Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
File: aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft (raw, json)
Hash identifier: hVyqzeu8JF7HhL8p5XablMqxZ7dwEIoA9UyOXJmTrFQ=
Subject key identifier: 5A:D1:0B:42:14:5D:D1:B0:4D:DC:BB:98:59:32:DA:98:2B:38:E8:D5
Authority key identifier: 69:72:0A:91:03:E1:AE:00:CC:78:8C:5D:EC:FE:09:48:C8:4B:CD:1B
Certificate issuer: /CN=69720a9103e1ae00cc788c5decfe0948c84bcd1b
Certificate serial: 019A1F1B3380452BEC2B748603B9A2833C86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
Manifest number: 0E08
Signing time: Sun 26 Oct 2025 06:01:07 +0000
Manifest this update: Sun 26 Oct 2025 06:01:07 +0000
Manifest next update: Mon 27 Oct 2025 06:01:07 +0000
Files and hashes: 1: aXIKkQPhrgDMeIxd7P4JSMhLzRs.crl (hash: P/g71QFIs7lCyrdwPn6r78pNQIhqhvGLAliKHOzPQMg=)
2: jT8P4HyIvKh8r7FQFBaidUndh0Q.roa (hash: Wroxjw87hFNcZdv8/bJmsCuX0IjtBBcn8Xp1138BSK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:1b:33:80:45:2b:ec:2b:74:86:03:b9:a2:83:3c:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69720a9103e1ae00cc788c5decfe0948c84bcd1b
Validity
Not Before: Oct 26 06:01:07 2025 GMT
Not After : Oct 27 06:01:07 2025 GMT
Subject: CN=5ad10b42145dd1b04ddcbb985932da982b38e8d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c6:45:d5:a4:51:6e:1a:94:4c:1a:07:73:5d:
05:d9:d2:24:bf:bd:92:b1:b5:2a:59:b1:be:55:8a:
95:7b:b3:7c:ac:e0:46:7b:73:7a:07:da:33:27:e3:
10:9a:0e:29:96:9f:29:fd:fe:61:1a:d9:64:8a:41:
b3:25:dc:4a:85:93:5a:82:f9:44:a9:25:9b:20:02:
68:e7:d2:61:66:34:05:e2:b4:de:dc:c1:88:a3:06:
34:08:a2:24:6f:6c:0d:78:01:10:41:24:37:31:51:
dd:74:7a:0b:8d:83:e1:8a:77:24:7e:6b:db:26:79:
df:86:07:59:a4:9a:e3:fd:1e:5e:4f:eb:3f:df:a7:
f3:7c:14:c9:13:77:85:14:46:1b:42:7d:36:04:64:
43:d1:2c:ab:37:11:78:34:fe:17:e1:a9:eb:e4:f0:
56:cf:51:8c:2d:67:c8:f0:55:f1:f3:b7:b8:b9:dc:
d4:ea:94:a3:91:54:a8:fe:f9:ff:d5:68:a6:5a:aa:
49:24:c3:ae:0f:b2:3a:58:0e:a3:70:42:52:fb:eb:
9d:4c:e3:46:42:92:ad:ed:c0:72:82:c9:a3:ff:d6:
98:07:f6:97:c7:4d:1d:ba:4f:62:de:74:d9:2c:fb:
c6:1a:68:c8:4b:6f:e3:96:69:5d:4e:a9:13:02:64:
b1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:D1:0B:42:14:5D:D1:B0:4D:DC:BB:98:59:32:DA:98:2B:38:E8:D5
X509v3 Authority Key Identifier:
keyid:69:72:0A:91:03:E1:AE:00:CC:78:8C:5D:EC:FE:09:48:C8:4B:CD:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:d7:33:01:bd:7c:7d:54:a9:3d:21:54:5c:0d:94:40:21:ad:
55:83:b9:0e:77:90:83:9d:69:7e:17:8c:2d:3c:d1:a6:c0:48:
90:92:17:a5:13:83:da:46:94:7f:de:60:99:aa:cf:c4:b7:e0:
dc:8c:9a:a8:f0:6c:0a:ba:6f:7d:cd:41:b5:4c:56:30:ed:f4:
8e:e5:e9:b9:81:dd:c3:85:ac:42:dd:06:15:02:cc:27:0c:5f:
0f:34:75:37:16:59:9f:b3:c0:d5:0d:17:43:9e:55:90:60:e0:
80:f3:4d:4c:5e:38:b6:41:73:91:77:2b:5f:27:c3:ce:b3:14:
93:66:b3:0e:c0:5d:79:55:7a:2b:6a:6b:a8:2d:9d:58:23:79:
8b:31:6f:84:15:48:e2:0c:f1:e4:1a:69:fd:de:60:4b:fa:13:
79:1a:42:aa:e6:38:4a:41:b7:b4:c8:36:16:a3:7a:dd:d6:6a:
1e:a5:fd:71:df:cb:e8:6d:87:9c:a6:bc:cb:b3:2c:28:cb:e6:
ea:50:86:6a:7f:8c:aa:47:74:83:cf:99:5c:e8:d2:d4:64:1a:
47:97:11:16:c2:6a:17:c0:b5:90:73:3b:ae:9a:c1:35:ee:b3:
e5:d3:9b:79:59:b7:d0:d9:3d:b3:d7:3f:5c:74:7e:3b:53:24:
41:66:be:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 10:42:05 2025 by rpki-client