Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
File: aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft (raw, json)
Hash identifier: HUN6D3PvV7AzvGhp4kzHizOlSLMew7V2WdMXYoZFAkc=
Subject key identifier: 16:0D:83:5F:E9:53:70:F8:AC:F2:9D:69:72:B5:83:51:32:6D:8E:67
Authority key identifier: 69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
Certificate issuer: /CN=6987d0047fb1d8912c63f911305a714f438b1e71
Certificate serial: 0199221F08BDD189070767BA29DB01CA1A78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 03:01:23 +0000
Manifest this update: Sun 07 Sep 2025 03:01:23 +0000
Manifest next update: Mon 08 Sep 2025 03:01:23 +0000
Files and hashes: 1: Atkr4h8_-iWKS-lQ1C-yvRl84ME.roa (hash: 2T7HRH5eHvmAemXfiDHO7EMODqi7SWlhFBBbiZ8y44c=)
2: aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl (hash: 9sD75gRQ6t+IHhCtwOdHqQSaEcOdpc9gTQC7WhaHw4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:08:bd:d1:89:07:07:67:ba:29:db:01:ca:1a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d0047fb1d8912c63f911305a714f438b1e71
Validity
Not Before: Sep 7 03:01:23 2025 GMT
Not After : Sep 8 03:01:23 2025 GMT
Subject: CN=160d835fe95370f8acf29d6972b58351326d8e67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a8:eb:46:cd:ff:f2:15:63:84:97:10:83:1e:
c8:de:f4:a4:62:37:70:b2:f1:17:4f:81:9d:b5:e4:
5c:7c:9b:3f:66:63:e4:b6:c6:4e:c5:8c:d4:b0:af:
ec:73:11:73:51:11:23:04:ee:e5:d6:9a:e0:fe:0f:
9e:14:5a:36:78:8f:29:25:c9:ab:04:1e:a1:4d:68:
7b:91:8c:cb:97:57:dc:92:8e:3a:97:6c:3c:a5:09:
43:7e:5e:8a:bb:0e:f7:6b:10:b0:97:4d:0e:36:a7:
c9:ee:b0:d3:6b:b8:8b:16:e6:e6:6c:89:9f:24:98:
64:c1:af:ce:f2:0b:65:43:13:bc:53:a6:05:d3:bd:
63:df:a5:40:7c:3f:c4:86:84:2e:20:7c:31:ac:c8:
ab:99:45:bd:3f:a6:a5:ba:74:12:d2:82:1c:6a:62:
68:39:50:b2:ec:0c:04:6a:ea:5f:b2:ed:18:41:81:
61:2c:5d:9f:e7:9c:55:01:0e:b0:d6:6b:23:5d:87:
8c:72:6c:12:3f:ec:98:c1:92:48:ef:44:e5:d9:3c:
a0:db:38:fe:c4:fe:8f:20:b3:2e:92:92:b5:2f:f8:
ad:a3:47:d1:a0:e8:fb:3f:47:37:da:ec:48:e9:c1:
58:d6:a2:0a:37:48:0d:de:c6:99:dc:ec:16:e3:68:
ba:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0D:83:5F:E9:53:70:F8:AC:F2:9D:69:72:B5:83:51:32:6D:8E:67
X509v3 Authority Key Identifier:
keyid:69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:c7:b1:57:5d:f0:f4:1c:89:8c:05:47:9d:41:95:ec:d4:ea:
20:30:1b:7b:9a:b7:1a:41:e2:67:fe:0f:2d:09:72:12:6f:2c:
94:8d:4d:12:7f:42:ac:4d:5d:1a:d9:b1:2c:41:5b:68:81:9a:
57:77:dd:87:55:c6:da:3c:16:7c:f7:98:4b:e6:34:9c:da:2b:
9b:7a:f0:3c:19:50:6f:5e:43:08:7a:06:2e:61:7a:52:9d:54:
99:d5:35:55:d4:bb:8c:87:85:0c:ce:48:6f:42:ff:ad:bb:55:
fd:26:81:7f:9a:fe:63:05:45:94:3f:f5:a1:67:15:1f:9c:9f:
da:19:3d:cd:2a:8b:f3:66:52:98:c0:61:e9:e6:3b:82:7f:d6:
7b:ad:3c:d2:b9:10:70:b5:89:de:be:9e:a7:b9:62:0a:ed:e9:
d2:ad:03:2f:04:9c:13:19:24:57:ff:05:9b:07:97:8c:c3:11:
71:3c:72:5d:1d:0b:d0:5a:0d:9f:2c:3c:73:d6:05:93:df:dc:
b2:37:57:b1:2b:b2:c0:a9:2d:61:38:69:19:6b:04:7d:fb:a7:
49:1a:c1:5d:69:64:77:50:cb:b3:3d:60:d7:0c:c4:fc:89:25:
b4:f3:6c:c9:aa:0c:c9:53:2d:10:9e:d6:db:23:54:7c:6c:0b:
f1:f1:84:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:32 2025 by rpki-client