Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
File: AK_2tO_-fDY-8gD28-WIi5FbpoE.mft (raw, json)
Hash identifier: LgJUBq+iS1R4RGWAQGD4P3uhoL6x5qKTIgT6VM2OsJ0=
Subject key identifier: 50:8A:3C:9F:4B:5F:27:DE:9B:0D:B4:E2:73:69:47:DA:38:F9:B5:71
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 019A30E9B960F4C726DC94C0850344E90FCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
Manifest number: 121F
Signing time: Wed 29 Oct 2025 17:00:14 +0000
Manifest this update: Wed 29 Oct 2025 17:00:14 +0000
Manifest next update: Thu 30 Oct 2025 17:00:14 +0000
Files and hashes: 1: 1-bTG4fJ9woZmiRnGA3mMnt-HFQU.roa (hash: sBL1HNYrxZcmkezvdPWd49u3uAN+SQyINP0GsQYDsEg=)
2: 1qEPEFv1rtnBwjLrj05KhcsiGsw.roa (hash: efBys1jy+DGmejYCRhYEDwHiZZBi2kJ2HO+RtvkHBG0=)
3: 4Kk7BT4GOtX1l3OKm7jdPAKUhF4.roa (hash: tjLnA4xx6xW2o8o0Nxj0RULJ3oVpDUty6jhv+XOFzV8=)
4: AK_2tO_-fDY-8gD28-WIi5FbpoE.crl (hash: LHbxLikZzf7zJMQGSLfJsae53DpTVSCy1Wh046wuUW8=)
5: KSQbuvMpaNtmYtn-yiQgu6gs4Xg.roa (hash: rY+o5Ow6fjFdTk2as4zdZu/IZVXbQNeVsHdG3L6c1Us=)
6: ZOyHJ4Yqv0XVd9AATFKr91oKlKQ.roa (hash: UP88f3uzMOFhKaWDsZtlJomj/zgPQgChtV7gCg0+LOM=)
7: hBIi_DQsTzzAePmcqEi9LIfGgEo.roa (hash: ixi/61RXmNoCNxlk1fG+litk/y7jlZcj22aPdgR7sWs=)
8: qsCfBgY2cAUIcPFcqfJPHH6e1Us.roa (hash: Tt7WpuJis2cX5dodwxLP2jzWdn56/MoMnk4lBKcxlds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 17:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:30:e9:b9:60:f4:c7:26:dc:94:c0:85:03:44:e9:0f:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Oct 29 17:00:14 2025 GMT
Not After : Oct 30 17:00:14 2025 GMT
Subject: CN=508a3c9f4b5f27de9b0db4e2736947da38f9b571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:75:31:ac:48:01:66:eb:9f:44:cc:a3:3d:6b:
45:06:15:61:c6:90:89:e8:c0:b1:ce:78:81:50:80:
9b:50:d3:8c:63:20:aa:5d:a2:b0:f5:aa:dc:a7:3a:
e3:ee:c1:e1:c5:5f:97:9a:17:53:a3:54:dd:2b:38:
a1:6b:9b:49:9e:3e:78:95:db:da:0c:60:c2:9f:ca:
da:d8:0d:98:0a:75:7f:24:ce:c6:1e:d5:53:f2:22:
8c:1b:1f:a5:6c:5b:5a:f2:c7:72:f9:7e:e1:0f:32:
64:63:f7:49:10:29:88:57:a9:99:71:58:fb:61:ce:
7f:56:7b:6c:45:56:f6:b5:7f:6d:49:c3:7d:a2:8b:
91:fe:d9:64:23:92:c1:a7:5e:18:a1:0f:a3:ff:ed:
1a:e2:5d:09:85:de:8f:3d:11:c3:b0:24:23:0a:cf:
83:f6:41:65:b2:af:f7:d7:d4:84:24:3e:14:c2:18:
4e:6e:77:c3:3b:2c:c9:4c:e0:ca:b1:c4:8a:f7:22:
3c:6b:f0:a6:62:ca:57:17:37:d5:7b:59:f9:20:85:
b7:6e:be:aa:7f:18:ba:c7:49:e5:c5:a6:40:6c:29:
b8:03:79:17:ea:b7:db:ad:d4:36:ac:df:9a:d5:53:
18:4c:05:ce:1f:66:1d:04:e6:74:80:f6:df:97:48:
32:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:8A:3C:9F:4B:5F:27:DE:9B:0D:B4:E2:73:69:47:DA:38:F9:B5:71
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:53:7c:73:f4:2b:41:dc:8e:0b:e0:36:f1:ed:6e:7b:e7:78:
de:99:43:e1:7d:10:eb:87:7f:14:9e:d3:7c:ec:3f:9d:1b:a0:
ef:79:02:b4:53:3d:ff:99:5d:05:17:2b:d1:a4:62:7e:19:b2:
c2:bd:8c:d6:b8:07:f4:5a:ea:33:66:53:fe:5e:17:90:0a:df:
63:be:30:06:1c:e3:7f:28:6a:04:e5:84:b4:b5:2d:17:5c:5e:
05:8d:31:43:29:8d:95:36:82:34:89:58:c0:24:91:66:e3:85:
45:17:de:64:f6:63:04:82:40:26:30:9f:a5:bd:cf:dc:cd:ee:
9a:48:0d:fc:ac:11:95:d1:da:01:38:46:f4:4b:cf:85:39:12:
c0:ea:0c:0b:91:fd:b1:ad:e5:19:90:0b:92:8b:64:8e:8f:f3:
17:89:1a:68:19:23:8d:c0:f2:f7:54:25:ae:e6:60:30:87:08:
31:6d:82:95:e8:e9:b8:d7:7a:c8:82:f1:89:98:02:f9:ac:ee:
49:a0:a2:89:4e:8a:ed:7d:9b:2b:71:b2:11:5a:7f:d5:b0:82:
23:7e:85:15:a6:ad:7b:bb:81:13:c0:37:35:97:8a:5d:f5:89:
11:f2:04:9a:28:e6:48:f5:46:9e:e6:b5:ab:69:87:45:ad:a2:
d3:6d:34:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 30 00:23:45 2025 by rpki-client