Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
File: AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft (raw, json)
Hash identifier: +wdfZMO3QGr70AwO/7iC3D/z506tyELQg1/UUIoVBCo=
Subject key identifier: EB:FD:C1:6A:FC:9A:0C:94:8A:42:B9:B6:9A:45:D4:4C:B7:B1:07:64
Authority key identifier: 00:08:58:94:96:BF:86:D2:D0:F8:87:4B:76:CA:C8:43:02:5B:CD:3B
Certificate issuer: /CN=0008589496bf86d2d0f8874b76cac843025bcd3b
Certificate serial: 0198481BE5B644A49710A048B27EC97F902B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
Manifest number: 0EC2
Signing time: Sat 26 Jul 2025 19:00:44 +0000
Manifest this update: Sat 26 Jul 2025 19:00:44 +0000
Manifest next update: Sun 27 Jul 2025 19:00:44 +0000
Files and hashes: 1: AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl (hash: 8KVr5UVlJire3AwZMd76zYPkgivI/SHd6BkALwKy/Zk=)
2: D6FQ_AOx7VEUAwBlUYJ5Pt1jupM.roa (hash: 4lHXyj3pRBx2LFAwlRyUS6mFr8ntH6TaBTAezCtdNUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 15:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:1b:e5:b6:44:a4:97:10:a0:48:b2:7e:c9:7f:90:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0008589496bf86d2d0f8874b76cac843025bcd3b
Validity
Not Before: Jul 26 19:00:44 2025 GMT
Not After : Jul 27 19:00:44 2025 GMT
Subject: CN=ebfdc16afc9a0c948a42b9b69a45d44cb7b10764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:61:de:19:05:83:3f:21:a5:8b:b4:8e:6b:25:
a4:4d:1e:5a:cc:d9:95:f4:7c:3a:4d:ba:ba:08:2c:
24:f3:df:cf:2a:01:eb:0a:ec:bd:cb:45:dc:7e:25:
f5:1b:09:33:f5:83:37:b2:c6:0b:10:02:12:f4:88:
58:01:d1:f9:a5:95:15:70:88:f0:fd:9b:00:43:d5:
a5:dc:d6:d6:e7:da:d3:80:80:e9:da:9f:ec:f6:6b:
1b:52:d2:02:02:54:45:76:d9:0b:43:da:ca:9a:99:
34:aa:9f:bb:f6:4a:bb:1b:9b:6b:ca:83:53:46:dc:
c1:a2:c4:60:5a:83:02:56:8c:d2:83:2f:31:9a:7d:
d8:09:3c:93:9d:45:bf:c5:a7:5a:07:1a:2f:19:5d:
72:25:f1:8d:b8:de:1b:02:ba:24:fb:2e:b8:36:9d:
49:bf:b4:54:00:c6:b9:21:0a:8e:c2:11:aa:7d:45:
7a:9a:b7:be:70:96:f9:d6:47:4c:06:f8:f3:f6:21:
15:65:7d:03:59:87:9e:cc:1b:58:7b:dd:d6:b7:a1:
df:2c:bb:00:a3:7f:62:05:4a:46:2a:30:17:67:c4:
2f:a1:f7:7d:40:25:6b:ec:37:02:fe:01:cc:3c:20:
a3:6c:27:12:b3:26:7e:23:10:55:1a:b1:e7:fb:91:
5a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:FD:C1:6A:FC:9A:0C:94:8A:42:B9:B6:9A:45:D4:4C:B7:B1:07:64
X509v3 Authority Key Identifier:
keyid:00:08:58:94:96:BF:86:D2:D0:F8:87:4B:76:CA:C8:43:02:5B:CD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:a8:03:bd:49:b9:5d:8c:b1:69:c6:eb:92:c3:36:4e:d3:df:
aa:88:36:23:9d:b7:fd:c9:a0:b2:bc:0c:85:b1:99:de:9e:5f:
fd:3a:2e:e6:98:db:a7:90:1f:74:fd:d0:28:9e:64:a6:f7:ba:
71:ba:f6:46:63:6c:8d:c5:ed:de:10:02:3d:59:a0:52:61:50:
ef:21:a7:5e:49:b1:46:4c:4b:7c:f9:15:c2:d3:81:bd:28:ca:
24:79:00:91:d3:e6:6f:cd:7a:69:81:b7:12:50:bb:27:83:dd:
de:bc:b1:77:bb:70:8c:dd:c9:3e:36:8d:7c:87:5c:aa:b7:2f:
e9:54:10:14:78:b2:f1:b6:13:ac:e6:af:df:b0:71:88:8a:c9:
7a:6b:ef:31:ef:4b:08:5c:96:dc:a8:de:9d:5e:89:17:2f:41:
91:8e:a4:6d:d8:8d:15:5e:2e:61:3b:5c:76:0e:46:f9:ee:ad:
3d:ee:68:5b:a5:c8:e0:31:34:38:69:31:35:5e:45:ff:91:06:
71:ec:aa:d7:2a:49:7a:0b:14:f9:bb:8d:43:40:51:c1:84:52:
05:99:5c:5e:df:5f:ca:1f:11:0e:69:13:4f:0d:38:1e:da:14:
b6:66:f2:a6:9a:03:47:01:35:c8:35:34:d1:86:7d:be:6f:19:
cb:96:f3:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 00:51:57 2025 by rpki-client