Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
File: AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft (raw, json)
Hash identifier: 4TlnJNuqHTqV2VkKIFeWMKq4DbIfzLVniUl//4tRLCo=
Subject key identifier: C3:58:9E:96:62:E0:8D:FA:2B:B2:CF:21:5C:D7:20:0E:2E:43:F0:57
Authority key identifier: 01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
Certificate issuer: /CN=017c90654653ac150028562b32431491b52147d1
Certificate serial: 0199240D15B729938C38C190DAA8969184B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
Manifest number: 0E51
Signing time: Sun 07 Sep 2025 12:01:01 +0000
Manifest this update: Sun 07 Sep 2025 12:01:01 +0000
Manifest next update: Mon 08 Sep 2025 12:01:01 +0000
Files and hashes: 1: AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl (hash: bdPvu9mbmFSVrHDZYyqQR8k3sGo6Ay02qEkkpNSQ4yo=)
2: L2lE8nOnlyxmaD3x1ZRACrDCMP8.roa (hash: ZXu28qkdGNNh4liAxQWetF6CZII1uCDb6IiGf6WW5Vw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:15:b7:29:93:8c:38:c1:90:da:a8:96:91:84:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=017c90654653ac150028562b32431491b52147d1
Validity
Not Before: Sep 7 12:01:01 2025 GMT
Not After : Sep 8 12:01:01 2025 GMT
Subject: CN=c3589e9662e08dfa2bb2cf215cd7200e2e43f057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e4:f1:a5:9e:54:84:9d:f4:92:a8:9e:f9:9d:
ff:58:40:e0:21:cc:ec:cc:75:5d:d6:b6:ca:c1:ba:
96:85:fc:48:88:18:8f:6e:26:d3:4f:ed:1c:cc:1a:
3f:94:d6:fe:b8:a6:63:c0:39:9d:07:24:f0:2b:4f:
41:3b:b8:1b:0d:07:8e:65:a3:70:0d:86:68:34:4d:
58:39:86:c2:1d:a2:19:46:31:11:7b:b1:4f:a4:a3:
58:55:d0:50:57:3e:e9:b1:10:06:e2:8e:b5:97:3a:
20:10:ce:20:a9:fe:60:fa:dd:76:6c:a9:b7:cc:ca:
c9:43:17:a4:ea:6e:99:09:05:61:68:12:bf:4e:55:
de:c8:71:fb:86:3c:88:37:b6:bf:c9:61:9b:3f:74:
40:c0:a8:42:3e:9e:92:32:38:bd:d4:c1:0e:ff:a8:
78:0d:c8:84:80:5f:0e:90:99:34:ee:86:bb:ca:cf:
be:24:e9:61:34:00:a8:01:f1:65:f1:13:61:bf:41:
c0:50:54:f2:f3:e5:2e:a0:cf:63:f4:21:9b:58:06:
12:05:0d:21:60:30:b6:3c:a8:99:3a:99:ae:40:81:
9a:cc:42:39:81:18:79:26:be:a1:d8:5c:00:83:7e:
d5:73:6b:83:35:50:0b:32:06:ce:a7:ca:f5:1f:e9:
91:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:58:9E:96:62:E0:8D:FA:2B:B2:CF:21:5C:D7:20:0E:2E:43:F0:57
X509v3 Authority Key Identifier:
keyid:01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:5e:8a:d0:bb:bb:11:f7:e8:b7:3b:31:00:5d:a9:1b:e8:52:
1b:24:f6:fe:7b:a7:1d:bf:8b:2b:a1:4b:9a:3b:3f:9f:b8:d6:
81:89:db:9d:5c:6c:8d:81:eb:3a:8c:52:04:e8:9b:37:c0:c8:
d5:1b:6c:0b:78:b1:02:a6:90:90:9e:1c:61:80:f3:fb:bd:04:
4e:0d:a6:22:a6:39:c6:bf:45:3f:28:63:20:c3:b6:6f:75:24:
94:74:57:31:e7:93:ec:50:8b:79:4e:74:fa:f1:66:b2:f6:9b:
80:46:09:81:5b:07:89:4a:0d:b6:8e:78:a6:3d:d9:00:1d:9a:
f1:af:cf:9b:a6:6f:6a:58:31:9d:c7:89:a8:16:85:fd:cd:fb:
b4:ae:14:7c:d1:66:f4:c2:24:fb:74:57:71:78:f8:88:ed:5f:
ea:64:53:30:6b:e8:77:02:3a:28:3b:3a:40:57:d8:f7:1f:d3:
94:dd:00:ba:7b:63:87:21:64:ca:be:8f:46:26:14:43:e8:97:
99:fa:e7:2f:52:b9:9f:42:48:bb:0b:26:d6:ee:f6:ce:93:5c:
6b:9c:f3:76:8e:02:87:b1:9c:e3:53:2b:d4:ff:bc:42:81:b1:
79:38:f6:20:9c:cf:81:46:bf:e5:cc:5c:96:16:21:8f:51:5a:
e0:fc:ee:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:54:17 2025 by rpki-client