Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
File: aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft (raw, json)
Hash identifier: 1mrvb3O+IlfbWtYSEBQeOcmSFpXcHfsKE5NLcPSpaa8=
Subject key identifier: A5:F1:54:2C:05:0F:01:52:1A:2E:F5:0E:CF:C4:49:D8:E5:39:44:C9
Authority key identifier: 69:72:0A:91:03:E1:AE:00:CC:78:8C:5D:EC:FE:09:48:C8:4B:CD:1B
Certificate issuer: /CN=69720a9103e1ae00cc788c5decfe0948c84bcd1b
Certificate serial: 0199221F045EA17E44B89DAACEEC2E4F0D90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
Manifest number: 0D85
Signing time: Sun 07 Sep 2025 03:01:21 +0000
Manifest this update: Sun 07 Sep 2025 03:01:21 +0000
Manifest next update: Mon 08 Sep 2025 03:01:21 +0000
Files and hashes: 1: aXIKkQPhrgDMeIxd7P4JSMhLzRs.crl (hash: bXfzl+AS0Ycr1FvZWrpqKjn7Bg1+2+9Obp4F8Y3gqZ4=)
2: jT8P4HyIvKh8r7FQFBaidUndh0Q.roa (hash: Wroxjw87hFNcZdv8/bJmsCuX0IjtBBcn8Xp1138BSK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:04:5e:a1:7e:44:b8:9d:aa:ce:ec:2e:4f:0d:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69720a9103e1ae00cc788c5decfe0948c84bcd1b
Validity
Not Before: Sep 7 03:01:21 2025 GMT
Not After : Sep 8 03:01:21 2025 GMT
Subject: CN=a5f1542c050f01521a2ef50ecfc449d8e53944c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:8c:20:a1:a7:df:42:fb:90:00:77:55:10:3e:
e4:23:d6:f4:9d:85:e3:ac:c8:26:b9:03:d2:4e:6e:
52:e1:6b:5a:a4:c6:dd:c0:d9:44:14:dc:00:2f:04:
74:87:6d:1e:f4:ef:f7:e4:e1:47:d2:80:d6:eb:56:
c9:1a:83:17:2c:9a:0a:70:bf:dc:8c:50:f6:a9:7d:
35:ce:a8:a1:df:8c:eb:b5:15:4e:fb:db:52:16:41:
1c:57:e8:59:02:5e:31:d6:11:51:da:39:27:21:33:
a8:0f:96:be:67:4b:de:87:3f:54:42:e8:51:5d:41:
a1:45:82:7c:79:6b:e1:25:a1:60:57:10:d4:bc:3b:
bc:0f:89:05:fc:b8:c0:a5:bb:ff:51:27:7a:fa:1c:
c2:46:0c:d3:b4:df:56:62:fa:f8:dc:ee:f5:35:d0:
12:ef:0d:27:33:1e:71:bb:59:1c:3f:b0:0b:db:ed:
c9:0b:d5:45:26:25:53:c1:66:85:da:12:fc:0c:98:
2b:9a:ae:1d:23:9d:06:cd:45:e5:23:be:69:9b:77:
6e:af:64:46:bc:d6:32:3c:89:da:7f:f5:97:01:f5:
01:63:ff:0e:71:15:0e:d9:9f:b1:8d:a7:7e:fe:7c:
9f:4d:bf:fb:b6:53:5a:60:45:2d:98:a8:6b:b0:62:
4c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F1:54:2C:05:0F:01:52:1A:2E:F5:0E:CF:C4:49:D8:E5:39:44:C9
X509v3 Authority Key Identifier:
keyid:69:72:0A:91:03:E1:AE:00:CC:78:8C:5D:EC:FE:09:48:C8:4B:CD:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:5e:af:70:5b:0f:da:53:87:21:d6:76:8a:c8:d9:1a:9e:6b:
86:4e:db:2b:60:07:22:5e:e6:df:b0:f6:61:00:95:fd:90:c8:
32:42:99:1d:b1:89:f9:0b:d4:bb:fe:6b:24:ee:3d:14:fd:de:
e9:c7:e3:26:d5:d3:1d:fd:0a:79:30:02:2a:37:49:fa:2a:ec:
ce:58:55:ba:02:74:30:7e:0a:78:2b:5f:36:4a:8f:74:6d:5f:
0e:c7:52:95:e6:7d:2f:12:69:d6:10:e1:f4:f4:04:f1:44:7e:
d1:15:d8:ce:25:dd:20:ac:5f:9b:de:5d:f8:df:3b:f5:94:57:
a3:51:f1:68:97:2a:de:28:b9:18:42:df:6b:62:1f:94:09:e5:
06:d5:31:1e:62:8e:0b:39:15:7d:bb:13:3a:5f:00:a3:50:6c:
cb:7c:0b:32:e4:80:e7:5c:7c:3d:d1:68:85:17:fa:57:61:df:
de:e2:72:db:b4:e0:13:48:1b:35:12:db:37:e1:c0:88:01:93:
dc:20:3c:e3:50:37:5d:c7:b2:2c:c0:f7:6c:59:03:4a:0e:1e:
91:86:fc:05:85:b5:40:42:43:e9:04:85:17:5e:ba:56:99:22:
9a:10:36:38:33:69:4f:aa:ef:2e:08:8d:7d:0a:73:ce:ef:e3:
b4:94:6d:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:29 2025 by rpki-client