Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft
File: aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft (raw, json)
Hash identifier: kouSyJ8+S/41jY17YCFco45HpXIq92iEc8vZ+cbSKE8=
Subject key identifier: E5:DB:E1:01:03:5F:8E:E0:9F:C7:48:81:73:ED:B9:6E:68:6D:05:39
Authority key identifier: 68:93:18:8E:BF:CE:20:E5:BC:53:F3:AC:F5:7F:40:7D:9E:57:AC:17
Certificate issuer: /CN=6893188ebfce20e5bc53f3acf57f407d9e57ac17
Certificate serial: 019A71B89C638D5A37C66B762A08021DA651
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 07:01:55 +0000
Manifest this update: Tue 11 Nov 2025 07:01:55 +0000
Manifest next update: Wed 12 Nov 2025 07:01:55 +0000
Files and hashes: 1: 1-POC2nfhxokaO34U4IxxrQdEyHg.roa (hash: HGa5ESI5zwwldA7SOJhQSh4vTo8C4LN7Ht6oX1cZupU=)
2: aJMYjr_OIOW8U_Os9X9AfZ5XrBc.crl (hash: puAwthEmG/oT5XSGTi5dCXOSwq01/uHsusZrKYC8xug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:9c:63:8d:5a:37:c6:6b:76:2a:08:02:1d:a6:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6893188ebfce20e5bc53f3acf57f407d9e57ac17
Validity
Not Before: Nov 11 07:01:55 2025 GMT
Not After : Nov 12 07:01:55 2025 GMT
Subject: CN=e5dbe101035f8ee09fc7488173edb96e686d0539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fd:73:6e:67:56:e6:a5:06:94:3e:c5:e9:31:
f3:a0:5f:e6:76:20:ee:1d:45:e9:18:a4:e8:46:40:
8a:8b:64:cf:74:34:e2:a6:8d:05:8d:ae:90:12:0e:
4a:20:86:c8:a4:7a:42:9f:a4:66:a3:f1:4a:ee:a8:
8a:d4:5e:9e:93:23:8e:f1:77:3c:c8:69:91:f7:d4:
ee:6a:37:f9:ca:5f:d3:44:71:79:18:72:5e:ad:93:
5d:c6:a0:34:47:73:68:62:87:9e:c6:19:03:56:38:
f2:7b:3c:7d:96:46:23:4a:76:d6:9c:e7:0e:fd:1e:
98:45:cb:f7:1c:68:59:55:ff:3d:92:7b:c8:da:4d:
c8:85:ed:8c:d1:54:12:e6:e3:f0:1a:1a:02:20:d1:
0f:48:87:8a:6e:87:e6:24:60:17:73:96:a0:a9:90:
cc:2b:3c:06:43:7a:17:8a:81:f8:cd:83:3e:d3:6d:
3a:ec:70:0e:5f:dc:5b:17:e3:30:30:e7:1a:3b:7a:
a2:ed:51:b8:c7:1d:08:63:c1:25:ef:1b:0f:eb:70:
f4:25:4e:ba:6f:dd:09:7c:20:ea:43:79:57:b5:4b:
6a:ec:bf:b4:72:e1:b8:95:0c:a1:97:f4:c8:db:6c:
43:45:d7:b2:fb:0e:bf:27:09:7b:49:3d:12:9d:07:
1f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:DB:E1:01:03:5F:8E:E0:9F:C7:48:81:73:ED:B9:6E:68:6D:05:39
X509v3 Authority Key Identifier:
keyid:68:93:18:8E:BF:CE:20:E5:BC:53:F3:AC:F5:7F:40:7D:9E:57:AC:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:5a:9c:0f:b8:17:81:88:39:6f:90:30:78:3b:db:39:69:80:
0d:9f:22:cc:b7:83:be:5a:15:f4:a3:f1:75:d1:86:e1:0b:bd:
a2:70:b9:65:a2:b1:ff:78:5d:54:f7:d6:49:6a:54:d0:84:50:
00:bc:1f:53:8b:c3:f2:b3:95:86:f7:69:bf:0d:6b:b1:41:de:
c6:70:ea:c3:20:70:b2:2c:5a:a6:7d:2f:fb:66:62:56:a8:09:
47:b5:cc:59:d6:de:f5:bf:00:bd:d1:bd:be:ee:5f:87:74:ea:
d8:35:45:60:85:a8:e6:fb:41:13:17:5e:0c:49:ce:ed:40:f2:
74:18:f9:f8:24:bf:60:c6:d8:a7:61:cd:79:d0:3a:e4:15:d8:
6c:15:38:0b:a5:5c:ee:30:c6:51:02:c6:1a:93:7c:f7:41:b5:
f5:27:a8:8d:84:17:9a:f1:45:8a:0d:ec:e6:c3:e1:69:aa:3e:
f0:ab:df:d9:ce:fc:f4:f3:cd:57:ce:46:fc:22:b3:82:97:0b:
61:6d:7c:f7:76:d9:d7:f5:8b:8d:3b:83:a4:46:e7:60:be:12:
a6:22:77:e2:ef:bc:4a:8f:ad:cc:cb:57:8b:ad:80:c2:b6:15:
97:28:61:6a:c4:eb:85:4e:d0:a6:0d:98:b4:09:46:13:d2:a8:
e2:6b:44:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:23:57 2025 by rpki-client