Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
File: aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft (raw, json)
Hash identifier: Hvxg4DBFaAhXsCARXdj1Ku0QOaT9jKgIFQWO0kvYbR0=
Subject key identifier: 8D:13:2B:AB:94:BC:0B:D9:EF:7D:5A:6E:57:DA:24:10:F3:17:63:35
Authority key identifier: 69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
Certificate issuer: /CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Certificate serial: 019A71B91044015839E5BE8D81C7D9A95F21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
Manifest number: 0BA6
Signing time: Tue 11 Nov 2025 07:02:25 +0000
Manifest this update: Tue 11 Nov 2025 07:02:25 +0000
Manifest next update: Wed 12 Nov 2025 07:02:25 +0000
Files and hashes: 1: aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl (hash: UAJDR4BlsWzaNsx6uCVUfQNYmgcoTpMwps93TZX3zaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:10:44:01:58:39:e5:be:8d:81:c7:d9:a9:5f:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Validity
Not Before: Nov 11 07:02:25 2025 GMT
Not After : Nov 12 07:02:25 2025 GMT
Subject: CN=8d132bab94bc0bd9ef7d5a6e57da2410f3176335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:39:ac:b5:15:24:d5:19:47:c4:57:22:92:3c:
fe:f1:34:3a:51:82:a8:ef:65:86:14:27:e9:34:be:
be:5d:8f:e6:06:b0:0b:89:6e:37:a7:88:63:d1:d9:
d8:2d:d6:2f:27:3e:ea:0d:21:b0:ed:0f:87:e9:42:
61:ac:03:ba:e9:60:40:5d:e2:d2:64:ed:a5:c9:b7:
a1:72:9f:19:10:aa:8f:73:33:c7:5c:ce:50:7d:b2:
72:e1:ef:c7:65:cc:8e:f3:ee:96:52:9d:23:fc:38:
ec:fb:38:11:50:a1:ca:ff:e8:29:8a:f6:14:4a:93:
4d:b5:18:42:33:a1:32:c7:fd:da:4a:78:04:a0:1d:
54:f1:50:fa:6d:2b:64:b4:6f:96:94:87:5f:8f:04:
3d:40:c6:c2:e7:7c:0a:f0:f2:50:2c:bf:05:d8:bc:
6d:4c:71:5e:af:47:6c:d2:f7:d4:a3:28:66:ec:22:
27:11:c3:a6:4e:5c:02:73:3d:03:55:af:1c:04:8f:
61:72:8c:a8:b8:23:9f:e4:c7:f3:28:fe:68:ad:4b:
52:10:c5:c1:c9:13:75:51:55:79:77:db:45:b2:89:
5d:9c:00:5d:cf:34:b4:04:42:39:53:d0:cf:7a:96:
79:96:49:99:d2:38:a9:8e:d2:27:fa:dd:8e:21:4f:
fe:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:13:2B:AB:94:BC:0B:D9:EF:7D:5A:6E:57:DA:24:10:F3:17:63:35
X509v3 Authority Key Identifier:
keyid:69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:5b:04:c5:bf:63:0f:5c:4d:43:f3:93:a5:81:71:e5:21:4c:
37:be:5c:c4:4d:8c:3b:5a:60:ae:d2:9c:27:17:c5:f6:ff:21:
0e:76:3f:ca:87:e3:f0:e0:e6:09:56:17:16:b4:6c:93:56:10:
87:9b:ce:02:0f:7b:9f:48:10:60:e7:98:85:36:45:0a:c7:d7:
28:92:ab:49:c5:19:fc:7b:4a:8c:5b:e5:c2:95:84:1d:d3:9d:
79:41:33:fc:a5:92:a7:dc:64:54:cb:18:0c:2f:57:51:18:31:
27:a9:14:9b:35:bd:a9:f1:9a:2d:44:95:ef:d7:ff:88:cf:08:
12:fe:ec:61:a5:9e:7f:cb:66:95:15:8b:8e:b7:a9:63:71:9e:
27:24:4c:3d:56:65:9e:8b:d2:14:3f:d9:20:93:9c:4f:a5:f6:
55:71:0e:bb:f4:fc:a0:e5:5d:32:a6:f8:28:0b:7b:d2:b3:a1:
8d:97:aa:39:65:4a:69:af:45:52:66:8e:93:ae:e8:fb:f8:21:
fe:ee:ee:c1:a4:77:74:74:c9:0f:61:6d:7c:0c:7c:7b:1b:5d:
69:b0:e1:e4:94:ca:d3:c1:17:5c:9e:e1:4c:a0:b3:98:a7:21:
a0:bb:37:3b:15:64:c5:09:61:77:a1:fa:91:73:62:a1:9b:82:
fb:61:f0:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:05:35 2025 by rpki-client