Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
File: ajqLdK1O1nN5ep9rd0nCI0VpedA.mft (raw, json)
Hash identifier: 2YzhW5FayoqtaGqz+bpk9UbyvKN7se3SdCUL86rjfA8=
Subject key identifier: 2E:E8:71:7D:60:26:C8:68:36:F7:8E:C4:F5:B1:F4:3B:A0:CB:E9:BD
Authority key identifier: 6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
Certificate issuer: /CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Certificate serial: 019881674B74FE7A59025415441B81026B51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
Manifest number: 14E1
Signing time: Wed 06 Aug 2025 22:01:26 +0000
Manifest this update: Wed 06 Aug 2025 22:01:26 +0000
Manifest next update: Thu 07 Aug 2025 22:01:26 +0000
Files and hashes: 1: ajqLdK1O1nN5ep9rd0nCI0VpedA.crl (hash: WnMYv7PV20EYz7Z4qU7SNJ1h1/yxzGc6xL2UW6Cr9AM=)
2: jkQdp6EX7jHh6f31YxZYZhR0C8U.roa (hash: FmayEZ/+k7yvcImZRXEurVZdNlGpk+kZM2DFLPiqTu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:67:4b:74:fe:7a:59:02:54:15:44:1b:81:02:6b:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Validity
Not Before: Aug 6 22:01:26 2025 GMT
Not After : Aug 7 22:01:26 2025 GMT
Subject: CN=2ee8717d6026c86836f78ec4f5b1f43ba0cbe9bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2d:df:39:63:df:09:dd:b2:99:ea:1d:ac:23:
89:05:d3:fa:4a:56:e2:25:bc:09:09:3b:70:fb:3c:
f1:3e:df:3f:89:43:f3:d3:98:56:52:39:ae:2a:1f:
ad:84:1f:61:34:d2:78:17:dc:20:38:fb:10:72:c1:
e7:ff:5e:6e:63:c5:b5:08:ce:41:e8:37:6c:00:1b:
b6:55:a7:5c:cc:f4:c1:d0:7d:9b:9e:c0:ae:9a:dc:
08:ed:32:aa:ed:cf:4b:73:dd:38:23:4d:16:59:d4:
b3:d8:a3:a6:24:e8:e5:50:ff:d6:1b:f4:1b:1e:c0:
c1:1d:06:b5:a9:e8:1a:30:70:9f:fd:e1:39:a2:67:
b5:5d:e3:48:69:e4:3e:99:e9:c4:7c:4f:54:a1:33:
49:14:4f:9a:8e:f2:4b:3a:fd:5b:84:37:34:ca:4b:
50:fe:2b:c9:84:85:ce:e2:24:d6:c1:25:80:84:dc:
a5:2f:32:09:c3:8c:c6:c2:00:f5:ef:40:50:c2:25:
6e:84:d1:36:6f:7b:13:ed:a4:66:47:ce:4d:c0:49:
72:e7:e9:af:8d:70:d8:38:b0:bc:65:d3:71:82:d4:
61:02:0e:e9:76:d3:51:26:13:44:25:b1:12:93:30:
c1:48:b9:bb:39:1e:06:42:1c:a6:39:b5:e2:5b:2f:
d8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E8:71:7D:60:26:C8:68:36:F7:8E:C4:F5:B1:F4:3B:A0:CB:E9:BD
X509v3 Authority Key Identifier:
keyid:6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:54:1d:cb:2e:43:1b:fc:c6:db:6a:97:22:32:78:da:40:85:
f8:a6:80:09:a7:4e:ac:90:5c:55:0b:c2:8b:d0:bc:6c:01:29:
60:79:28:d1:cc:90:1c:75:d1:4e:1f:2f:e5:04:8c:6c:f9:7a:
9c:1e:99:71:86:a9:b5:8e:56:9a:14:71:49:dc:9d:0f:de:d4:
3b:15:c0:be:34:4d:6a:ed:a0:10:a6:0c:93:65:ff:de:71:a0:
3e:2d:57:09:40:08:ea:92:ee:1d:70:a4:bb:60:0a:8e:08:aa:
4c:d3:07:e9:63:27:90:65:df:47:35:15:ce:f4:48:1f:98:32:
e3:00:f5:84:14:4b:07:6b:e7:98:a8:e2:3b:f0:ac:2b:cf:76:
e5:47:4b:71:0c:f5:09:0e:c0:e1:bd:78:3e:e7:a2:b1:62:94:
65:5c:87:9e:67:cd:96:89:2d:ae:c4:e5:30:ec:e5:27:69:12:
d0:0c:25:58:43:32:8f:c7:a1:35:39:85:27:30:b4:93:d8:53:
f6:b6:cc:8c:04:4a:4e:41:d1:73:82:d9:bb:ff:c8:07:dd:53:
98:b8:29:ea:27:c6:0b:76:33:98:06:79:d1:1c:aa:fb:a6:ec:
47:b4:b6:01:22:ef:16:4d:b7:d6:67:39:33:33:fe:5b:98:4e:
e6:54:54:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:18:38 2025 by rpki-client