Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json)
Hash identifier: GG+WRll58WJyhL/qWsMh5MjseDjTvm/gpvyhfq36tvM=
Subject key identifier: 04:42:0B:EB:4C:5E:02:B8:39:FE:46:33:79:EC:FC:AE:AD:47:3C:CB
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 0199228C4DE1AE314A9D240B0EF1486DB495
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
Manifest number: 10EC
Signing time: Sun 07 Sep 2025 05:00:44 +0000
Manifest this update: Sun 07 Sep 2025 05:00:44 +0000
Manifest next update: Mon 08 Sep 2025 05:00:44 +0000
Files and hashes: 1: 6zOYtzjXBD-DYg3_-ZbwFYlxy-U.roa (hash: bndS1Tzx6VzHh/lOs3pK1BLzPGIXQ0EzQwN4Ak3MXSs=)
2: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: rnziaXtvngQui68Q/1lp5pdk1nM2XkB3e4MNb1BfEII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:4d:e1:ae:31:4a:9d:24:0b:0e:f1:48:6d:b4:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: Sep 7 05:00:44 2025 GMT
Not After : Sep 8 05:00:44 2025 GMT
Subject: CN=04420beb4c5e02b839fe463379ecfcaead473ccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:66:49:a2:e3:13:c7:52:50:b3:b7:19:89:fa:
32:b0:c3:f1:52:c2:03:0a:14:8d:87:f6:8a:a9:46:
0a:94:49:74:56:ec:90:72:e8:99:97:96:28:e6:ef:
14:65:aa:16:3e:e6:ee:d2:ba:42:b4:f2:2d:37:47:
b4:8c:56:e3:6e:26:90:6a:9f:81:e0:08:53:ad:2a:
91:82:04:2a:c6:e8:a0:ae:37:f3:7c:fa:23:29:36:
8b:55:d0:66:34:e2:82:5f:ec:0e:94:67:23:63:f1:
6b:8e:c5:54:cc:a7:75:48:42:71:ad:03:0f:86:c6:
a0:9a:11:7f:c1:95:2a:27:75:9b:4b:b8:fc:2b:65:
67:4e:26:4a:9b:e2:63:d2:46:3a:fc:ac:2d:aa:cc:
78:dc:43:e8:4f:cf:f5:75:e8:6f:93:6c:99:0b:5d:
de:f4:c2:37:b7:d4:3d:10:09:48:5a:11:d3:20:e8:
3e:7b:ad:40:1e:ef:af:66:ca:5f:8b:89:ee:c3:0f:
ce:ea:7c:40:6f:9d:e2:b6:b4:a6:3c:61:9d:30:a3:
29:b3:ea:03:fc:e3:eb:be:e9:5b:a6:82:52:11:51:
02:f5:91:d6:12:84:9b:42:1b:d5:f9:1e:55:77:4c:
f1:6c:8b:2d:6e:22:d3:66:ec:b1:bd:9f:b4:8f:2c:
84:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:42:0B:EB:4C:5E:02:B8:39:FE:46:33:79:EC:FC:AE:AD:47:3C:CB
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:d3:ce:92:2c:e1:12:7e:2c:56:39:d0:d0:6b:80:03:09:31:
ad:96:4c:9f:e9:a0:52:6d:77:ff:e0:79:e1:da:96:38:ac:96:
9c:19:71:61:ff:f4:41:19:5d:c5:c5:5b:f9:c2:16:4f:b5:11:
1d:e2:d0:09:ab:39:ce:a7:b1:ab:21:89:0e:9f:d7:5f:4c:ab:
ff:2f:c0:76:3d:66:b4:f6:ca:61:97:7d:6e:f5:d2:9f:81:c7:
ce:c0:76:62:92:d3:6e:4a:84:87:e0:aa:36:7b:78:2e:9c:8b:
c5:b4:3d:9e:1b:f1:c4:de:f9:41:7b:ae:c6:57:5a:35:18:2e:
d1:59:9c:fc:fc:6e:c1:65:30:db:e4:02:dd:ad:85:09:98:ad:
10:02:53:a3:93:65:11:27:26:9a:c5:3a:6f:70:00:12:f4:0b:
e0:9c:6e:91:9a:8a:8f:1e:d1:7c:86:13:25:dc:79:90:d2:7e:
4d:81:fc:5d:62:19:d0:38:de:ed:f9:44:c8:f8:a4:36:be:8f:
07:9f:ac:ce:c4:6f:24:49:31:b7:1d:9b:56:c0:ea:9b:93:7c:
d9:7b:1c:b1:4e:28:74:2c:c1:0f:92:9b:f9:70:82:fc:eb:24:
2e:3c:c4:20:d5:eb:34:79:c7:25:cc:f3:f7:5c:d7:74:c2:b4:
92:ff:39:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:33:09 2025 by rpki-client