Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
File: ajqLdK1O1nN5ep9rd0nCI0VpedA.mft (raw, json)
Hash identifier: NtxlMhnR5YpG7H6EYo9qkcyPStuRZJ3AH5+Y20AUSqM=
Subject key identifier: 2E:52:E5:65:A7:E6:2D:9D:21:D3:80:6F:CE:73:CE:4F:39:81:28:AC
Authority key identifier: 6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
Certificate issuer: /CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Certificate serial: 01993124923D4F43F903915DCA2FF60611B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
Manifest number: 153C
Signing time: Wed 10 Sep 2025 01:01:44 +0000
Manifest this update: Wed 10 Sep 2025 01:01:44 +0000
Manifest next update: Thu 11 Sep 2025 01:01:44 +0000
Files and hashes: 1: ajqLdK1O1nN5ep9rd0nCI0VpedA.crl (hash: N4dJHWwqheOicW3KTbJ//WlrlW3nmmrA/WmFkMlwsck=)
2: jkQdp6EX7jHh6f31YxZYZhR0C8U.roa (hash: FmayEZ/+k7yvcImZRXEurVZdNlGpk+kZM2DFLPiqTu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 17:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:24:92:3d:4f:43:f9:03:91:5d:ca:2f:f6:06:11:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Validity
Not Before: Sep 10 01:01:44 2025 GMT
Not After : Sep 11 01:01:44 2025 GMT
Subject: CN=2e52e565a7e62d9d21d3806fce73ce4f398128ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a3:4f:ee:ed:19:80:76:43:07:28:4b:80:30:
5a:7b:69:88:6d:34:a3:fe:12:68:59:94:36:ff:af:
89:4c:df:4b:47:be:33:0d:5c:c1:01:43:e4:1a:5c:
a4:99:3b:21:2d:02:78:20:58:e2:a0:da:4b:f6:df:
f9:62:5d:53:1e:02:e4:29:c8:34:c8:61:27:e1:6c:
46:c6:1c:8e:8c:75:c9:28:c6:bb:a8:94:2a:78:90:
8b:b5:5e:28:82:a5:83:82:02:10:63:20:8f:5c:9f:
1c:d9:d7:ec:66:03:c1:e0:5b:b2:99:85:42:67:c5:
5e:30:dd:4d:85:86:ca:ad:7c:ab:2b:c4:b9:d0:1c:
86:0c:90:45:9b:c8:fb:7e:83:24:ec:03:fb:39:42:
60:52:18:27:31:8c:2b:7c:34:ad:52:a8:37:20:51:
3a:5c:c9:4b:f8:81:81:39:47:22:1f:03:ae:25:57:
4a:99:a7:6b:4f:3a:3c:8c:55:17:da:22:6b:8d:bb:
e3:90:a6:eb:29:5e:86:d6:d9:f9:73:3d:81:b2:12:
69:8d:66:7d:48:bd:fa:f3:90:86:17:e1:a6:ce:58:
83:eb:04:e6:09:84:b1:9a:09:61:be:86:5e:e1:6a:
48:60:76:aa:76:f5:ae:e3:3b:c5:31:a4:9d:28:24:
5c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:52:E5:65:A7:E6:2D:9D:21:D3:80:6F:CE:73:CE:4F:39:81:28:AC
X509v3 Authority Key Identifier:
keyid:6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:22:f6:4f:1c:68:a4:90:99:99:b1:ed:d8:6d:8c:4d:9c:d4:
22:dd:5f:8f:04:c7:ad:a7:da:43:ae:17:1b:d2:c2:d8:90:e6:
5e:36:a1:c2:0c:35:3a:22:28:b7:36:c0:31:e6:98:8f:be:99:
d4:c1:9b:cf:96:72:6f:5b:0c:ad:20:7c:bc:cc:de:eb:fd:6d:
3e:c0:93:61:ad:55:5e:c2:34:fa:63:fe:9b:c8:3f:51:49:df:
b0:28:7c:7c:38:98:43:e9:7d:48:77:49:e0:ff:3c:a2:f0:43:
9c:97:fe:17:ca:6e:71:82:f2:01:3b:b9:61:96:a8:bf:d8:3e:
02:72:9d:32:e7:eb:e1:2c:e7:b7:a4:1b:1f:30:c0:8b:3b:75:
e7:09:e2:83:3a:7d:f1:2b:68:56:23:13:8c:fc:06:0e:2b:fe:
32:5c:0e:f9:28:93:88:27:b9:4f:88:17:af:ca:a4:40:41:56:
bb:bc:f3:00:86:2d:87:bc:a1:66:6f:36:56:1b:d9:54:4f:28:
c6:39:c0:7e:60:45:7c:7e:07:d8:45:84:13:f9:dd:2a:6f:28:
43:d9:17:15:14:42:e8:8d:22:41:05:68:95:ee:dc:1c:16:7a:
1d:bb:8c:6e:ce:d6:55:12:76:22:96:74:92:94:ca:d9:6c:62:
84:c9:0b:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:31:50 2025 by rpki-client