Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
File: aIEP_k-SA6EAZ31lGTtEJniaz1w.mft (raw, json)
Hash identifier: jXVcfKMzwI2PINk9BCfQziWDNP5EEnSCNUCnJyGcEPM=
Subject key identifier: AD:DF:1C:76:A1:76:6F:34:85:C8:EE:03:B3:CD:1D:60:DA:F1:EA:17
Authority key identifier: 68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
Certificate issuer: /CN=68810ffe4f9203a100677d65193b4426789acf5c
Certificate serial: 019A0B93E62EBEBB064CC6A03EDFE48F4871
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
Manifest number: 0AFB
Signing time: Wed 22 Oct 2025 11:00:33 +0000
Manifest this update: Wed 22 Oct 2025 11:00:33 +0000
Manifest next update: Thu 23 Oct 2025 11:00:33 +0000
Files and hashes: 1: aIEP_k-SA6EAZ31lGTtEJniaz1w.crl (hash: ETzxUED6ONtSImcAfHB1SMbDyQnoeHTJPyMUSGH4E1g=)
2: vq_lB1n1a8tSkpEaBYJenT9A5i0.roa (hash: TQs2bRUGUy5hOg6esXq8436QciZ59nHTgLwMPf5bhwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0b:93:e6:2e:be:bb:06:4c:c6:a0:3e:df:e4:8f:48:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68810ffe4f9203a100677d65193b4426789acf5c
Validity
Not Before: Oct 22 11:00:33 2025 GMT
Not After : Oct 23 11:00:33 2025 GMT
Subject: CN=addf1c76a1766f3485c8ee03b3cd1d60daf1ea17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f8:91:90:ea:13:84:a0:dc:bb:69:ef:55:61:
be:3a:73:8b:be:e3:27:51:58:79:21:19:99:39:ec:
d2:ea:29:b6:7c:60:96:b9:8f:8c:11:fe:dc:b4:bc:
36:53:66:af:39:10:e6:24:55:fd:87:b7:cf:df:fb:
fd:e6:60:ae:98:d6:56:09:82:fb:a8:fb:db:2c:dd:
ab:4e:4c:b3:b6:0a:26:6f:e3:46:35:1d:08:6e:00:
32:a9:dd:c3:23:9d:8c:cf:ba:e5:34:f7:ee:85:af:
41:c0:c2:4c:4f:fc:bc:97:4b:34:e1:4e:c3:1e:36:
36:63:44:4d:e2:f9:09:f6:ff:6e:8c:a2:6b:f1:09:
61:d3:4a:03:75:39:f7:b0:bd:e8:58:31:22:e1:a0:
92:0a:a2:d3:68:97:3f:8e:6a:4a:65:5b:8b:b1:c7:
9c:e6:96:43:85:86:00:3a:91:46:0f:f0:77:5e:6f:
3b:cc:74:2f:6a:2e:92:6e:c2:2b:4c:3b:97:6e:d4:
58:78:91:d2:b9:dc:29:bd:db:d5:d3:3c:d2:43:a2:
0c:a2:bb:53:1f:2e:07:a3:00:82:6b:d6:95:70:fd:
76:c4:73:90:c0:6d:9d:63:47:80:0f:f7:46:fb:ca:
c3:cf:d9:53:81:32:74:5f:16:49:d9:ce:95:fb:7d:
9b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:DF:1C:76:A1:76:6F:34:85:C8:EE:03:B3:CD:1D:60:DA:F1:EA:17
X509v3 Authority Key Identifier:
keyid:68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:c9:7c:69:cb:2a:84:6f:20:48:30:de:6d:e2:11:fe:e4:0d:
81:10:e8:39:a5:58:70:7b:06:90:e5:49:ac:e9:a8:ca:2c:f0:
38:59:22:7a:99:f9:a5:04:55:8b:48:3a:31:53:41:f6:7e:5b:
53:e2:a1:0e:1d:7c:33:67:40:1c:3d:38:62:ca:e0:cc:9e:53:
e7:46:81:a8:1d:97:93:0c:0c:b4:6a:68:6b:87:a8:62:64:c6:
25:42:a4:e7:0d:ca:fa:5d:7d:8f:60:75:7b:8b:63:a2:e1:98:
c5:f3:1d:8e:7d:62:46:e8:5b:c8:9b:42:24:47:b3:f5:83:16:
c3:83:27:fb:21:23:38:5e:c7:85:0d:af:27:1b:55:50:5f:e1:
f0:7b:6a:ac:c7:5f:dc:aa:dd:0b:b0:17:a4:83:b6:a0:04:55:
7b:e6:a5:24:a5:2a:d3:a9:54:d7:0e:da:be:92:3c:cd:c5:d1:
05:8e:cc:eb:6e:77:3a:0e:3b:8c:75:df:a0:63:2e:2a:67:cf:
66:b9:a0:92:ed:a7:91:c2:04:e2:29:04:6e:10:c4:a0:8c:2c:
d0:fb:7f:00:ac:83:44:3d:e5:37:47:17:36:a3:44:63:f8:1a:
b4:c1:77:35:a6:73:6a:23:24:05:3f:ad:d3:ce:1d:06:8f:16:
94:de:db:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 19:06:29 2025 by rpki-client