Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
File: aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft (raw, json)
Hash identifier: T4V8LwfyPKyY96EPy2XzskPPgaAQFrw5dh6Oz1XZUfY=
Subject key identifier: 90:28:16:C0:C7:50:D6:0B:20:8C:F5:7A:F8:1C:78:F7:E7:85:A3:5B
Authority key identifier: 68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
Certificate issuer: /CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Certificate serial: 0199C60EAF876C007B30D556A3511D7F6225
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
Manifest number: 15C4
Signing time: Wed 08 Oct 2025 23:01:15 +0000
Manifest this update: Wed 08 Oct 2025 23:01:15 +0000
Manifest next update: Thu 09 Oct 2025 23:01:15 +0000
Files and hashes: 1: aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl (hash: ijhm+eNVsJW/4dYoAi2Pql/7Ve2qOWSvUVF7k2P44tA=)
2: cMnqdtCxCnyUSWOfUxTVBWPspak.roa (hash: OOJ4v4cc4LujDvo5fdL7b0ZauPjg9CekPa/sj+wo+LE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Oct 2025 22:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:c6:0e:af:87:6c:00:7b:30:d5:56:a3:51:1d:7f:62:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Validity
Not Before: Oct 8 23:01:15 2025 GMT
Not After : Oct 9 23:01:15 2025 GMT
Subject: CN=902816c0c750d60b208cf57af81c78f7e785a35b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cf:1a:33:53:13:cd:34:d0:51:e8:87:e9:96:
a7:97:dc:2a:a7:c6:a2:e1:01:2a:17:ae:96:3f:cf:
6a:91:78:c5:5e:42:02:7a:30:f0:f3:d0:06:78:de:
3c:30:87:89:35:0d:54:44:79:7f:7f:96:d1:62:fe:
a9:ca:05:bb:85:b3:b9:3c:44:9b:2b:7a:f5:54:c2:
ce:01:9d:2e:56:f8:3b:aa:5b:7a:9a:d1:ca:32:01:
ba:8b:4b:1a:f2:bb:f1:ff:92:3c:2d:a5:fc:57:09:
40:bc:2e:1b:9d:6b:a1:64:f6:b5:d1:39:d2:6a:20:
31:2d:89:88:67:aa:ee:cb:a1:17:ba:3e:6c:e6:8d:
1b:9e:ec:6a:10:f8:0a:fb:8b:9a:0c:23:30:af:46:
67:d0:fb:47:67:34:2d:0c:bd:10:d2:8e:9b:bc:97:
c7:47:29:c9:5b:f8:00:5b:f4:ce:3e:39:55:84:bc:
e6:d1:ba:a3:09:7d:3e:d0:da:97:f0:23:7a:e2:76:
e0:f9:d2:b6:7a:03:ca:96:81:c5:24:fc:66:db:55:
8d:38:1d:9d:bd:7e:41:da:ff:93:7d:7f:5a:94:77:
6f:45:df:ee:77:a1:c0:f0:32:4f:71:cf:55:91:35:
b4:54:3c:d5:f5:11:13:9f:56:3b:fe:fe:3e:89:92:
3d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:28:16:C0:C7:50:D6:0B:20:8C:F5:7A:F8:1C:78:F7:E7:85:A3:5B
X509v3 Authority Key Identifier:
keyid:68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:ae:0d:c5:69:87:5b:ea:f8:44:f6:79:92:e2:57:0b:db:62:
80:0b:b2:75:ab:70:31:f4:a7:01:25:41:e6:ed:fa:7f:4e:87:
38:4c:f9:a2:f0:3a:70:67:ca:64:fb:88:66:e3:cb:85:b5:54:
ef:70:d9:d5:60:13:56:e6:18:f6:74:e7:f6:40:91:59:36:a2:
15:c6:9a:68:f7:41:a4:ba:77:54:6f:74:79:70:17:90:98:83:
0b:ca:10:3f:d0:49:9d:17:23:e2:d7:b5:45:a9:01:8b:75:e5:
a8:7d:e8:90:c6:82:03:40:4a:07:27:b4:6a:be:22:35:78:d3:
5e:bf:e1:2c:65:91:0c:c1:08:00:42:e1:a6:90:6d:b6:4d:20:
c7:83:67:7e:48:37:a4:d1:af:f7:99:fd:70:19:2b:a2:ea:34:
62:6f:57:11:e6:ff:ae:d3:44:61:ab:3f:5d:91:e7:ee:7d:b8:
79:07:6c:67:aa:4f:38:61:a3:d3:c5:40:cd:71:06:74:c0:95:
16:d2:51:53:49:26:03:78:46:fa:d6:c4:30:19:76:f1:97:00:
86:23:31:34:15:69:5c:60:11:27:be:2e:bc:5f:f3:be:f9:0f:
1a:dd:31:46:74:eb:3a:0a:52:a3:85:c4:7e:c2:15:55:1f:b3:
ff:a8:6f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 9 03:40:15 2025 by rpki-client