Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/3bab57-db3b-4be8-b279-00f56f4721c2/1/aesKgBz9tLWANaXQdaKQSy6qX5E.mft
File: aesKgBz9tLWANaXQdaKQSy6qX5E.mft (raw, json)
Hash identifier: JNV3Txb5Xam2i2PQmld5VJVDUW+Y+Wit5Qshqbbfvog=
Subject key identifier: 85:65:AF:4E:7E:34:0D:EF:FC:19:D1:96:20:73:C9:17:4D:88:74:73
Authority key identifier: 69:EB:0A:80:1C:FD:B4:B5:80:35:A5:D0:75:A2:90:4B:2E:AA:5F:91
Certificate issuer: /CN=69eb0a801cfdb4b58035a5d075a2904b2eaa5f91
Certificate serial: 019A71B781C95A475E0A958B9A7E402199BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aesKgBz9tLWANaXQdaKQSy6qX5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/3bab57-db3b-4be8-b279-00f56f4721c2/1/aesKgBz9tLWANaXQdaKQSy6qX5E.mft
Manifest number: 171C
Signing time: Tue 11 Nov 2025 07:00:42 +0000
Manifest this update: Tue 11 Nov 2025 07:00:42 +0000
Manifest next update: Wed 12 Nov 2025 07:00:42 +0000
Files and hashes: 1: aesKgBz9tLWANaXQdaKQSy6qX5E.crl (hash: TzvBOh2LVKrPs3Ux2Fe7k0h3zSYUVyYpKMZUV88loMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/3bab57-db3b-4be8-b279-00f56f4721c2/1/aesKgBz9tLWANaXQdaKQSy6qX5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/3bab57-db3b-4be8-b279-00f56f4721c2/1/aesKgBz9tLWANaXQdaKQSy6qX5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aesKgBz9tLWANaXQdaKQSy6qX5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:81:c9:5a:47:5e:0a:95:8b:9a:7e:40:21:99:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69eb0a801cfdb4b58035a5d075a2904b2eaa5f91
Validity
Not Before: Nov 11 07:00:42 2025 GMT
Not After : Nov 12 07:00:42 2025 GMT
Subject: CN=8565af4e7e340deffc19d1962073c9174d887473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:24:cb:92:14:61:eb:d1:b0:0d:41:e2:df:fa:
71:fc:af:81:40:e0:9f:e4:0e:b3:77:16:2c:8b:21:
a6:44:f4:a5:8b:d4:f8:f8:79:56:b2:70:c2:d8:90:
78:07:83:ae:f1:c9:65:34:ef:0a:5a:33:b0:71:f3:
77:14:91:75:9f:a2:7f:e6:95:54:64:86:f0:21:5d:
0a:46:0e:74:c2:4e:2d:de:1b:0c:28:b1:2b:40:c8:
ba:4f:73:6e:6f:fc:12:5c:99:88:1b:ee:1f:9d:cd:
b0:6f:c5:f6:db:67:b2:21:c4:8b:5f:64:44:cc:70:
19:71:5a:16:4b:10:fe:04:a4:38:4b:10:fc:a1:b0:
ab:13:c4:dd:e7:1b:a7:34:9e:18:81:23:35:bc:d4:
9b:78:5c:f4:27:f0:0d:a6:1e:88:45:df:9f:3a:e7:
65:84:64:fa:b4:50:0e:50:4c:2f:4e:d9:af:74:a8:
6a:39:ac:5a:ee:e5:a6:21:c5:06:27:7d:87:ef:1e:
ec:f9:82:c9:01:4b:f0:76:af:e7:f6:d2:17:a4:0c:
0e:28:2c:be:c3:01:61:c7:79:c0:ed:44:fc:3b:5e:
7a:04:13:a8:d3:9b:51:6a:23:80:1b:27:16:91:d9:
ab:ee:b2:18:00:e4:29:05:f9:bb:97:3c:41:96:63:
08:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:65:AF:4E:7E:34:0D:EF:FC:19:D1:96:20:73:C9:17:4D:88:74:73
X509v3 Authority Key Identifier:
keyid:69:EB:0A:80:1C:FD:B4:B5:80:35:A5:D0:75:A2:90:4B:2E:AA:5F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aesKgBz9tLWANaXQdaKQSy6qX5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/3bab57-db3b-4be8-b279-00f56f4721c2/1/aesKgBz9tLWANaXQdaKQSy6qX5E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/3bab57-db3b-4be8-b279-00f56f4721c2/1/aesKgBz9tLWANaXQdaKQSy6qX5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:21:4e:fe:1f:80:ff:00:a4:e9:00:1e:75:03:0c:a0:e5:80:
da:98:15:7d:06:60:31:3a:1f:54:b2:7b:94:cd:b4:03:e5:c7:
30:d0:a8:9b:91:c4:bd:7d:05:5e:a4:51:44:13:3b:34:4e:70:
19:f3:60:d5:ec:db:22:48:67:27:91:a2:94:aa:34:e3:43:16:
ea:25:fe:a4:38:d5:f1:3d:af:54:fb:3c:7a:5d:97:d6:6e:88:
0a:a8:96:2c:cd:84:7f:5a:75:f0:77:73:92:31:5e:57:12:40:
ed:1d:18:0a:95:88:36:6a:17:05:f1:e5:1b:85:5d:39:69:61:
15:7b:7c:f7:4c:73:cc:cb:98:f9:32:71:ef:35:49:25:36:17:
ef:12:4a:27:0e:90:b1:e6:4c:ac:96:12:98:50:f5:98:ac:26:
40:48:97:33:32:26:0e:ea:79:19:bd:a2:36:35:7a:3f:56:79:
71:55:53:a9:dd:96:53:45:17:06:f9:39:bf:ce:06:ad:e2:36:
ed:c1:2b:8b:03:5b:59:69:2f:9d:f7:f0:79:da:45:c0:7e:98:
6a:7b:a3:b0:31:86:49:4b:d2:d2:b2:84:cd:96:31:ce:7a:10:
9c:a6:11:46:64:51:69:35:70:81:50:49:9c:82:11:fb:7a:ae:
6b:12:0a:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:51 2025 by rpki-client