Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json)
Hash identifier: IMs3cOJ/0mvfF4rEuiS8kH0Fivybgr67aS2HX5d2abI=
Subject key identifier: 12:2E:00:66:63:54:25:B1:E0:F9:55:3D:72:7A:7F:F8:87:30:96:AF
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 019A72939E372A66E57CA0682DE69248B4EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
Manifest number: 119A
Signing time: Tue 11 Nov 2025 11:01:08 +0000
Manifest this update: Tue 11 Nov 2025 11:01:08 +0000
Manifest next update: Wed 12 Nov 2025 11:01:08 +0000
Files and hashes: 1: 6zOYtzjXBD-DYg3_-ZbwFYlxy-U.roa (hash: bndS1Tzx6VzHh/lOs3pK1BLzPGIXQ0EzQwN4Ak3MXSs=)
2: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: kqXdVy2Y3Gl4Wu/nHi+eEMznEaFRZL44r7WDcM5lBiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:9e:37:2a:66:e5:7c:a0:68:2d:e6:92:48:b4:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: Nov 11 11:01:08 2025 GMT
Not After : Nov 12 11:01:08 2025 GMT
Subject: CN=122e0066635425b1e0f9553d727a7ff8873096af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:91:44:70:1e:08:83:75:2c:54:c6:f1:f3:bf:
00:6b:c0:ea:2e:39:4a:9b:ef:bc:d4:fd:53:07:4c:
2c:6f:be:65:5f:dd:2f:07:e4:c2:f8:d3:74:80:60:
68:b5:4d:92:4c:8d:5d:3d:4e:43:db:aa:63:74:3f:
5a:21:bc:b0:37:fe:fc:f6:26:08:ee:f3:54:80:b2:
d5:2b:eb:e0:c7:5c:fe:e0:7a:a2:bf:57:77:de:00:
c1:e4:48:44:23:b5:31:6f:b3:a1:4c:36:a1:41:70:
79:74:5f:a5:9a:ef:6e:27:71:57:e6:53:41:1b:63:
bc:25:04:6a:da:c5:16:dc:84:1a:fc:b7:26:cf:c1:
37:fb:1b:6c:e4:88:f1:5b:b0:0d:e3:b4:85:97:8c:
91:e2:87:c3:41:41:dd:25:89:db:04:1e:4f:ab:65:
c5:da:17:22:9b:03:f3:6c:31:4d:cb:04:f0:d1:c4:
fa:8b:95:d9:12:06:62:33:88:ff:7c:a3:de:62:0f:
45:85:b8:68:e9:84:c1:b8:8e:75:9f:41:83:e8:8e:
46:5a:74:60:12:28:42:e4:72:e6:f8:77:fb:e6:7d:
fc:a3:f3:ba:e2:e4:09:7b:2a:1d:66:8c:c1:95:58:
d8:24:b5:ac:28:2e:64:5b:83:ff:ef:43:bc:05:d0:
dd:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:2E:00:66:63:54:25:B1:E0:F9:55:3D:72:7A:7F:F8:87:30:96:AF
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:63:27:f2:fd:19:20:36:2b:54:f8:72:61:ef:a7:6f:bd:f1:
88:9c:9d:30:95:cf:4c:27:7d:25:8f:a1:bc:0a:be:4e:f7:31:
c3:ec:61:c5:76:50:90:9f:d8:04:d6:e9:83:6b:f8:0e:63:d1:
6a:3b:e2:fe:bc:cc:26:fd:15:f2:cc:cf:f9:31:50:0e:37:67:
cb:a0:ea:19:20:26:cb:2e:9e:89:2a:cf:5a:46:bb:a0:89:f9:
fb:e9:b8:d7:48:a5:9d:00:ad:1d:2f:a1:ed:d5:cc:ea:75:42:
5f:ee:6c:cd:89:fe:3c:a8:9b:4b:df:c3:80:3e:58:91:c8:9a:
5b:24:a0:54:c6:6c:f1:23:90:27:3a:e6:91:b5:1a:20:73:3c:
56:1c:c0:72:71:31:9a:42:ea:99:b9:6b:e1:7c:d3:5a:12:b1:
17:67:b0:3c:27:4d:57:9d:73:34:6e:81:76:13:dc:1a:82:e9:
32:0c:5d:eb:54:3e:f5:b7:ac:86:99:bb:ea:c2:e6:9f:30:c4:
82:d9:a8:dc:dd:04:b7:b1:56:5a:4c:90:68:1a:21:d6:ac:5c:
d0:5f:01:2b:a5:c6:59:6a:40:98:b5:a0:81:75:83:8d:c1:e7:
b5:68:2d:02:30:02:fe:d2:ee:0c:fe:0c:c4:ac:97:d5:eb:f1:
64:e5:e5:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:58:23 2025 by rpki-client