Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: HuPaTCml9zqbF5rQISn+2Y7CMP1AyBLpmt9DKEhDk3M=
Subject key identifier: A4:71:E4:3C:13:C7:F6:2D:E5:D3:BC:9D:DB:F4:82:2C:DC:FF:2D:04
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 01992255F8CEAFD19D0C722D69CA13F06905
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 06AA
Signing time: Sun 07 Sep 2025 04:01:23 +0000
Manifest this update: Sun 07 Sep 2025 04:01:23 +0000
Manifest next update: Mon 08 Sep 2025 04:01:23 +0000
Files and hashes: 1: WhLENsO2y4UEzkuswA1wx41c4K4.roa (hash: qqWz2hpUFCfdOvnndjkfI9tgPQ2D7KLxkWgnxyi1reI=)
2: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: OyAhjOlp0d/FEPFiXSbWLqZckZ1cbTs/O9+c0ZqL+2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:f8:ce:af:d1:9d:0c:72:2d:69:ca:13:f0:69:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: Sep 7 04:01:23 2025 GMT
Not After : Sep 8 04:01:23 2025 GMT
Subject: CN=a471e43c13c7f62de5d3bc9ddbf4822cdcff2d04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:23:9a:05:ce:54:51:e2:bd:ca:70:f3:6c:a2:
37:12:2e:0f:68:3c:a1:83:64:a5:b5:a6:cb:e3:42:
7d:b1:3d:ee:aa:95:73:66:54:59:70:c7:53:3f:08:
00:62:ba:c8:30:04:a4:49:0b:dd:13:c7:3e:11:8b:
c6:5d:c2:03:93:a6:e4:a9:50:66:58:93:15:ab:d8:
1b:61:7e:96:ab:ac:25:a3:a4:b2:f0:e0:4b:dc:fc:
2f:a2:8c:a5:d3:4d:d7:f9:b3:27:6d:82:2c:14:fd:
0e:9e:98:28:ff:47:7d:0b:7e:55:90:0f:9b:de:09:
a0:ce:17:47:a5:73:a4:89:d6:a9:27:af:6c:06:8d:
e9:40:b5:47:0f:be:7f:bc:5b:ac:24:dc:e9:f0:a1:
4f:60:54:01:b6:9f:81:24:d8:9c:41:56:cc:69:26:
0c:b2:c8:e6:0e:c2:10:01:30:76:82:61:c9:97:98:
70:c9:55:4c:bc:74:58:57:b4:f0:f5:5c:14:a4:a0:
4e:00:a5:ba:a5:d3:b0:72:a4:d8:87:c5:88:73:83:
0b:af:89:6c:09:64:56:d6:87:44:9a:c3:ee:bc:7e:
d0:43:16:43:5b:70:0f:52:40:f2:55:4b:c1:a7:3f:
3b:63:45:5f:b1:38:10:b6:1f:01:cf:f4:44:47:46:
40:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:71:E4:3C:13:C7:F6:2D:E5:D3:BC:9D:DB:F4:82:2C:DC:FF:2D:04
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:80:31:3b:17:b4:85:e0:72:fc:44:b7:51:be:89:53:d0:bd:
65:3f:83:3f:ef:eb:3d:f8:24:c6:3f:fb:c1:97:76:35:bb:c6:
46:a7:de:15:2a:b8:61:40:59:99:b1:b8:32:6d:8b:52:6a:79:
ba:6c:d5:af:d1:21:fe:08:5f:76:3b:b5:13:63:f4:73:82:29:
4f:9a:a6:05:18:88:ea:08:60:e2:79:a3:7e:3e:c8:f5:51:0b:
c2:a4:95:e0:bd:6d:31:8b:54:b9:93:09:23:a7:23:b8:d7:d5:
4b:8a:61:52:11:eb:05:c1:4e:a7:af:c1:57:79:d7:ac:dc:6a:
42:7f:4f:82:0f:f7:c9:78:f9:c1:10:40:15:52:be:58:cb:66:
c1:4f:58:fe:00:42:43:f4:b4:ed:4b:35:8c:82:ba:68:d5:f3:
c4:9e:01:f6:75:50:42:a3:53:cc:18:bf:bd:70:b0:ec:c1:29:
01:79:d6:d9:5c:9b:fe:eb:61:9c:ce:43:39:61:78:9c:0d:80:
4b:74:d1:fe:9d:62:df:b9:a0:87:d0:b6:e6:94:7b:db:d4:d3:
f9:d1:7d:3b:d5:01:59:68:55:b2:1e:0e:8d:d1:66:b0:a3:6b:
78:2f:55:cc:ee:15:6b:89:c6:87:3c:39:12:5b:f9:98:ce:74:
0d:53:3a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:11:00 2025 by rpki-client