Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
File: AEp1iisKfpOKnw3uZCzsXkECdrU.mft (raw, json)
Hash identifier: aC9S54ktbxitQFjsHXjxrwE5ta6Z7YfVTFqDsquv+fw=
Subject key identifier: D1:A3:99:6C:A6:B9:5D:7C:A1:2C:4A:0A:58:ED:AD:CF:71:7B:6E:F8
Authority key identifier: 00:4A:75:8A:2B:0A:7E:93:8A:9F:0D:EE:64:2C:EC:5E:41:02:76:B5
Certificate issuer: /CN=004a758a2b0a7e938a9f0dee642cec5e410276b5
Certificate serial: 0199FB45CBD416B955E8C73689499B65DE4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
Manifest number: 0C4D
Signing time: Sun 19 Oct 2025 07:01:19 +0000
Manifest this update: Sun 19 Oct 2025 07:01:19 +0000
Manifest next update: Mon 20 Oct 2025 07:01:19 +0000
Files and hashes: 1: AEp1iisKfpOKnw3uZCzsXkECdrU.crl (hash: btfhby2ny+7mRRPEJRmFTK2xQ2LrD8CfQPEadFjAQGo=)
2: Zu7qmPE7Yu9qaSBN9WsSyKAeY2Y.roa (hash: 6EpeKHcevQPaPF9U/VGXI0S4HRJnkl5xIMQ3xA5Np4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:cb:d4:16:b9:55:e8:c7:36:89:49:9b:65:de:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=004a758a2b0a7e938a9f0dee642cec5e410276b5
Validity
Not Before: Oct 19 07:01:19 2025 GMT
Not After : Oct 20 07:01:19 2025 GMT
Subject: CN=d1a3996ca6b95d7ca12c4a0a58edadcf717b6ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:66:65:59:15:d3:d3:e9:ea:50:b9:a0:6f:c0:
01:88:ee:e0:9e:d6:8c:86:d5:f2:0b:1f:f4:ce:db:
2e:8e:25:44:30:99:cd:58:c9:00:bf:3d:d0:31:be:
88:1a:50:42:8d:8f:e3:7d:d4:0e:b7:3f:a3:1a:77:
17:86:41:59:56:81:b0:d1:59:fb:6f:2c:9e:45:c1:
ca:22:ea:ee:a7:60:b9:74:24:a6:c8:4a:c3:7f:53:
98:46:1a:58:66:c1:c9:78:25:73:75:95:04:cc:1e:
08:80:17:e9:55:82:12:45:27:aa:17:cc:01:1d:43:
71:4d:de:43:c7:da:a0:77:8f:b1:c4:00:e4:49:e3:
68:f3:dc:c4:e8:ee:a3:66:f0:64:c8:08:23:42:cb:
fe:84:0e:76:fd:46:2c:f8:aa:ab:5b:73:8b:cc:01:
42:18:85:ca:18:18:e6:6e:54:4b:de:f9:7a:63:81:
3e:a1:7e:0d:e4:00:e3:24:bf:04:ea:43:de:dd:87:
6a:c5:3f:b3:34:06:ba:d4:07:9c:20:39:d3:63:5c:
3b:87:92:4a:4e:a2:94:08:58:6f:2c:70:f8:09:59:
13:26:1e:53:8a:36:0d:69:f7:ca:dd:02:fb:6b:9a:
fd:5e:a8:cf:da:89:f1:71:26:2b:85:b2:75:8f:4f:
21:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:A3:99:6C:A6:B9:5D:7C:A1:2C:4A:0A:58:ED:AD:CF:71:7B:6E:F8
X509v3 Authority Key Identifier:
keyid:00:4A:75:8A:2B:0A:7E:93:8A:9F:0D:EE:64:2C:EC:5E:41:02:76:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:1c:da:e5:53:38:a2:01:ae:28:ed:57:d9:80:71:81:0c:13:
01:c0:e0:0f:4f:3d:17:2c:80:85:35:94:88:f8:f1:35:09:80:
89:4d:39:0f:d3:d5:34:d6:29:62:d1:1e:25:fa:a5:2d:9b:84:
ec:0d:6b:ce:4a:9a:09:82:f3:3e:ff:63:4b:0f:f5:0f:29:dc:
0e:97:b8:84:0b:8c:07:f8:63:ed:87:69:97:20:6a:c9:40:85:
9c:7e:2e:cc:f3:93:1e:2c:7b:39:28:37:18:2c:8e:ca:09:39:
b1:63:0f:e8:fb:40:30:a0:10:e0:1b:64:cc:d3:6d:a9:f1:eb:
a4:d2:55:ee:44:fe:ed:cd:af:88:d4:19:ac:a6:df:89:9e:f3:
67:e4:c3:58:01:07:e0:5a:3c:4d:09:8b:4a:3c:4a:3a:0d:48:
22:99:fc:76:9a:80:a4:05:4f:a3:61:ce:4d:22:8a:29:0f:1d:
f1:7b:97:0f:6f:d6:e3:8a:09:b9:32:a3:2e:ed:f3:35:c5:49:
39:b7:c3:4b:ac:04:a0:8c:2f:3e:6f:3a:8e:7e:c6:10:2d:26:
0c:6a:29:1a:5f:b0:50:8f:ef:b8:2f:de:a3:db:6c:01:b5:fb:
ed:71:fc:56:93:93:29:23:df:36:46:e7:93:60:db:94:a5:c0:
10:06:f9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:20:17 2025 by rpki-client