Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
File: AYZ9mLBSF68a-spyJrvWEzcHSfA.mft (raw, json)
Hash identifier: BXVjq/JBtTNmNqySYraWdd9vZc+pyP5vHde9Oz58PxE=
Subject key identifier: 01:2F:A4:40:0F:5D:B5:E4:50:93:55:54:12:5B:05:8B:47:26:C4:15
Authority key identifier: 01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
Certificate issuer: /CN=01867d98b05217af1afaca7226bbd613370749f0
Certificate serial: 019923D5A7617D9DB708733E21DCAB3B9D85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
Manifest number: 0358
Signing time: Sun 07 Sep 2025 11:00:28 +0000
Manifest this update: Sun 07 Sep 2025 11:00:28 +0000
Manifest next update: Mon 08 Sep 2025 11:00:28 +0000
Files and hashes: 1: 1ENw1gcCvt1Pmax0p8zhB7SKAEg.roa (hash: 1qhYf9E0Pe4/V/O+LSKzrT8cldjvFnxKyFJ5/QtS500=)
2: AYZ9mLBSF68a-spyJrvWEzcHSfA.crl (hash: 53vHogYIbpYz0Qek47fHv/bh3E88KClYaDBfQSGPp/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d5:a7:61:7d:9d:b7:08:73:3e:21:dc:ab:3b:9d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01867d98b05217af1afaca7226bbd613370749f0
Validity
Not Before: Sep 7 11:00:28 2025 GMT
Not After : Sep 8 11:00:28 2025 GMT
Subject: CN=012fa4400f5db5e450935554125b058b4726c415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3d:39:6d:5b:74:b9:2e:68:a9:b1:e5:e2:4d:
01:30:3d:f6:76:98:74:98:3a:92:57:b0:07:d5:1c:
9c:44:69:0e:3d:28:f7:61:5d:76:d7:12:ab:5b:db:
f5:4c:6d:0d:f0:d4:0c:ad:da:93:f1:49:86:33:8b:
e3:cc:53:94:00:2c:41:dc:5e:c1:5c:48:3e:1e:cb:
f8:b4:82:31:ee:e4:5f:c7:1e:f5:dd:5e:f3:b1:0d:
e4:4c:2c:01:36:2e:db:e2:a5:2d:95:69:ee:0f:8f:
58:17:9c:4e:d9:3a:59:3c:93:88:05:0c:3b:f3:25:
f7:93:0a:54:5f:0e:19:4d:76:6c:c3:4d:3f:28:a8:
42:48:76:d5:06:a6:18:0f:a6:65:22:c9:86:93:2a:
a4:d5:02:81:03:7f:f2:02:50:19:14:0e:72:ab:5f:
d4:cf:b8:46:4a:d6:16:9e:0c:f4:77:8b:89:64:2e:
ad:c0:b2:8c:09:f8:bf:18:8d:60:89:27:0d:98:d6:
b2:ad:4a:d8:6a:28:44:5f:6f:f9:9c:a2:9f:35:e2:
02:5c:a0:36:6b:e2:20:b9:29:f4:96:05:9c:eb:00:
34:57:1f:f0:2a:7e:7e:13:e9:de:65:63:00:50:9e:
7a:02:0b:a8:42:f9:9c:44:ae:40:0c:c3:3d:0b:63:
81:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:2F:A4:40:0F:5D:B5:E4:50:93:55:54:12:5B:05:8B:47:26:C4:15
X509v3 Authority Key Identifier:
keyid:01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:d0:fb:4d:40:4b:c9:83:fb:2a:45:ae:7b:6b:b7:25:ce:a9:
db:30:58:ea:9d:16:02:1b:92:cb:64:0e:52:ac:33:16:01:83:
35:f5:0f:b1:39:74:47:05:61:47:44:70:20:95:fd:7b:54:ea:
c6:a8:1f:91:e5:7c:16:50:f9:d0:63:fd:e1:fc:49:29:c0:83:
3c:b6:12:6e:06:7c:ce:df:d4:04:a5:d0:71:4e:bf:a5:12:69:
b0:06:d5:66:16:f7:a8:36:e8:30:24:7d:b9:3e:88:b8:76:f3:
58:d7:42:3c:fc:1f:10:69:27:5b:a8:9a:9c:d7:e8:4e:e1:f9:
f0:0d:37:50:63:5c:22:9b:77:1a:65:94:a3:89:ec:d3:c0:70:
39:8a:28:ae:d0:2b:e2:82:b5:e6:c0:f6:a9:ab:08:47:30:36:
95:3c:51:8f:fd:38:d0:c4:a8:a0:2a:de:67:1f:4a:cf:36:20:
8b:e8:ee:aa:43:61:9e:4d:f9:d7:0c:95:74:ef:98:a5:ff:c4:
05:68:01:86:65:6c:f7:a3:ca:d9:4a:c0:9d:75:97:53:4a:35:
4a:2b:8a:0e:99:82:a6:49:00:28:c8:bb:b8:92:da:b6:81:25:
3e:26:ec:00:12:fd:11:b7:e4:07:d2:f7:4d:22:29:b0:e3:ed:
6c:6d:28:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:32:25 2025 by rpki-client