1:8f:04:0d:d6:ca:78:41:98:59:d5:1e:73:9d:
59:cf:a5:d0:12:0b:f7:24:a7:c8:85:48:f7:f3:60:5d:72:f5:
25:63:81:65:92:15:13:36:e3:52:2c:bc:75:db:af:e2:03:1b:
84:c6:69:47:de:ca:c2:41:b6:e1:08:f5:58:7f:f6:12:9e:99:
85:e6:a4:4c:2d:3f:64:c6:bd:ac:5a:29:22:46:8e:9d:7f:b4:
99:cd:23:d9:c7:28:d4:1c:0a:0b:53:e5:4f:8b:d2:62:20:bc:
8b:11:c0:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:53:00 2025 by rpki-client