Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
File: aOlYF0Bglex8tceyhrETM0l7lFE.mft (raw, json)
Hash identifier: LsoSWrSs0v4UsF82INM6Hz/bDKOvjDalN/f3fZH31eI=
Subject key identifier: 55:40:1B:1E:63:ED:1D:A1:11:80:B6:3C:EE:33:C0:0D:9F:D7:4A:B3
Authority key identifier: 68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
Certificate issuer: /CN=68e95817406095ec7cb5c7b286b11333497b9451
Certificate serial: 019A7113603F85267FDCF5C6368EDB04680A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
Manifest number: 092A
Signing time: Tue 11 Nov 2025 04:01:26 +0000
Manifest this update: Tue 11 Nov 2025 04:01:26 +0000
Manifest next update: Wed 12 Nov 2025 04:01:26 +0000
Files and hashes: 1: ExEAGmrTaGZYkgcoaaGfFiacDZM.roa (hash: vfQhBpcBjSjG95UQaSsBC3edgr1xXnN4hhJBHCKa+Vc=)
2: aOlYF0Bglex8tceyhrETM0l7lFE.crl (hash: 3m7+fpMYIeIkJuGD45cT1ifZ9B22wWI9NrqR6RFZ9G0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:60:3f:85:26:7f:dc:f5:c6:36:8e:db:04:68:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e95817406095ec7cb5c7b286b11333497b9451
Validity
Not Before: Nov 11 04:01:26 2025 GMT
Not After : Nov 12 04:01:26 2025 GMT
Subject: CN=55401b1e63ed1da11180b63cee33c00d9fd74ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e5:34:f1:77:ff:72:d4:40:14:cb:8c:67:1e:
71:9e:13:dc:d3:60:dd:e9:74:f1:64:e3:ee:15:5a:
89:be:19:01:c0:e4:35:cf:73:7a:c4:90:3d:0c:61:
3f:04:cc:e7:31:a2:29:f5:5c:49:c0:91:d1:52:2c:
0f:22:04:32:90:29:ec:77:ec:58:65:0d:8a:29:71:
3b:0d:ad:9d:b5:80:cc:81:5a:2e:9b:17:3b:4d:0f:
b4:c7:1e:6c:65:0d:8e:21:73:6f:84:38:11:a7:67:
2c:de:1b:5c:e7:39:c0:b7:3a:ee:a3:9d:66:da:16:
3f:be:ed:a3:74:2f:29:1e:00:33:f5:62:b4:b8:c8:
ad:82:ff:d9:29:f8:15:84:88:27:8c:f4:ff:f8:b9:
62:e6:87:d0:1f:da:7f:b3:55:8b:c0:50:71:6c:c2:
c0:74:ef:0d:45:e1:dd:ab:39:85:31:02:25:5b:1c:
70:1c:f9:ef:ce:ca:be:ad:df:fb:cb:49:0e:41:7b:
27:50:3d:34:bf:6a:24:cd:06:dc:7c:d9:6a:fd:25:
de:0b:69:57:fd:47:d5:58:c1:f3:17:0d:d8:3c:e4:
e0:db:a4:e4:d0:9c:ce:c7:0f:7c:c1:40:82:4c:ca:
9b:93:c1:04:14:76:70:d2:ba:8f:51:f3:a7:62:38:
7c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:40:1B:1E:63:ED:1D:A1:11:80:B6:3C:EE:33:C0:0D:9F:D7:4A:B3
X509v3 Authority Key Identifier:
keyid:68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:a7:1c:b9:f1:13:f6:85:60:9f:97:2e:3f:4a:a5:2c:9a:a2:
28:29:06:7c:e2:c2:fa:80:2b:59:1a:4d:b1:35:5e:ff:40:25:
fd:3e:59:90:03:44:97:f2:98:77:52:1a:69:1b:5b:af:82:3c:
32:87:aa:42:c8:46:1f:82:a7:fa:ce:6d:13:96:16:9e:39:9f:
fa:9f:73:71:ab:25:3b:cb:18:03:5d:ad:e1:a6:b9:5a:df:f4:
9b:ac:19:85:3d:0d:78:98:f1:5c:95:d1:02:fc:2a:5d:c7:e6:
02:de:7d:9b:8d:bb:9f:20:a4:d1:6f:79:ae:7d:dc:0e:fd:04:
ca:fd:c5:e1:37:27:3d:6d:79:5f:3c:57:19:21:07:7a:df:f9:
58:26:d2:8b:14:96:52:e3:c7:df:6f:80:54:3c:4a:59:cd:ff:
1e:82:f6:45:08:47:83:64:80:53:a3:f5:d9:3d:2f:97:50:e8:
4c:89:b0:71:2c:47:d1:a4:30:6c:ee:a6:dc:64:c1:62:bc:d1:
c5:d0:ec:d6:c4:8c:d2:dc:44:9a:e1:ce:fe:bc:85:ad:06:97:
1e:9e:58:0a:c9:ba:8a:da:0a:89:49:bc:3c:ce:5b:34:9b:48:
49:f8:50:c4:2f:86:e7:06:87:25:ed:57:75:49:1f:7e:83:81:
fc:bb:d6:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:19:36 2025 by rpki-client