Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
File: aYfUeTXhE31URCbbUojhKpwCWsI.mft (raw, json)
Hash identifier: Q7xbtPSw1zMFbE03kftqfLWpz+EnTuOC46vt1kULtHY=
Subject key identifier: 0D:FA:2E:2D:27:76:FE:1C:2E:A1:22:63:23:DB:DD:9B:4E:65:A0:04
Authority key identifier: 69:87:D4:79:35:E1:13:7D:54:44:26:DB:52:88:E1:2A:9C:02:5A:C2
Certificate issuer: /CN=6987d47935e1137d544426db5288e12a9c025ac2
Certificate serial: 019921E7B50216EE59B70B9A98B7090F025C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
Manifest number: 0E36
Signing time: Sun 07 Sep 2025 02:00:57 +0000
Manifest this update: Sun 07 Sep 2025 02:00:57 +0000
Manifest next update: Mon 08 Sep 2025 02:00:57 +0000
Files and hashes: 1: aYfUeTXhE31URCbbUojhKpwCWsI.crl (hash: 9yZsaRMCbsS2RcWa3kTJ3plz4DPV+ZHyqwVEKxS3D+A=)
2: u5cM_QOizpw-qJJPqONMvmbrpo8.roa (hash: GZfhlRyj3hdFyyCNQhpcV7zv1K17zHPhBmiPFi/AntI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:b5:02:16:ee:59:b7:0b:9a:98:b7:09:0f:02:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d47935e1137d544426db5288e12a9c025ac2
Validity
Not Before: Sep 7 02:00:57 2025 GMT
Not After : Sep 8 02:00:57 2025 GMT
Subject: CN=0dfa2e2d2776fe1c2ea1226323dbdd9b4e65a004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c9:04:ac:c7:62:93:3c:b0:f5:98:ac:43:23:
1b:63:6b:c5:a5:48:49:4a:c9:db:c8:85:45:68:4c:
b9:e3:ee:7d:e6:f7:8f:a0:d3:30:a7:81:82:62:81:
16:88:29:57:04:1e:9d:7e:af:b8:71:cd:4b:d9:9c:
a5:91:04:33:c1:0b:7b:76:e0:a4:ae:e5:31:84:3f:
62:1c:46:91:49:a5:7e:7d:61:a1:9b:45:3a:b1:45:
2f:3b:5b:21:57:37:c8:83:c5:2c:b2:9a:69:37:ef:
82:3a:58:f2:9d:7d:c0:bc:95:f9:00:cb:13:63:fd:
e7:22:bc:59:62:fe:1b:10:af:db:f6:c1:91:e2:78:
5a:b5:df:0d:54:9e:5e:5e:f7:1e:8d:9c:40:5d:a7:
33:09:cf:fe:97:d9:ca:0f:4e:37:33:a6:3b:91:07:
d6:78:1b:32:1f:97:dc:24:a5:e1:7b:15:f9:80:5c:
fe:cc:a8:9c:be:79:58:39:c6:86:3e:9e:ad:dc:63:
37:56:dc:4f:7c:73:f5:24:a8:e8:cd:00:1a:4f:eb:
af:7f:ca:5e:5c:b2:15:b6:78:3b:9f:68:2a:61:75:
84:75:14:e8:9a:be:02:ab:01:f7:1f:a1:43:10:fc:
85:e8:fc:fa:68:ad:28:d7:9b:0c:46:cb:2c:c5:4c:
b1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:FA:2E:2D:27:76:FE:1C:2E:A1:22:63:23:DB:DD:9B:4E:65:A0:04
X509v3 Authority Key Identifier:
keyid:69:87:D4:79:35:E1:13:7D:54:44:26:DB:52:88:E1:2A:9C:02:5A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:01:99:65:38:48:28:e9:fc:36:b1:58:67:ec:de:24:2e:e0:
98:7d:7b:cf:ff:1f:3e:dd:f1:1b:c3:29:90:eb:df:5b:41:d8:
5a:de:a5:0d:a6:ae:5a:82:0e:f8:53:7a:1d:6d:5b:f4:d6:4e:
a8:fe:79:07:db:5f:f1:a7:e8:a7:77:df:f4:26:98:b2:7b:61:
db:90:36:c4:2c:1a:5a:23:02:87:62:ce:f1:24:a0:8b:4c:f2:
df:95:75:49:b1:fd:4b:30:f4:9d:58:a5:36:c7:0a:80:0a:5d:
c8:38:fa:c1:bf:09:8d:01:af:36:61:f0:ae:31:b6:bc:4c:cb:
10:0b:d6:58:1a:72:34:8f:7a:f9:99:dd:2c:e6:51:66:0a:88:
40:79:9c:b1:bc:c5:da:53:3d:6a:d7:76:49:e6:5c:b6:99:5a:
86:5b:b3:db:82:6e:ee:4d:c8:67:ad:5b:1e:3e:d8:d8:e8:0f:
aa:ac:5d:01:c5:29:de:de:1b:77:33:dd:14:99:03:01:cb:bd:
5d:3f:5d:c4:c6:89:e1:a1:b5:7e:55:e7:d0:5e:f8:38:3d:e6:
47:86:70:b5:af:13:70:b4:60:f5:95:7e:e4:a7:65:8d:e3:05:
7a:2f:e3:ba:ab:ba:14:17:a7:26:89:ec:fb:32:6a:98:52:72:
04:9a:b2:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:18:41 2025 by rpki-client