Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.mft
File: aGOaIXWXlv46HZGfm1c362jXCOQ.mft (raw, json)
Hash identifier: Hgw1t63VNLlhhQ885DEFSVOvuqmETuCDEes5AJulHVM=
Subject key identifier: DD:F4:D0:9F:B1:2F:95:91:F7:0F:8A:5B:5A:71:02:36:6E:FC:26:1A
Authority key identifier: 68:63:9A:21:75:97:96:FE:3A:1D:91:9F:9B:57:37:EB:68:D7:08:E4
Certificate issuer: /CN=68639a21759796fe3a1d919f9b5737eb68d708e4
Certificate serial: 0199FAD7D334D2064568FB0E0D36E818BDE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aGOaIXWXlv46HZGfm1c362jXCOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.mft
Manifest number: 142B
Signing time: Sun 19 Oct 2025 05:01:12 +0000
Manifest this update: Sun 19 Oct 2025 05:01:12 +0000
Manifest next update: Mon 20 Oct 2025 05:01:12 +0000
Files and hashes: 1: HaUn7tg_GQoLwUeKln7B89E1Zus.roa (hash: UBP04zlDEuw8zGqO58s8vILU4LoszVd4p1cFKyVRANw=)
2: Vaj_SKghwhMr5GkrNo3CpxB4bEs.roa (hash: 2ufypWC+H0u1FT85vML3Y3XXLbc7QafpFQUC4EhAO8E=)
3: aGOaIXWXlv46HZGfm1c362jXCOQ.crl (hash: 0jwflAuQProimv03ZyrXHcg3Rtv8I+bWE/CNXaLyrcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aGOaIXWXlv46HZGfm1c362jXCOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:d3:34:d2:06:45:68:fb:0e:0d:36:e8:18:bd:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68639a21759796fe3a1d919f9b5737eb68d708e4
Validity
Not Before: Oct 19 05:01:12 2025 GMT
Not After : Oct 20 05:01:12 2025 GMT
Subject: CN=ddf4d09fb12f9591f70f8a5b5a7102366efc261a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c1:11:6b:57:03:12:52:19:ff:54:47:87:0f:
82:fb:a6:97:7e:56:1b:34:6b:02:0b:87:89:5d:63:
5c:06:f3:fc:3b:6d:91:f1:bc:8f:49:fb:57:17:c5:
43:3c:a1:1d:e4:de:a5:2a:9b:21:b6:cd:21:11:ae:
77:8f:d4:b6:28:d0:f7:8a:76:56:fe:5b:8b:b0:e9:
1f:0c:7d:c1:7a:ff:93:3e:d9:db:dd:f4:51:3c:46:
23:64:9f:32:f4:b7:65:b0:c8:6a:7c:db:ae:16:54:
cd:9e:cf:4b:6e:e0:51:9a:ec:34:49:4e:9c:43:1d:
92:4b:a8:0b:23:f4:d2:fc:2d:12:8d:77:cc:e6:27:
06:29:2b:47:c4:11:d0:47:4b:0a:93:1b:75:1e:88:
58:23:5a:39:8a:52:c5:92:06:cb:b2:4e:6a:ec:59:
bd:a8:50:f6:df:62:ba:19:88:6b:05:26:8f:ba:a3:
43:4b:74:21:5c:10:1b:3b:05:d8:22:cb:63:27:62:
6b:8b:4d:70:6b:97:a5:6b:d8:6d:a2:da:08:16:79:
bf:2d:f1:0e:29:65:58:2f:aa:4b:75:43:a4:2d:48:
5e:6d:75:ef:6c:31:39:8b:a2:86:26:f8:10:2c:98:
ff:a5:b5:48:37:a3:ae:ff:9a:61:82:c0:93:09:ba:
23:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F4:D0:9F:B1:2F:95:91:F7:0F:8A:5B:5A:71:02:36:6E:FC:26:1A
X509v3 Authority Key Identifier:
keyid:68:63:9A:21:75:97:96:FE:3A:1D:91:9F:9B:57:37:EB:68:D7:08:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aGOaIXWXlv46HZGfm1c362jXCOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:af:4f:d0:ca:24:b4:a8:61:c0:d6:d0:60:f3:63:34:88:9d:
f8:b1:4d:62:63:40:0d:a2:46:d5:c5:96:d1:32:83:aa:63:4b:
08:e5:3f:97:8b:a2:8b:7e:02:db:5e:a4:70:ab:ab:34:78:7f:
3d:21:b4:16:db:e8:f1:dd:85:e2:5c:c2:a8:81:71:62:f5:09:
1d:63:50:58:34:96:2f:1a:84:96:26:ae:02:35:48:6a:3f:99:
6e:aa:49:32:b3:a7:cc:db:cb:44:ac:4d:8e:92:0f:a9:ed:01:
3c:a9:b3:a0:ab:06:79:4c:5d:de:9b:4a:20:19:dd:19:ac:47:
fa:3e:7d:32:f4:03:47:d5:43:27:08:ed:8f:ef:7c:a5:56:76:
5e:d4:82:63:c2:f0:fc:e2:54:7c:74:49:92:ad:b0:d6:e6:f7:
94:d9:20:eb:bd:09:d3:65:de:8c:90:7a:68:73:ae:9f:1a:75:
3c:12:c6:b1:21:58:2b:d6:a8:c2:6d:43:7f:bc:72:38:69:31:
ed:bc:a2:66:92:66:f4:7d:aa:cb:b6:d8:af:17:0f:ce:b5:76:
2d:bd:66:c1:65:7f:7c:d7:91:8f:49:0d:c1:fa:e7:7c:1a:f0:
e3:6c:22:2c:db:ec:6a:66:e8:29:3f:9a:92:8e:30:c9:5c:80:
b6:45:72:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:52 2025 by rpki-client