Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json)
Hash identifier: vBHtUjHFjoufgAz9mRCda60+/8Zm7v01sD5uV4SX14c=
Subject key identifier: A0:A0:58:C8:C2:81:63:57:B1:AC:82:3B:27:90:E9:57:3A:91:8F:09
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 019922FA35E2595C1F49137F0563A0B693E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 07:00:47 +0000
Manifest this update: Sun 07 Sep 2025 07:00:47 +0000
Manifest next update: Mon 08 Sep 2025 07:00:47 +0000
Files and hashes: 1: Q01X85MGyHMF5rr2gbqyxSbVGJU.roa (hash: 3pLndBzBIS9IcjtzdUX4XacaMZCMolKRG+4KwxWHWEU=)
2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: cZWriMZ7r6EJaH9y594I8IJHiLwLCZESQ4SDQlZx86g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:35:e2:59:5c:1f:49:13:7f:05:63:a0:b6:93:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: Sep 7 07:00:47 2025 GMT
Not After : Sep 8 07:00:47 2025 GMT
Subject: CN=a0a058c8c2816357b1ac823b2790e9573a918f09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ab:92:1c:55:8b:f0:b4:9a:a8:95:73:5a:dc:
d8:3c:24:38:c8:74:e1:26:f9:cf:eb:51:e3:cd:d3:
d7:70:9f:0c:b6:57:ef:1e:9e:e2:93:86:33:b9:3d:
6a:26:48:33:a3:6b:ad:ed:d2:5f:54:55:72:81:8c:
5d:65:1c:10:bd:c0:96:e7:f7:91:c0:f6:e7:83:aa:
0e:48:e2:43:06:4d:ad:46:cc:d6:27:c7:84:57:ad:
6f:ee:01:7e:10:14:4c:8c:ef:25:f5:97:d8:ac:7b:
7f:7e:a1:a8:39:29:1f:4f:50:88:a7:53:99:d5:65:
65:71:4a:53:bb:a8:d1:f4:fb:f0:07:f6:06:0e:1c:
e3:9e:b3:26:79:63:c6:a6:3b:c3:f1:d3:f6:c3:4f:
3f:c2:e4:ac:6a:a3:a7:c5:10:70:d3:15:65:57:60:
7f:20:8a:a2:77:2f:d9:6a:c6:cb:50:b9:23:d5:67:
0c:35:45:25:83:51:30:50:d7:de:95:74:96:98:f5:
5a:a5:03:3e:62:6a:8c:d7:a9:08:2e:c5:11:c6:22:
c9:71:46:29:90:8a:b7:6c:92:a0:81:a9:9b:87:17:
5d:4c:72:7a:5e:ab:4b:dc:e2:22:40:3d:65:d4:ee:
ac:92:4f:81:3b:08:ac:ca:79:0f:4c:50:24:00:03:
ad:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A0:58:C8:C2:81:63:57:B1:AC:82:3B:27:90:E9:57:3A:91:8F:09
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:ff:a6:d6:e8:9e:a8:3d:2a:56:cb:13:10:c7:71:99:a0:d3:
a3:e5:20:bb:25:ff:f8:c9:df:5f:f6:37:3d:e8:37:93:ba:6b:
9b:8f:50:95:12:bb:69:f7:0e:cc:e3:68:8e:b7:73:67:86:1c:
7d:f3:dc:af:ce:3c:8f:81:16:6c:93:41:a0:34:bd:ad:ae:74:
cf:9d:b1:09:c1:c2:ba:87:ff:79:a4:f0:17:ed:3e:4d:29:71:
72:5d:90:df:4e:f5:94:6e:22:e6:b2:60:97:11:04:55:26:3b:
97:55:8a:cc:57:a6:74:9f:2d:7c:12:0d:9f:22:b0:c6:04:71:
5a:09:36:22:cf:af:6c:3c:86:3b:44:4f:5e:90:f0:08:af:d9:
a5:3f:f4:6c:3d:ea:0a:3f:81:e5:bf:b7:66:d6:96:e8:ed:ef:
d9:8a:c8:f5:1c:83:48:83:ac:ef:af:05:8d:6b:fe:58:c4:27:
79:73:ef:a5:9c:e3:8e:21:87:33:7d:27:95:0c:93:6f:d0:d7:
8d:a6:ce:35:62:32:b5:6a:29:50:b3:7f:fe:d7:fd:2e:4b:57:
be:40:ae:39:5f:4a:aa:28:1b:0e:86:91:c3:02:70:48:54:41:
73:3d:ee:df:aa:ee:f5:df:6e:27:db:e6:ac:f3:ac:d2:7f:86:
c5:56:37:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:27 2025 by rpki-client