Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json)
Hash identifier: QUCvQF+hEaMV57f7rCUs/PPReZYYcSY6RbbhmJxGRzI=
Subject key identifier: 37:A3:29:83:FA:7D:82:8A:BB:94:F2:A9:B3:12:9F:2E:7D:65:5F:63
Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69
Certificate serial: 019A714A2A3180F9A203A00772A52F61A563
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
Manifest number: 075C
Signing time: Tue 11 Nov 2025 05:01:17 +0000
Manifest this update: Tue 11 Nov 2025 05:01:17 +0000
Manifest next update: Wed 12 Nov 2025 05:01:17 +0000
Files and hashes: 1: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: OCTm2iTGIiMA79+CvDjvFN8fhc4yY7tGyl6qpVQPgqQ=)
2: hnTM8e9DDp88O_jCAHz8InVW_vE.roa (hash: 8skhoEZiI2jfYQ4DDQgvqEaBRoMspiQzmuxF61YcMEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:2a:31:80:f9:a2:03:a0:07:72:a5:2f:61:a5:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69
Validity
Not Before: Nov 11 05:01:17 2025 GMT
Not After : Nov 12 05:01:17 2025 GMT
Subject: CN=37a32983fa7d828abb94f2a9b3129f2e7d655f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ca:a2:03:8f:23:34:d8:35:1a:c9:0e:bb:56:
e2:70:dd:4f:10:a3:34:45:f1:0b:b1:91:b9:77:e4:
5a:24:fd:9c:82:62:4b:bd:9a:68:b1:5e:31:23:9c:
d4:9a:b3:e6:92:06:33:4b:d7:fd:8e:1f:8c:56:ab:
86:dc:bf:c2:c4:3f:60:01:1b:be:76:67:33:3a:b1:
03:62:71:1e:0e:42:79:fd:c6:bb:8b:ef:a0:93:25:
48:7e:26:2c:da:d3:6f:03:4a:0e:ba:ca:52:c1:ec:
ea:fb:d6:b8:48:7c:e0:3d:f1:ae:76:ea:39:6d:0a:
04:05:55:8e:60:68:e1:df:61:1d:8e:36:8a:3b:c1:
16:4e:89:05:de:66:24:83:79:ba:0d:61:bc:c0:74:
8b:5f:1a:3a:f0:d7:6d:b1:70:ca:2d:32:31:06:26:
d5:de:29:b6:8d:d6:4b:b0:fd:ba:00:de:92:e5:6c:
39:ae:eb:8a:17:45:00:24:a6:ad:67:04:39:18:aa:
a1:aa:1b:90:3f:87:1f:bb:09:47:ca:78:cf:b1:a5:
4d:30:74:54:fb:b2:b8:70:6e:0a:09:f1:64:7b:b1:
3c:57:09:e2:44:74:7b:20:c5:4e:63:18:d9:0e:ad:
14:8c:f8:f3:4f:74:93:f4:69:e7:71:5a:10:1b:e3:
c1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A3:29:83:FA:7D:82:8A:BB:94:F2:A9:B3:12:9F:2E:7D:65:5F:63
X509v3 Authority Key Identifier:
keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:74:d9:59:d8:84:ec:96:18:a4:75:8e:8a:8c:a0:39:ed:f9:
82:be:d1:dd:ce:19:a1:d4:de:0f:5f:39:99:8d:59:79:e2:0c:
65:09:27:68:9e:c3:ba:28:44:48:6f:e8:a1:a0:ff:54:87:da:
13:91:93:fb:22:88:1c:28:ff:f6:70:31:90:01:29:6a:88:cc:
96:8c:52:10:8d:36:a9:e6:44:c5:42:10:4f:89:d6:94:4a:8d:
40:1c:f7:c5:d3:86:e5:bc:ad:be:d6:60:d8:22:dc:29:cd:33:
8e:76:a9:9f:af:84:86:e5:f0:5a:07:5d:b8:bd:77:24:03:22:
27:f5:33:c5:4c:88:fd:fd:54:f0:39:23:df:f5:54:cd:aa:a3:
3c:d5:f0:92:5a:d6:27:5d:24:3f:d7:15:07:6e:27:9a:8e:28:
fe:b6:2d:46:1d:5c:a6:7b:f8:20:57:cb:7f:69:e5:6c:3d:90:
ab:5c:8b:fe:72:65:e8:87:f4:b4:11:25:3d:72:fe:ec:25:45:
d1:2b:7a:da:c5:02:4f:ae:a4:2e:a6:a0:ff:ff:e9:3f:ea:90:
30:19:18:12:34:28:de:eb:06:fc:bf:e8:56:fd:75:77:90:c8:
ce:65:14:20:da:fa:a3:3a:dd:73:0e:3d:96:8c:cf:e8:c5:da:
e8:c5:6f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:25:11 2025 by rpki-client