Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
File: AIVd2JclbobaPL5plOlM4ulpryY.mft (raw, json)
Hash identifier: 7kyUJwnezJ9F2tD8Er/yc2WSqNdvq9zWGsJvP7wLOrA=
Subject key identifier: 9F:10:7E:02:6D:0B:B2:4B:4D:01:89:CD:29:1C:D6:4F:02:04:67:80
Authority key identifier: 00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
Certificate issuer: /CN=00855dd897256e86da3cbe6994e94ce2e969af26
Certificate serial: 019916885057A0B6596E853D56510443B7E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
Manifest number: 1669
Signing time: Thu 04 Sep 2025 21:00:56 +0000
Manifest this update: Thu 04 Sep 2025 21:00:56 +0000
Manifest next update: Fri 05 Sep 2025 21:00:56 +0000
Files and hashes: 1: AIVd2JclbobaPL5plOlM4ulpryY.crl (hash: +QXDIey7bMTeQUQddpidAcorQWMhUyUD3/vKRKXEUOg=)
2: MgGDvxLOtMPwXMbYQuh7K6Nu5E0.roa (hash: R8z9BxbXd7Dke2ejYNt/dzLTxcDWFrg7+4k/8QPKV/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 21:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:88:50:57:a0:b6:59:6e:85:3d:56:51:04:43:b7:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00855dd897256e86da3cbe6994e94ce2e969af26
Validity
Not Before: Sep 4 21:00:56 2025 GMT
Not After : Sep 5 21:00:56 2025 GMT
Subject: CN=9f107e026d0bb24b4d0189cd291cd64f02046780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:41:19:50:df:2a:c5:ab:ad:d4:04:31:fc:2c:
86:79:da:b5:50:55:38:4b:fc:4f:ab:b9:8a:63:52:
51:2c:54:d5:79:dc:9a:cf:95:72:be:d2:72:83:37:
13:a5:85:2a:89:91:66:29:61:ad:48:31:4a:d6:60:
da:46:18:c3:c7:4a:23:7b:94:d8:ec:d8:e0:22:81:
bb:fc:91:6e:0c:9d:35:b9:07:06:0c:14:c6:8c:89:
ca:30:91:ad:08:96:53:e4:17:63:5c:bc:4c:1f:3e:
23:e5:77:23:9d:88:bc:68:28:c7:d8:b2:73:32:6c:
19:f3:08:22:df:68:15:54:3f:19:c4:fe:16:3e:54:
4c:50:6c:68:c2:b9:2f:fd:35:c3:04:70:a3:92:23:
1b:dc:86:84:41:e5:92:b0:3c:40:ba:c0:7f:90:e4:
6e:69:6a:c3:fe:0b:76:a2:e2:95:41:7c:de:c5:68:
74:19:bc:1d:40:ba:f3:a3:e9:d6:ce:05:80:12:99:
1b:b4:e6:0c:c5:90:31:60:88:80:94:15:c4:96:96:
61:fc:fe:9e:eb:db:a9:34:83:27:6b:71:6f:0a:7f:
9b:bf:3c:31:4b:e4:1e:07:c2:5e:2e:86:a7:da:82:
b2:78:f7:0d:2d:f6:bf:8b:d8:a4:ee:12:d8:7c:c9:
86:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:10:7E:02:6D:0B:B2:4B:4D:01:89:CD:29:1C:D6:4F:02:04:67:80
X509v3 Authority Key Identifier:
keyid:00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:2a:3d:0f:8d:c6:31:c6:92:bd:9a:e4:a3:36:01:23:2f:ce:
2d:9c:68:74:36:59:2d:56:6c:ff:39:47:3d:6d:05:84:a3:37:
49:0d:8c:ee:9a:fa:bc:52:7d:1e:c1:6e:b2:31:c7:72:46:80:
1e:34:ed:d4:8d:38:b9:fe:7f:c1:db:77:4b:c6:12:de:01:2e:
0a:f1:13:ac:ec:6a:21:7f:61:7d:ad:fd:d7:66:ee:f8:c0:f6:
d0:35:4b:06:04:55:1d:d1:6f:52:75:7f:d8:78:12:f4:48:f6:
eb:e5:5e:9f:33:8c:1b:0b:b1:b8:65:29:77:9e:de:97:0f:b7:
83:84:82:8f:e2:e5:fc:5f:16:e6:54:e5:75:21:e6:2e:21:46:
87:ac:6b:e6:b6:17:f5:a6:2d:9d:d1:d3:45:1d:a7:1c:b5:40:
f8:2b:e2:bc:29:f4:30:ab:04:cf:57:0e:9b:90:56:95:da:a2:
e2:6a:9a:da:5d:9f:fb:8d:e0:27:d7:a2:6f:dc:b1:ba:d3:78:
bc:89:31:c1:f4:d4:66:69:c5:2d:ac:74:91:de:0c:4b:ac:3f:
e0:aa:c0:b9:fd:3b:4e:7e:d0:cc:28:fe:fd:3a:b8:b8:8d:3d:
53:33:95:12:43:51:c5:9d:15:94:d7:58:90:04:58:2c:b3:c5:
74:b7:83:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:06:54 2025 by rpki-client