Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
File: aomTYnatLRhxB9-3QAeTADrBSac.mft (raw, json)
Hash identifier: qRQk3Wm0CrEQ/L4RyhKrUG8JFflZPAJ1jBPvgrPF380=
Subject key identifier: F4:F1:43:8C:9D:14:3E:15:FE:C5:33:B2:85:42:7D:85:ED:24:E6:81
Authority key identifier: 6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7
Certificate issuer: /CN=6a89936276ad2d187107dfb7400793003ac149a7
Certificate serial: 019A7112EDA6AD68283F184A624BAD78EDA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
Manifest number: 16AD
Signing time: Tue 11 Nov 2025 04:00:57 +0000
Manifest this update: Tue 11 Nov 2025 04:00:57 +0000
Manifest next update: Wed 12 Nov 2025 04:00:57 +0000
Files and hashes: 1: aomTYnatLRhxB9-3QAeTADrBSac.crl (hash: QDqhwii77hd8+qcoyi4IqZRBTXfScRed1oPuDuZfzTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:ed:a6:ad:68:28:3f:18:4a:62:4b:ad:78:ed:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a89936276ad2d187107dfb7400793003ac149a7
Validity
Not Before: Nov 11 04:00:57 2025 GMT
Not After : Nov 12 04:00:57 2025 GMT
Subject: CN=f4f1438c9d143e15fec533b285427d85ed24e681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b3:c8:88:d1:36:23:de:96:2d:73:30:ca:4d:
c8:07:f0:f9:40:bd:14:01:e2:b6:af:51:da:8b:78:
df:2e:7b:21:ad:a9:49:ec:f0:04:c1:47:ed:98:b1:
6e:17:0e:fb:ea:b6:55:da:1d:af:11:5d:0f:d7:03:
12:67:32:05:66:33:79:a0:33:ea:83:47:0a:ae:de:
8b:6a:ea:59:8a:07:e3:69:a7:89:3c:9e:b1:4a:7d:
88:e7:00:29:40:1a:af:37:6f:28:99:17:7b:8f:7d:
fc:a9:de:48:6c:be:19:b6:02:d3:2d:99:31:ce:55:
16:2e:bd:39:2d:8b:ce:c8:fc:46:af:1a:be:dd:74:
5b:22:b7:a2:dd:1b:13:a0:b8:41:ed:8e:c7:fb:38:
99:2f:f0:5b:58:c8:2a:e6:77:52:0f:6d:cc:1b:bc:
f7:0b:75:72:3e:ed:1f:52:7c:58:55:c1:db:4a:1c:
83:f4:49:cf:4b:d3:69:27:10:c3:32:25:57:5e:7c:
2d:48:3e:93:0b:a7:37:38:06:e2:f6:fb:d5:e0:77:
21:e1:2d:12:a7:92:93:8f:e2:94:78:4d:d2:d6:b0:
e6:6f:a1:95:67:08:87:f2:85:fb:d4:14:9b:31:0c:
23:72:1d:85:30:b4:17:be:0b:18:df:a2:aa:84:75:
61:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F1:43:8C:9D:14:3E:15:FE:C5:33:B2:85:42:7D:85:ED:24:E6:81
X509v3 Authority Key Identifier:
keyid:6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:36:43:f3:28:b0:d2:f1:53:cd:84:28:89:11:52:85:3e:b2:
81:56:59:f5:b1:07:45:8b:6d:bc:97:11:f3:8f:41:af:d2:ec:
01:f1:0c:6d:ca:93:5e:2c:71:33:e7:25:70:96:bf:2d:20:8e:
ac:f1:0c:76:ac:78:7e:84:18:d7:37:cc:09:2f:4f:fb:f5:43:
9a:11:5f:92:f2:5d:41:b6:7f:04:69:2e:5c:18:60:47:76:e5:
6a:3a:7a:d6:57:ae:20:2c:40:a4:15:fd:4e:b6:90:5e:5e:4f:
e3:2c:8f:dc:65:b9:2b:aa:9a:1d:01:25:9d:4e:4a:f4:07:cc:
3d:66:3e:a3:f9:e8:5a:b0:7e:03:3b:27:20:8a:6a:60:d7:9c:
01:99:f6:14:a1:f2:c7:62:cd:af:95:6b:d2:62:3e:7f:9f:59:
f8:d6:b9:1c:e1:14:d7:b0:0a:e2:c9:c9:41:00:2d:80:de:40:
ea:80:60:a7:21:53:a8:83:1c:56:b8:11:14:d7:a3:c6:dd:06:
85:69:9e:6d:bd:55:0a:5b:f8:57:e1:69:39:f3:5c:1e:74:fd:
a0:28:26:f7:a8:03:ee:1f:45:cb:1e:27:a8:b6:d8:c4:df:f5:
12:2a:5c:7a:1e:83:37:1f:ba:10:7c:f8:f1:3c:df:e7:39:4f:
23:61:38:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:41:54 2025 by rpki-client