Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
File: rlAYJxRKMYi-oczuWGVv1kKdj5U.mft (raw, json)
Hash identifier: teOkIo+ft7iq1kASQ32hSHQ/QHn50hk/ceyiYO9FAB0=
Subject key identifier: 65:0B:69:4F:99:07:00:CE:39:23:83:48:38:11:F0:2E:1A:BF:43:6E
Authority key identifier: AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95
Certificate issuer: /CN=ae501827144a3188bea1ccee58656fd6429d8f95
Certificate serial: 01993A27015484020B8D764E5EA968429130
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
Manifest number: 1683
Signing time: Thu 11 Sep 2025 19:00:58 +0000
Manifest this update: Thu 11 Sep 2025 19:00:58 +0000
Manifest next update: Fri 12 Sep 2025 19:00:58 +0000
Files and hashes: 1: VNzG3ccHyaf-Ofv5con_nysGgHU.roa (hash: 2VzIYqdKT2jmdmX+vgJ//7c0c5nGJoT0dOFUmm0WlfQ=)
2: rlAYJxRKMYi-oczuWGVv1kKdj5U.crl (hash: zy6gufwqPE0yXwQWi9p/xy8HydDw0v1/NyyQ92bYq5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 14:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:3a:27:01:54:84:02:0b:8d:76:4e:5e:a9:68:42:91:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae501827144a3188bea1ccee58656fd6429d8f95
Validity
Not Before: Sep 11 19:00:58 2025 GMT
Not After : Sep 12 19:00:58 2025 GMT
Subject: CN=650b694f990700ce392383483811f02e1abf436e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:46:23:3c:8f:95:f3:ed:4a:51:86:27:2e:94:
ad:2e:24:57:48:79:91:c8:ee:69:23:bb:01:ac:e2:
46:32:60:5d:c8:2d:72:5a:ab:15:4a:84:e3:f7:4b:
dd:1b:1f:b2:af:29:2a:f9:c9:d1:43:2e:f7:89:7f:
b0:e3:21:f4:7f:77:60:07:dc:11:93:57:07:76:90:
3b:5c:d3:79:9c:a8:21:5d:32:5a:26:3e:91:6d:5a:
23:11:ae:86:d1:80:a7:db:a1:c9:01:5f:9b:7c:9f:
9f:a7:1d:b5:4f:e3:f1:6e:6c:05:2b:a9:87:68:44:
0a:e9:98:58:a1:95:17:7d:88:3e:aa:95:1d:5a:9a:
a3:2e:c2:bb:5d:c6:57:46:84:61:2a:71:bc:12:dd:
3e:a9:a3:bd:15:d6:e0:60:a6:74:1a:ca:21:d7:31:
c8:1e:e6:fd:ef:a3:ea:cc:df:ce:57:cf:92:70:4c:
98:d7:b9:80:2d:35:2a:85:ba:56:16:fd:21:dd:c6:
ca:d9:22:5a:a7:c5:d4:eb:31:7e:e3:3f:f2:a9:3c:
42:37:1d:34:0f:13:97:1f:7a:3e:6f:76:c0:17:d1:
37:5d:5b:81:cf:bb:8b:bf:d9:06:bc:c3:79:6e:02:
43:56:f6:2b:75:b3:0e:6f:75:47:91:43:a5:d0:8c:
ed:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:0B:69:4F:99:07:00:CE:39:23:83:48:38:11:F0:2E:1A:BF:43:6E
X509v3 Authority Key Identifier:
keyid:AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:e3:7c:68:23:94:09:dc:ab:a2:98:28:b2:60:2a:74:4b:22:
a4:1f:13:69:4d:7d:eb:78:bf:6d:70:33:58:6a:8c:81:a8:a5:
a7:fb:7c:66:bd:89:cf:b0:51:10:44:af:49:a7:b3:ab:e0:64:
ed:b0:65:0c:4d:24:df:fe:1b:df:d7:68:ea:dc:19:f5:5e:98:
a7:e4:ae:46:91:f3:1d:7b:08:eb:c0:2f:44:99:a8:53:2d:e6:
67:c5:5d:9c:9f:dd:e7:1d:d9:e5:06:41:c1:50:18:50:e5:65:
74:7c:c6:d6:19:26:1b:1f:3e:80:cd:8c:0c:bd:c5:9c:d9:da:
e8:e9:b1:91:d4:11:ee:f4:57:11:87:15:61:57:35:77:0d:55:
c5:c7:77:38:4f:1d:4a:97:d8:7d:e1:82:b6:50:c4:e6:28:b7:
60:4d:fc:16:16:b1:d2:5d:72:a7:be:81:5f:89:29:f8:19:4e:
21:fc:d7:d1:55:42:30:79:7a:e9:77:37:2e:10:c2:89:97:93:
fe:1a:a4:f3:e5:aa:2c:97:02:ac:e6:b0:48:5a:ec:45:4f:ff:
cf:38:38:8b:4c:78:64:16:6d:23:3f:65:1d:38:ac:dc:cd:2e:
68:a6:84:9e:f6:f4:c6:30:d7:5f:85:8e:5b:ed:88:48:c4:9e:
b7:fb:27:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 23:47:03 2025 by rpki-client