Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
File: aVu9VCkSpm_uajQSijqM9wl9xps.mft (raw, json)
Hash identifier: PyDyIH+FzHvJTgr/s9OkinH+bhSEPhq7A/vvH0Zux5k=
Subject key identifier: D1:65:FF:83:84:8F:3C:80:92:B0:61:64:66:C5:67:2B:74:FD:32:39
Authority key identifier: 69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B
Certificate issuer: /CN=695bbd542912a66fee6a34128a3a8cf7097dc69b
Certificate serial: 019A12043DF357874670F0AED28FA547CB32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
Manifest number: 0708
Signing time: Thu 23 Oct 2025 17:00:59 +0000
Manifest this update: Thu 23 Oct 2025 17:00:59 +0000
Manifest next update: Fri 24 Oct 2025 17:00:59 +0000
Files and hashes: 1: aVu9VCkSpm_uajQSijqM9wl9xps.crl (hash: ZNJR/tPBHwkkSnlUVPgRtvI+093jiZeyp/raoWIVi8o=)
2: qq8J_fEHI4G11qkKijWQISK00G0.roa (hash: RMB75Z9HEAqFVlcsv+x1Xsp/vs4KwqhHTjxwNb+JGOc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:12:04:3d:f3:57:87:46:70:f0:ae:d2:8f:a5:47:cb:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695bbd542912a66fee6a34128a3a8cf7097dc69b
Validity
Not Before: Oct 23 17:00:59 2025 GMT
Not After : Oct 24 17:00:59 2025 GMT
Subject: CN=d165ff83848f3c8092b0616466c5672b74fd3239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:58:b3:48:ea:c7:48:24:ab:af:e8:2a:6f:4c:
b1:51:54:34:e6:0d:e6:de:bc:21:8d:92:6b:1c:19:
82:c1:f6:59:cf:c0:08:5c:7e:14:a3:39:95:bc:6f:
00:88:37:7f:aa:f9:15:b6:e4:06:52:52:cb:61:c0:
f2:c8:40:e7:3d:92:5b:d7:c8:95:53:a3:19:f8:35:
36:9d:e1:15:63:e8:f0:ea:9e:91:61:4e:c5:0d:20:
8d:03:88:42:bc:1a:a4:a2:a6:da:9e:3b:30:b0:ff:
2a:c5:28:76:ec:4c:ca:f1:8e:3c:d3:c3:8d:30:06:
82:83:32:d0:0d:4d:4b:50:97:68:ed:4d:da:5f:49:
12:c8:df:70:47:69:17:2e:54:ec:c9:50:9c:02:35:
0f:33:98:34:ca:54:7b:5f:3d:ac:56:da:cd:a1:a0:
d5:06:4a:6a:a6:20:78:db:da:4a:6a:4b:74:90:7c:
af:d5:9a:d7:15:b6:5a:0e:59:b3:41:a5:d2:c5:af:
50:01:1e:ed:b1:6d:aa:e7:bc:63:b2:2b:71:74:a4:
54:00:5b:0e:6c:9c:61:f0:b8:0f:fb:e7:84:23:2b:
c7:9e:c4:08:8d:19:1f:e3:78:a5:15:29:8e:10:35:
a6:53:26:4e:24:ec:2a:85:9a:4b:e8:06:33:a2:86:
df:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:65:FF:83:84:8F:3C:80:92:B0:61:64:66:C5:67:2B:74:FD:32:39
X509v3 Authority Key Identifier:
keyid:69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ae:cb:45:ea:93:26:c9:1c:a5:91:b0:e8:33:a7:04:79:62:
82:c3:e5:cf:f8:60:3c:32:7d:d0:fb:9c:70:67:84:03:17:5f:
d4:dc:3f:01:6b:3e:79:24:fb:7b:d0:14:04:14:d0:5a:f7:0a:
9a:8d:a7:fb:65:7f:b7:87:93:94:10:23:9d:29:5e:92:fe:87:
07:4c:ff:fa:c2:15:40:47:df:ac:cf:cf:85:93:52:7f:1e:eb:
a3:a9:3d:1c:db:29:5f:7e:02:e9:bd:0e:e5:f1:03:79:ca:95:
42:cd:27:08:1f:7a:10:09:0b:e9:e6:72:57:d8:75:40:88:cf:
e9:e2:f9:9c:d2:7e:d9:3f:24:5a:23:80:24:35:00:e6:5e:7d:
12:fd:05:6d:f9:48:b1:e8:ea:fe:5b:0b:25:3d:f7:da:f2:b1:
3e:1b:63:40:e5:b9:46:aa:d4:b0:4d:b6:31:e4:e6:2f:0b:b2:
ac:7c:c0:c7:71:c0:6c:af:d2:f0:8b:d4:da:51:e9:11:d9:fc:
86:e1:6b:7d:df:25:62:03:f5:53:48:f9:79:30:44:93:16:56:
5a:a3:2a:4e:10:1b:1a:3c:e6:1d:83:8d:ce:8c:c8:a2:1f:d9:
f9:ea:e4:8c:83:f9:e4:28:0a:06:6a:4e:1e:4e:3e:ef:89:6d:
62:ed:44:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 21:38:02 2025 by rpki-client