Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
File: aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft (raw, json)
Hash identifier: HUa5nbTgTHeZoxzQOINC7Sime42R4hpcZQcVNNpH4io=
Subject key identifier: 9A:CC:59:2F:E3:62:C8:31:3F:21:98:70:65:50:0A:D4:82:32:32:8D
Authority key identifier: 69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
Certificate issuer: /CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Certificate serial: 0199239FACEF5EA33D78102B969EF4289EAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
Manifest number: 0AF9
Signing time: Sun 07 Sep 2025 10:01:30 +0000
Manifest this update: Sun 07 Sep 2025 10:01:30 +0000
Manifest next update: Mon 08 Sep 2025 10:01:30 +0000
Files and hashes: 1: aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl (hash: 47HcOrsS+4z+mVASxZBAvK49A12QWN6/F/w6g4KM3Rc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:ac:ef:5e:a3:3d:78:10:2b:96:9e:f4:28:9e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Validity
Not Before: Sep 7 10:01:30 2025 GMT
Not After : Sep 8 10:01:30 2025 GMT
Subject: CN=9acc592fe362c8313f21987065500ad48232328d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:93:3b:cf:37:e3:eb:dd:21:d8:88:72:62:6e:
5b:08:54:ff:ef:d0:05:d9:f7:68:9d:df:6a:54:ba:
d4:8b:7e:db:12:f9:e0:f3:36:52:bf:4b:a0:d5:5d:
9e:0a:28:a0:92:9a:d0:60:6e:dd:7d:62:82:9a:fa:
14:d3:1d:11:f9:d5:11:07:87:a3:c7:b2:28:2b:55:
fc:ab:9b:05:89:53:b2:93:fe:ee:71:19:c3:1c:e5:
b1:72:f9:0e:93:8a:da:92:68:ac:f2:96:cc:a5:fb:
e7:b6:a9:c6:c7:2a:f7:fe:24:5f:ef:f3:24:a2:b8:
7b:d8:02:c7:5e:f0:1e:6f:52:80:3f:96:1c:27:f2:
22:84:f4:85:fd:26:f1:ac:ec:14:1f:8e:e8:d6:f2:
7d:e5:7e:58:ec:5d:f6:5c:a7:0c:90:61:15:bb:f0:
9d:2a:06:81:59:2f:01:a9:bd:3f:5b:52:9f:6b:a0:
e5:0d:e9:07:58:3e:fd:25:41:01:2b:18:38:9f:38:
c0:0c:13:2a:9f:b7:a8:1a:22:d6:ca:94:24:34:e8:
6c:40:ad:60:d5:a7:ce:0e:72:25:6e:cf:eb:02:29:
41:70:4c:85:15:44:f6:50:37:e9:88:3b:95:5f:f5:
de:0c:5e:15:84:92:22:56:06:01:d4:85:6e:6d:f2:
8b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:CC:59:2F:E3:62:C8:31:3F:21:98:70:65:50:0A:D4:82:32:32:8D
X509v3 Authority Key Identifier:
keyid:69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:4a:68:32:d8:b2:1b:5d:5f:b8:84:c7:f8:7c:85:ab:cc:60:
7a:33:d9:48:0e:95:81:e6:51:41:05:52:60:03:e0:ae:b9:75:
9a:40:ec:c5:68:b4:2f:5d:c8:34:d0:d0:8f:9e:2a:44:3e:04:
cf:3a:75:ec:81:2d:4a:9d:ca:d5:c2:50:13:93:f1:68:77:49:
af:19:4e:6a:bb:c5:99:a6:16:73:7a:f8:61:91:da:f8:ed:97:
bc:ab:43:42:5c:b3:37:23:1b:e2:13:c1:2e:f3:e7:eb:7d:35:
e8:44:e4:04:35:a3:13:c5:66:00:19:18:11:f3:e3:cb:d1:57:
23:c5:49:78:bb:3e:4b:e3:2d:7c:48:31:25:aa:3f:88:07:91:
50:db:35:e3:6a:86:e9:35:bf:84:c2:c8:b9:60:5c:9f:3f:12:
28:4a:bc:5e:2c:32:ea:a9:a4:0b:e4:6d:93:a2:5a:94:45:cf:
57:9d:aa:b8:be:bc:0b:4f:bc:92:0c:d3:33:dd:5b:f0:07:c6:
0a:b0:4c:39:a6:89:fc:6a:08:f3:72:10:88:68:09:88:a8:ed:
5b:0e:4f:3f:a2:2e:ff:73:30:a2:24:41:49:ca:7b:22:74:8e:
89:ac:f9:d1:85:7d:58:ff:12:09:98:42:70:72:9a:a5:10:da:
a7:d6:35:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:59:16 2025 by rpki-client