Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
File: AyHqOVCODhemUf6SrCnqOIMtC_8.mft (raw, json)
Hash identifier: pDmFi/m4CzdVvpB6hGAd1oVrpjwlhU50gLgnphsaiXE=
Subject key identifier: BD:1C:8E:32:DB:5F:AA:4A:7A:EE:73:A2:98:65:50:13:24:7E:A0:63
Authority key identifier: 03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
Certificate issuer: /CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Certificate serial: 019933808F623CD70DA0CA58A3667BD2DB1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
Manifest number: 1518
Signing time: Wed 10 Sep 2025 12:01:27 +0000
Manifest this update: Wed 10 Sep 2025 12:01:27 +0000
Manifest next update: Thu 11 Sep 2025 12:01:27 +0000
Files and hashes: 1: AyHqOVCODhemUf6SrCnqOIMtC_8.crl (hash: gP4n+/z3XEd3VyPvlqdMq2xXUfmFDK+nZn7TpJntkj0=)
2: bOONrlZHdROoIahZ7NmIjgIdExM.roa (hash: 1aT2l6/v3aO2MOldiF+P6gsdMx47ItIcMI7fEC/C0L0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:80:8f:62:3c:d7:0d:a0:ca:58:a3:66:7b:d2:db:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Validity
Not Before: Sep 10 12:01:27 2025 GMT
Not After : Sep 11 12:01:27 2025 GMT
Subject: CN=bd1c8e32db5faa4a7aee73a298655013247ea063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:91:ba:e6:50:d1:be:df:0f:58:4c:4f:13:0a:
24:54:75:fa:8d:cc:7a:03:36:d3:26:75:b1:61:c2:
54:2c:53:a6:73:ae:5a:66:92:44:6f:7b:5e:e1:62:
9a:4d:21:6d:00:75:f5:d5:77:33:4a:de:06:a3:f2:
dd:97:ac:69:70:7f:1e:0f:d9:45:bc:3d:45:20:26:
1d:2e:83:c0:4b:9f:72:b4:15:63:4a:da:6b:03:34:
51:76:d1:80:82:3f:ac:20:81:ef:8e:4e:8b:53:8b:
c1:76:21:75:8b:7a:bc:c1:ac:41:05:c1:d3:18:1c:
11:8d:c3:f2:42:e9:3c:70:dd:32:08:fc:10:54:91:
86:58:66:a7:07:77:80:5a:c8:86:75:c3:5d:89:22:
a5:0a:a7:5b:aa:30:32:3a:d3:d0:dd:46:b8:a8:2f:
56:c1:8d:9c:ac:f3:96:89:4a:26:38:3e:3d:30:5b:
10:ec:b5:ed:d0:f7:10:84:9c:ca:16:6a:ca:08:68:
d4:6f:4c:b7:70:b8:e1:75:c5:89:de:59:3e:e5:32:
4f:41:e0:e0:53:76:b3:6b:61:1b:b3:6c:6f:b5:9b:
11:7a:5c:18:e7:7f:a5:24:12:82:64:3a:3a:64:c6:
93:ad:80:05:5b:8c:e7:ce:ae:01:94:a3:37:f9:82:
cf:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:1C:8E:32:DB:5F:AA:4A:7A:EE:73:A2:98:65:50:13:24:7E:A0:63
X509v3 Authority Key Identifier:
keyid:03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:e5:c5:20:cf:30:54:d5:63:63:fd:d3:55:20:17:f4:fb:15:
03:f6:b7:5e:fd:2e:9b:e5:61:2a:3a:5a:57:b7:f1:ae:71:a9:
1d:bc:c9:e5:61:cd:fe:89:c2:ce:65:23:d1:a6:ae:9c:a2:cb:
b3:68:55:82:cf:6c:0b:31:48:c5:ad:00:a3:9d:ea:6d:fd:45:
69:ad:35:60:b8:49:13:0a:4a:04:ef:3e:31:a9:80:10:0b:e0:
8a:5a:19:e6:09:58:eb:7f:f3:cd:ce:d7:99:00:1d:34:50:5b:
3c:92:a5:06:78:4d:60:8c:09:96:28:58:52:7d:9b:c3:e8:16:
51:bf:d5:60:69:8c:95:4e:18:54:c2:5c:6f:8d:6f:37:06:7b:
6e:cc:0d:44:b8:91:f5:eb:da:93:54:3a:4f:4d:49:8b:d4:fc:
b6:89:a4:ac:a4:a5:06:b5:56:e4:65:bf:f2:4d:6f:ea:ad:ba:
48:73:6e:aa:c3:c6:c7:ab:81:7d:47:f2:cf:56:d1:78:db:75:
f1:ed:f5:89:99:7e:14:3b:48:87:6a:4e:79:06:11:a8:06:90:
e4:9c:06:ff:b9:a6:71:42:f0:b4:95:5e:cf:d4:50:6f:f3:57:
88:fb:c1:b9:32:a9:e9:8c:fd:c1:1a:c0:1a:83:99:8b:b2:5d:
3c:e4:5c:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 14:32:20 2025 by rpki-client