Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
File: aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft (raw, json)
Hash identifier: rYhUY5k4LBLUGLiMnQz76y2uNxcJCo2nbnym9uOPa0Y=
Subject key identifier: 17:43:0B:4E:5F:4C:78:07:95:EF:6C:80:CF:08:54:03:92:7A:9F:7E
Authority key identifier: 69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
Certificate issuer: /CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Certificate serial: 0199180939058FC40EF2779EF591B3BC5830
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
Manifest number: 166E
Signing time: Fri 05 Sep 2025 04:01:21 +0000
Manifest this update: Fri 05 Sep 2025 04:01:21 +0000
Manifest next update: Sat 06 Sep 2025 04:01:21 +0000
Files and hashes: 1: 1LWuminfGd450btHCMbnnbPQ_ZE.roa (hash: TISDdBpwKFkkTeSDLc72qwKWM7K/Xn5/55e5YUo0nnQ=)
2: aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl (hash: di70FoxICB+AL5cD1iJlZBCcraLceP9BEKzJTaekubI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:39:05:8f:c4:0e:f2:77:9e:f5:91:b3:bc:58:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Validity
Not Before: Sep 5 04:01:21 2025 GMT
Not After : Sep 6 04:01:21 2025 GMT
Subject: CN=17430b4e5f4c780795ef6c80cf085403927a9f7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9c:33:41:72:2c:25:c4:51:74:ea:41:e7:60:
08:0e:f0:35:0e:44:d6:44:61:34:0e:7e:a7:5a:e0:
94:6c:3f:3c:25:79:5d:dd:00:ae:10:fc:70:bd:00:
7c:68:ca:18:f3:77:c5:75:e9:6f:dc:fd:2c:a2:90:
1d:80:c6:1d:91:19:52:1c:29:eb:49:47:8c:6e:99:
ae:85:e2:42:67:23:bb:ea:cb:b8:8e:52:4c:c3:14:
6f:d5:cb:af:03:03:9a:9f:b2:c7:66:40:d9:9c:62:
09:dd:e1:e7:22:d4:3c:4c:81:c5:9c:62:3d:16:6b:
9a:11:40:a4:62:ad:e7:04:d9:5d:f3:33:53:d6:24:
ff:18:c8:d2:a7:f8:73:ac:65:b9:6a:f0:68:15:69:
8e:4a:2b:3a:4c:60:fd:d6:90:e0:3b:a9:b2:17:99:
05:07:30:d4:a8:fd:b7:2d:c3:85:14:bd:00:b6:87:
df:49:02:09:e8:e3:25:9f:a3:eb:73:21:ff:5f:19:
de:4f:a2:90:54:e4:83:dd:09:5e:56:cd:3b:7e:db:
16:f9:7d:8d:c0:c1:e3:96:2d:9f:8b:d4:6c:7c:e3:
85:b3:ef:35:6c:4d:0e:d8:73:19:78:f8:21:30:88:
17:11:6c:2f:ce:79:84:e2:14:3b:c5:4a:eb:60:0e:
ff:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:43:0B:4E:5F:4C:78:07:95:EF:6C:80:CF:08:54:03:92:7A:9F:7E
X509v3 Authority Key Identifier:
keyid:69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:69:25:02:7d:6e:f2:a3:02:b3:75:2a:7a:b9:59:aa:2e:2e:
35:48:ab:61:57:9e:1e:7e:ff:24:3e:3e:49:f8:5c:0e:01:dd:
82:d0:17:32:b2:7f:10:4a:33:8a:48:6a:d9:2f:31:4d:24:1a:
89:88:26:4d:2a:4a:76:e8:80:f7:62:a0:d2:39:91:7c:18:1f:
cd:39:9e:26:03:bf:68:9d:6e:cc:78:15:a3:7c:99:39:6b:1e:
99:92:81:a3:fd:40:3b:5d:c9:66:8f:7f:99:70:6e:e0:bd:c0:
d4:ac:79:c0:01:3f:9a:36:94:b6:df:73:9b:3f:3f:82:ab:f6:
00:df:e4:56:c0:48:aa:92:c4:bc:28:3c:05:04:a7:59:ba:3f:
d9:f3:a9:37:8e:28:a1:b9:9f:a3:52:9f:23:e1:63:3e:dd:86:
b5:b4:e6:a7:61:5d:bb:e6:b7:ef:15:68:0c:36:5d:9c:ec:a9:
4a:50:22:f6:ce:38:d8:10:41:6d:8f:b0:4f:6f:68:08:da:16:
70:ba:cd:a2:8a:06:f3:2c:80:6e:e0:d6:29:fc:39:1c:e0:d0:
47:1c:12:79:39:20:11:09:85:69:0f:c6:73:3a:f0:02:da:2d:
d0:cc:b8:09:15:75:67:c7:44:d2:54:b3:1f:57:a6:1b:64:23:
39:22:24:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:08:07 2025 by rpki-client