Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
File: AJpjcoKz0KD8pKVU9pNvffQugWU.mft (raw, json)
Hash identifier: S7cX9tZK/SQ1DB7iJyIgvM9SyNV2qFU5Qh727El80Yw=
Subject key identifier: C3:99:D2:9C:D8:43:04:B8:E1:63:2C:55:52:0D:DB:BE:A3:9A:74:4A
Authority key identifier: 00:9A:63:72:82:B3:D0:A0:FC:A4:A5:54:F6:93:6F:7D:F4:2E:81:65
Certificate issuer: /CN=009a637282b3d0a0fca4a554f6936f7df42e8165
Certificate serial: 0198481C0F49A030F37C84E64F94BD1F64B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
Manifest number: 0BDA
Signing time: Sat 26 Jul 2025 19:00:55 +0000
Manifest this update: Sat 26 Jul 2025 19:00:55 +0000
Manifest next update: Sun 27 Jul 2025 19:00:55 +0000
Files and hashes: 1: 2KtTnEqgfSqztCd7tujgpeMQKiY.roa (hash: PzcW2SmGhKzM/HWv9p7Gvr3dpPmkVhm+gAuqFa6OHHQ=)
2: AJpjcoKz0KD8pKVU9pNvffQugWU.crl (hash: uG7Gl0dK9K6CSx1KzkQ+p16zZFaDAV0xXjDCwDHcB5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 19:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:1c:0f:49:a0:30:f3:7c:84:e6:4f:94:bd:1f:64:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=009a637282b3d0a0fca4a554f6936f7df42e8165
Validity
Not Before: Jul 26 19:00:55 2025 GMT
Not After : Jul 27 19:00:55 2025 GMT
Subject: CN=c399d29cd84304b8e1632c55520ddbbea39a744a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2a:a9:d8:a9:ac:5a:54:2c:28:6f:81:96:a8:
5e:22:2e:bc:b0:9e:bd:24:0c:1a:31:3b:5c:c6:75:
46:2a:f6:63:47:b1:5b:99:7a:c4:3a:69:8c:e3:41:
7c:30:31:1b:a6:04:a4:0b:ed:92:d0:d4:e4:4d:e8:
ce:b5:09:85:48:51:1d:96:6d:16:65:4e:83:b2:89:
c8:e4:de:00:15:2e:2a:86:ce:f3:9c:c6:92:f7:4a:
d7:43:df:8a:9f:fc:35:dc:c5:12:af:e9:ac:9b:0f:
26:ef:73:0b:dc:fc:50:32:7d:ce:ff:db:9d:c5:84:
aa:32:56:4e:dc:84:3e:6a:81:6b:99:74:58:90:b8:
6a:4f:0c:7b:60:6d:38:49:83:f8:be:17:4e:08:3c:
32:51:b2:94:d7:24:cc:0e:ba:6f:ed:ef:69:09:05:
a2:31:d3:a9:d0:c6:bf:90:7f:12:32:a5:f6:f9:5b:
09:06:47:5f:b3:9a:20:35:6e:0d:f3:90:8e:94:99:
df:36:9a:0c:d3:42:c9:04:0e:08:e7:0a:8e:1c:e1:
79:a7:7c:0b:aa:74:1a:5e:1d:61:93:e0:3b:06:64:
39:2b:55:4b:02:f1:5d:f5:d9:8c:c9:7a:85:bd:4f:
44:df:5d:e8:e5:84:5f:0c:01:1f:52:62:cf:c3:42:
83:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:99:D2:9C:D8:43:04:B8:E1:63:2C:55:52:0D:DB:BE:A3:9A:74:4A
X509v3 Authority Key Identifier:
keyid:00:9A:63:72:82:B3:D0:A0:FC:A4:A5:54:F6:93:6F:7D:F4:2E:81:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:02:b9:b5:a2:49:51:d2:73:33:ff:83:0b:fd:c8:4f:34:96:
13:08:aa:e6:69:d9:33:95:5e:d1:ac:83:de:48:ab:ad:82:22:
7a:e8:2e:aa:ff:b5:d7:53:a5:b3:e6:5b:c1:f7:7c:9b:f7:3d:
e4:a9:90:9b:9b:64:1b:9d:af:f8:7d:84:24:4b:26:0a:49:5b:
48:e8:eb:48:fc:9c:c5:94:47:0a:9d:c0:90:0f:9a:cc:72:c1:
b7:ac:c3:30:6b:26:81:96:80:f0:81:3e:ff:d9:66:7e:b9:0a:
87:11:82:74:8e:b1:18:2c:df:65:f5:cc:4f:4f:36:75:a6:33:
4d:1e:55:be:cc:af:e9:7f:5b:98:5e:67:d7:6c:0b:ca:78:69:
fc:91:7e:4d:eb:c7:e2:81:82:e2:86:ba:06:a0:e2:ba:e1:08:
bb:94:e5:08:7a:1c:0d:7e:ab:31:59:2f:dd:38:df:39:0d:c1:
6a:8b:4b:d8:c7:d0:16:0c:59:1f:98:04:68:e2:8c:41:90:0b:
85:6c:44:56:d0:d7:8d:47:45:d4:63:bf:b4:c0:d1:49:36:b9:
32:d4:cb:18:46:dd:0c:d8:9b:7c:cc:75:84:ae:ae:b3:c0:ab:
18:bf:36:e4:fa:d7:e8:4b:25:45:fd:94:0a:14:f8:d5:c4:4f:
90:ed:77:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:09:11 2025 by rpki-client