Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
File: AJpjcoKz0KD8pKVU9pNvffQugWU.mft (raw, json)
Hash identifier: MH2H7em5/PDZJ6yva4PP3op5hXJqYwgDwKms9u6oqUQ=
Subject key identifier: 1A:B8:4C:A2:04:5A:F0:50:7E:D2:41:98:18:F5:5A:96:12:03:9D:25
Authority key identifier: 00:9A:63:72:82:B3:D0:A0:FC:A4:A5:54:F6:93:6F:7D:F4:2E:81:65
Certificate issuer: /CN=009a637282b3d0a0fca4a554f6936f7df42e8165
Certificate serial: 019A2AE7EA2B00290E5432B443461F0AEC1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
Manifest number: 0CD4
Signing time: Tue 28 Oct 2025 13:00:33 +0000
Manifest this update: Tue 28 Oct 2025 13:00:33 +0000
Manifest next update: Wed 29 Oct 2025 13:00:33 +0000
Files and hashes: 1: 2KtTnEqgfSqztCd7tujgpeMQKiY.roa (hash: PzcW2SmGhKzM/HWv9p7Gvr3dpPmkVhm+gAuqFa6OHHQ=)
2: AJpjcoKz0KD8pKVU9pNvffQugWU.crl (hash: oY8j2745Sgt0g2MgJ+uh5wg2ZBa/9sFlzcdsug+2KQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 13:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2a:e7:ea:2b:00:29:0e:54:32:b4:43:46:1f:0a:ec:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=009a637282b3d0a0fca4a554f6936f7df42e8165
Validity
Not Before: Oct 28 13:00:33 2025 GMT
Not After : Oct 29 13:00:33 2025 GMT
Subject: CN=1ab84ca2045af0507ed2419818f55a9612039d25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:43:78:77:f6:20:72:67:f5:56:90:db:49:b3:
7a:7d:29:ee:7d:c6:26:bc:dc:43:5c:cb:0b:08:74:
49:8a:75:a4:ad:ee:57:d9:8e:54:42:dc:43:19:8d:
ea:f5:74:5b:13:3a:d5:bb:68:1f:d7:d9:ed:8d:02:
03:c3:74:7c:f0:d0:ee:1b:b5:cc:c8:cf:87:74:3e:
36:28:d8:2b:d9:9a:0d:51:ef:33:7b:3c:2a:36:ab:
05:b7:47:c8:00:fd:d3:02:48:03:21:a5:79:c2:ba:
d1:89:0f:07:07:de:77:cb:10:34:92:fb:f3:8d:93:
2a:5a:8b:f5:b5:85:05:7b:cc:7c:66:25:cd:ce:ba:
e5:56:28:7b:4a:4e:da:ee:b1:de:b1:36:b3:85:e5:
1c:78:6d:ce:e1:73:91:13:01:08:55:62:fe:b2:72:
3f:8a:09:7c:2e:b6:1d:f8:98:f0:f3:a9:12:7d:e4:
48:57:ae:01:84:98:b2:96:77:93:b7:55:24:80:6c:
a2:99:9e:9d:82:54:12:58:ca:e5:dc:71:b3:86:a3:
8f:ba:99:17:be:8b:8c:4c:2b:c5:90:d0:0b:89:e1:
31:ef:9b:22:3d:11:9f:6f:2f:c2:b3:6b:9e:b9:8c:
51:03:69:40:25:d3:b2:3b:5b:25:fb:f3:77:8a:d5:
fd:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:B8:4C:A2:04:5A:F0:50:7E:D2:41:98:18:F5:5A:96:12:03:9D:25
X509v3 Authority Key Identifier:
keyid:00:9A:63:72:82:B3:D0:A0:FC:A4:A5:54:F6:93:6F:7D:F4:2E:81:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:6e:d5:1b:be:21:f6:02:ef:1e:9d:eb:da:d2:43:6d:af:96:
af:c4:7e:06:e3:9f:f0:07:51:20:72:29:df:05:5c:31:35:c7:
93:af:59:b7:ea:58:9a:33:68:0d:34:cb:6a:5e:b1:b7:1d:18:
5d:ad:bc:f2:47:aa:5f:7d:ee:c1:24:ee:58:ad:89:ae:74:f2:
86:84:67:58:b7:df:fc:4f:0b:f8:d0:c5:07:f0:96:3d:60:9f:
69:6e:41:ac:d5:41:5b:0a:e7:35:e4:f3:76:0f:5e:7e:a1:11:
3d:d5:21:3b:09:89:48:bb:59:e2:86:42:84:2e:74:df:d8:6b:
7f:e7:33:34:91:6f:87:8a:8e:8b:e0:f7:e1:67:f9:d1:a6:b9:
cc:db:cc:37:7b:0e:6c:bf:67:f6:8e:ec:1f:a4:db:c8:13:2e:
f4:11:bc:09:aa:5e:cc:04:cb:e2:4e:41:23:8e:8e:76:45:eb:
94:f1:d3:bd:b1:7a:c6:56:d1:73:c9:b1:d8:fe:88:53:d0:61:
9e:9a:d6:42:27:68:9d:de:4f:ea:b0:0e:4f:e8:03:69:88:2a:
20:23:ce:e1:a7:ad:65:03:db:e3:c2:e2:eb:06:81:82:6d:68:
31:85:4a:d1:c6:04:38:54:7d:20:de:bd:4e:c4:ee:e6:f7:2f:
34:c9:41:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 22:08:43 2025 by rpki-client