Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
File: aAONTKy9QZGZUus3CcFlM4OJAOM.mft (raw, json)
Hash identifier: BMykJOobcbrhkfBLEdRu3Kne9TCkp+513uP+gbqDxs4=
Subject key identifier: 78:D4:17:90:99:BB:7C:71:51:92:4B:F6:4B:7E:09:3C:5D:9E:4B:85
Authority key identifier: 68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3
Certificate issuer: /CN=68038d4cacbd41919952eb3709c16533838900e3
Certificate serial: 01993ACC7034753C26BA23809495FD4019C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
Manifest number: 1681
Signing time: Thu 11 Sep 2025 22:01:40 +0000
Manifest this update: Thu 11 Sep 2025 22:01:40 +0000
Manifest next update: Fri 12 Sep 2025 22:01:40 +0000
Files and hashes: 1: K7Q4iSU5tGlQaFLDbZ74ga5u7QI.roa (hash: 4IoPifHHzLWAa9SoaMyYdsFHlPVY27b7G1cPfRmMmFw=)
2: aAONTKy9QZGZUus3CcFlM4OJAOM.crl (hash: Fj2uoUgAwSkpCQsCNTW7kIUSzlo4W8qopi0zndcUKpk=)
3: lZ9mN5xTttKw5Lu3kt5TBdxoI_c.roa (hash: oCvvxX98yWLH3kfCtYuDTFzL1eqlVEqmDIMPTij8zho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 21:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:3a:cc:70:34:75:3c:26:ba:23:80:94:95:fd:40:19:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68038d4cacbd41919952eb3709c16533838900e3
Validity
Not Before: Sep 11 22:01:40 2025 GMT
Not After : Sep 12 22:01:40 2025 GMT
Subject: CN=78d4179099bb7c7151924bf64b7e093c5d9e4b85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:76:92:67:dd:98:da:27:75:d2:54:9f:23:40:
b3:c6:0b:3b:a0:68:17:7b:f8:49:39:01:3a:e6:3a:
e3:08:1d:d2:a8:8c:7c:31:99:1e:c0:08:45:16:5c:
1a:e0:60:06:d5:47:43:db:18:20:e9:a3:e7:a6:8b:
f7:93:71:07:fd:68:63:df:0a:d3:88:d4:11:9d:a7:
d0:e0:86:e7:78:bb:f6:bb:ce:65:9c:83:9d:83:9f:
7e:9b:c6:00:44:f6:20:5e:b3:2d:a7:52:c2:db:89:
06:ee:c2:89:7f:26:44:09:a4:cf:c5:d5:f1:c9:40:
38:dc:91:a0:ce:bb:1a:c6:b5:c8:89:7b:70:bd:8d:
43:10:14:52:a3:de:ef:50:07:2f:9a:28:11:a8:88:
2b:d4:54:67:a6:64:4a:47:7a:70:ec:4f:01:dd:32:
e9:30:25:e5:73:ae:ec:2c:35:14:98:58:e1:e3:74:
7a:d9:3b:0c:d3:9f:bd:66:b8:5f:aa:c8:ff:ee:3e:
df:55:0b:80:d6:be:7e:97:c3:00:2c:65:30:e2:89:
38:7d:f8:57:90:0b:72:9c:6d:65:11:a1:c8:6d:cc:
20:b8:dd:59:ff:d1:fb:3a:95:c7:38:c4:9f:d0:52:
2f:7b:54:1e:45:1e:b2:5c:12:c3:62:b9:62:d4:ff:
0e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D4:17:90:99:BB:7C:71:51:92:4B:F6:4B:7E:09:3C:5D:9E:4B:85
X509v3 Authority Key Identifier:
keyid:68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:55:2d:af:12:a7:80:f9:0f:c2:fd:08:68:ac:3d:64:e8:e6:
4d:28:d9:80:a8:03:8a:2f:37:5d:b6:3c:35:02:ec:43:67:56:
9e:42:61:3f:0f:0d:6b:70:bd:25:3b:f6:93:e3:e8:da:3a:ad:
42:f2:b5:f6:55:44:af:36:d2:91:5f:7d:bb:bf:70:4a:e8:9a:
49:f6:5e:b9:65:77:eb:22:bf:97:17:bb:07:ea:7f:2c:77:11:
8f:86:7c:a2:c7:33:9e:91:93:61:47:fe:f9:3f:b7:e0:1a:11:
bd:9f:f6:a6:75:a8:14:f3:9f:39:56:ae:76:15:62:ce:81:77:
57:e5:bd:35:fe:73:ba:69:43:fd:a5:fc:ca:a6:a7:28:8d:51:
03:cd:61:1c:2c:78:b8:7f:f2:39:e4:8a:08:e2:6f:30:4f:d8:
9d:31:49:fb:f8:da:d1:22:ad:09:43:9c:56:1b:2a:e4:75:b9:
9d:37:41:5a:12:b8:95:79:70:f6:51:60:e8:0e:3f:05:06:b5:
e8:cf:b1:5d:5a:f9:07:d7:1f:f6:0e:ea:b5:96:0e:96:58:f5:
cf:fc:5d:9a:71:09:72:8d:1b:ed:cd:60:18:77:f9:d6:12:d0:
d7:b6:1e:95:86:28:f2:97:7e:69:75:48:88:87:22:8f:7b:e4:
fb:b7:76:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 12 06:13:38 2025 by rpki-client