Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.mft
File: aYhRnekYGF-24euv0eCDXKoRMuQ.mft (raw, json)
Hash identifier: PsQesqYnY7LC3reCVhqiauuKi7soCswW3SXf6OQk/8w=
Subject key identifier: 8A:2A:88:DB:25:81:7E:63:DE:24:2A:A8:87:3A:84:E5:22:C3:D5:7B
Authority key identifier: 69:88:51:9D:E9:18:18:5F:B6:E1:EB:AF:D1:E0:83:5C:AA:11:32:E4
Certificate issuer: /CN=6988519de918185fb6e1ebafd1e0835caa1132e4
Certificate serial: 0198C724F2766A19EA05B197C2459E395AF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYhRnekYGF-24euv0eCDXKoRMuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.mft
Manifest number: 110A
Signing time: Wed 20 Aug 2025 11:02:24 +0000
Manifest this update: Wed 20 Aug 2025 11:02:24 +0000
Manifest next update: Thu 21 Aug 2025 11:02:24 +0000
Files and hashes: 1: TBGpVFI2lLvyIH4AY_XvgasXlhQ.roa (hash: tvFeHcNNfQ4t5ATDiY+/Dak2Xl/WexRzcSGHjDplBZM=)
2: aYhRnekYGF-24euv0eCDXKoRMuQ.crl (hash: gyIk38XUwZPaMsH5oSEvllmf1H2uGk/ndzmpoSDKcj8=)
3: rbkwFcYLaEEcgP57xj9znwlpmj4.roa (hash: enJo8AXIWRTz+79R6txrBmjabj1OaXyVz0RKSwmCnM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYhRnekYGF-24euv0eCDXKoRMuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c7:24:f2:76:6a:19:ea:05:b1:97:c2:45:9e:39:5a:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6988519de918185fb6e1ebafd1e0835caa1132e4
Validity
Not Before: Aug 20 11:02:24 2025 GMT
Not After : Aug 21 11:02:24 2025 GMT
Subject: CN=8a2a88db25817e63de242aa8873a84e522c3d57b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a7:9f:82:ea:1d:17:cf:3d:f5:a1:6a:56:c9:
7a:b0:cd:2c:86:64:84:71:e1:a3:af:2d:f0:cc:04:
55:64:22:07:6a:72:b9:fb:07:7b:ba:53:5b:cc:4d:
16:98:77:98:87:c9:cf:9b:af:8c:12:30:d7:c6:fa:
5a:f0:2d:8f:df:91:90:bb:99:18:df:f4:6f:1c:f1:
88:b3:11:80:5b:ec:b4:7b:6d:43:e5:d6:9c:b5:99:
ce:b5:61:4f:8c:b3:0b:9b:74:89:a4:f7:7f:75:0e:
e3:e2:aa:5e:27:23:92:3e:10:90:0d:e8:25:66:fb:
5e:b2:3c:05:f8:8a:98:92:c8:c4:d3:12:7a:f2:8b:
17:1f:29:cb:fd:2e:8e:7f:bd:0f:3e:a1:9b:20:d6:
89:01:0d:78:70:f8:9f:b5:30:3f:af:39:ee:6e:f2:
b1:52:0f:cf:ba:d6:47:ce:e0:8d:07:70:12:d3:28:
36:47:d1:79:c3:9f:f9:5f:8e:f6:ec:b6:cb:ed:2a:
18:28:65:dd:19:01:95:fd:1f:ba:24:72:4f:0f:c4:
35:c1:71:ea:43:53:89:3a:76:f1:fd:cb:c2:7b:28:
e8:a8:df:a6:bb:16:05:a9:35:1f:88:40:94:7e:8c:
c8:15:fe:b0:3a:1d:63:e6:06:87:d1:84:ea:25:44:
be:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:2A:88:DB:25:81:7E:63:DE:24:2A:A8:87:3A:84:E5:22:C3:D5:7B
X509v3 Authority Key Identifier:
keyid:69:88:51:9D:E9:18:18:5F:B6:E1:EB:AF:D1:E0:83:5C:AA:11:32:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYhRnekYGF-24euv0eCDXKoRMuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:60:f7:aa:1d:d2:3b:77:30:94:27:12:1c:71:f4:8b:9d:8f:
71:36:33:cd:05:e0:8d:89:c7:d8:b8:d1:0b:08:32:c0:78:ca:
81:e9:e5:76:0b:37:6b:07:aa:60:b6:00:a8:5c:ad:13:85:3d:
4b:57:94:42:e8:c3:7e:16:2d:66:3d:89:ba:b1:5d:da:ab:2b:
7e:03:d5:2e:78:ba:84:45:fa:51:b3:30:eb:7d:19:a5:c2:80:
60:ea:35:75:24:5b:7e:43:8d:e9:c3:33:6d:d2:21:a7:99:13:
15:04:38:44:fd:6e:14:0e:05:10:16:93:19:5a:71:bd:4c:ca:
e4:78:b1:f4:6d:72:57:88:3e:fe:7c:53:68:83:87:e3:94:66:
63:72:5b:b3:b4:5d:0f:c9:6e:c2:22:29:77:5f:e8:50:f6:97:
31:0a:2e:a0:05:b0:18:6d:b2:81:c6:9f:6d:83:65:e9:4b:0f:
77:98:80:f9:44:f6:41:5b:49:58:9f:89:2d:1a:3a:59:ac:91:
1e:d0:41:06:74:23:e3:fc:60:28:6a:fb:98:d3:6c:39:64:70:
5e:e4:b6:6c:9b:41:59:77:1f:81:2e:c0:1f:b2:90:f9:7e:71:
1f:dc:a3:03:9f:4b:c4:61:b7:80:9b:03:90:04:1d:24:bf:6f:
d0:1b:6c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 20 13:53:24 2025 by rpki-client