Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
File: AyHqOVCODhemUf6SrCnqOIMtC_8.mft (raw, json)
Hash identifier: yapm7d0wy32iM0hc4q3nQXKbXRu4FiJPOv5SdeWlcpM=
Subject key identifier: 68:92:05:DB:9C:90:E3:67:79:DD:AA:09:A2:0E:F8:FD:F2:D6:26:82
Authority key identifier: 03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
Certificate issuer: /CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Certificate serial: 019A24E56D538D9395D6D12DE4C78E73C3DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
Manifest number: 1595
Signing time: Mon 27 Oct 2025 09:00:06 +0000
Manifest this update: Mon 27 Oct 2025 09:00:06 +0000
Manifest next update: Tue 28 Oct 2025 09:00:06 +0000
Files and hashes: 1: AyHqOVCODhemUf6SrCnqOIMtC_8.crl (hash: 40bp7i6mSasQRVwnRbiAD2Dt6WPr1eOjh3a/J+6Rr9c=)
2: bOONrlZHdROoIahZ7NmIjgIdExM.roa (hash: 1aT2l6/v3aO2MOldiF+P6gsdMx47ItIcMI7fEC/C0L0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 09:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:e5:6d:53:8d:93:95:d6:d1:2d:e4:c7:8e:73:c3:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Validity
Not Before: Oct 27 09:00:06 2025 GMT
Not After : Oct 28 09:00:06 2025 GMT
Subject: CN=689205db9c90e36779ddaa09a20ef8fdf2d62682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b8:5c:29:a2:88:42:db:7e:2b:f9:85:41:71:
28:d9:89:f0:f4:0b:83:df:ee:66:04:49:a3:0f:e9:
df:fa:5b:b9:bd:7a:67:10:da:2a:11:79:79:bf:cb:
92:ea:62:fb:8b:53:14:de:83:49:12:54:ac:24:00:
37:7d:b8:3d:c2:19:d2:bd:5d:5c:f0:c1:aa:40:90:
5a:7a:73:23:e7:e9:6d:12:6e:4b:17:d9:56:ff:e6:
44:04:ea:e6:ce:92:87:ec:73:22:92:ac:bb:e1:e2:
90:07:43:f2:f8:33:56:a9:70:a4:c7:45:ee:c1:2a:
e5:63:25:20:b2:5c:1b:b1:54:22:34:9e:6b:9c:cf:
ad:a1:ba:a5:40:1b:c6:de:6d:7c:44:84:c8:e2:41:
6a:a9:cb:a6:5d:28:02:c5:f3:ad:10:71:9f:84:79:
73:50:96:67:eb:99:95:9d:70:b4:69:cc:e4:be:ee:
5d:ba:5a:46:5e:9f:2a:dd:67:8d:eb:88:3f:de:07:
fd:43:b6:84:df:15:dc:1d:e2:13:e8:c0:24:ca:7f:
95:81:48:dd:96:6a:a9:60:87:ac:d2:90:68:60:21:
c8:0b:f1:56:83:eb:f2:cb:d6:ff:42:e1:ef:55:8e:
39:7e:dc:a3:9b:55:4e:f0:55:06:d3:e7:44:93:63:
d9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:92:05:DB:9C:90:E3:67:79:DD:AA:09:A2:0E:F8:FD:F2:D6:26:82
X509v3 Authority Key Identifier:
keyid:03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:6c:51:5a:33:0c:fc:cc:60:4f:c5:ac:95:2e:e0:1a:97:59:
4e:ea:26:79:54:19:3d:06:4c:19:c6:e5:b5:7e:c7:69:6c:66:
d9:cc:15:79:16:02:30:b3:dd:df:d8:c1:41:9e:c1:02:c9:a7:
d5:ff:0b:d6:75:81:fd:27:7c:04:7a:4f:ed:d5:6b:b5:d1:1a:
ff:57:5b:ac:58:8c:d0:13:cb:07:24:3d:8a:19:70:ce:ce:ef:
3f:9a:b2:ca:84:b9:f9:83:f4:9f:4c:ca:3e:07:09:e4:bc:2b:
98:57:6a:f3:63:54:69:c2:59:53:ab:ef:4f:e8:39:0a:84:a8:
6b:5b:4c:da:a9:c9:c4:33:6d:b8:4c:9f:52:07:6a:79:6c:90:
40:78:c8:e0:25:a0:d2:99:40:b6:65:d1:7d:d2:71:1c:b6:24:
c3:5d:ae:4d:30:cf:a8:67:10:82:e9:c5:68:be:61:b4:bf:83:
80:e6:2b:cd:67:c2:a7:0e:4f:28:9f:c7:83:0a:88:98:42:77:
e6:ba:03:c8:99:8e:13:61:a3:8e:4d:f5:fd:41:e0:da:d9:0d:
86:82:26:44:2f:84:16:cb:84:f3:64:e2:a3:af:a0:6f:c3:9b:
1d:bf:a8:65:47:eb:bc:96:b7:72:2e:d7:d3:0f:aa:24:63:f3:
62:e0:cd:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 18:14:50 2025 by rpki-client