Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
File: aOlYF0Bglex8tceyhrETM0l7lFE.mft (raw, json)
Hash identifier: H+sY/pCMTQ/kKPmDHJTNWiaZ26ufmy8O30JZ2cwgROQ=
Subject key identifier: 0D:31:91:09:CF:0A:B9:AE:2A:5E:EC:66:5D:B7:D5:F1:A1:88:AD:81
Authority key identifier: 68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
Certificate issuer: /CN=68e95817406095ec7cb5c7b286b11333497b9451
Certificate serial: 01989FA7DD25E0A79FE9A9625945CDAEACD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
Manifest number: 0839
Signing time: Tue 12 Aug 2025 19:00:35 +0000
Manifest this update: Tue 12 Aug 2025 19:00:35 +0000
Manifest next update: Wed 13 Aug 2025 19:00:35 +0000
Files and hashes: 1: ExEAGmrTaGZYkgcoaaGfFiacDZM.roa (hash: vfQhBpcBjSjG95UQaSsBC3edgr1xXnN4hhJBHCKa+Vc=)
2: aOlYF0Bglex8tceyhrETM0l7lFE.crl (hash: mouHitD76XVoQRiPAHDtIgCO05csVEAvwdH5pDxeSwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 19:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:a7:dd:25:e0:a7:9f:e9:a9:62:59:45:cd:ae:ac:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e95817406095ec7cb5c7b286b11333497b9451
Validity
Not Before: Aug 12 19:00:35 2025 GMT
Not After : Aug 13 19:00:35 2025 GMT
Subject: CN=0d319109cf0ab9ae2a5eec665db7d5f1a188ad81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:af:ac:8a:b6:2c:96:f5:d0:3a:ff:1e:72:bd:
7b:02:79:8c:21:43:a5:5d:72:fb:f8:1c:98:09:3a:
60:9b:ea:e0:3b:4c:f5:27:8d:99:e2:b5:83:9b:ea:
44:a6:ae:d3:d7:8b:c4:ff:6b:74:4f:6c:73:40:47:
2c:a8:ba:64:a2:a6:f1:84:7a:94:43:0e:43:d2:a3:
85:f4:cf:48:fc:e3:92:f1:00:a2:ff:47:7f:da:8b:
61:f4:43:c2:a7:8e:50:0f:a3:01:b9:d9:70:98:0c:
6a:a8:1b:5f:b4:27:ff:a1:80:94:1b:ec:b0:72:65:
c8:68:9b:5f:f7:6d:95:93:e0:be:79:ff:88:46:df:
78:c6:33:bf:83:b0:0f:23:a8:7f:08:24:3c:5c:3c:
e7:ae:e5:18:70:0d:a5:85:b9:96:b7:6b:b3:38:2c:
ca:81:77:38:d3:c9:29:34:96:b6:94:fc:3d:cb:20:
98:45:96:2d:96:7a:12:6f:7f:1b:b7:2a:6f:2c:87:
bc:c4:d0:a4:43:9d:c9:5e:82:cd:02:4b:6a:1e:75:
7e:58:b8:54:11:a9:32:3d:b5:53:fc:55:b1:33:42:
09:3c:12:ea:dc:85:11:5a:f2:43:cc:ba:bc:9e:f1:
8d:1a:bb:b4:b0:03:b9:45:c7:23:24:17:f0:d5:f0:
c6:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:31:91:09:CF:0A:B9:AE:2A:5E:EC:66:5D:B7:D5:F1:A1:88:AD:81
X509v3 Authority Key Identifier:
keyid:68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:40:51:a5:84:17:e6:03:05:9e:68:f7:a4:a3:99:3e:88:c4:
86:ab:43:4e:27:d9:8c:13:b3:4a:df:2c:7a:2e:eb:ff:09:0e:
9b:ce:6b:92:44:18:c9:88:5f:8b:3f:e2:4c:8d:00:dc:84:4d:
b7:ce:31:af:18:0d:b7:4b:4a:95:05:bb:7f:6c:f8:e4:0a:5d:
56:41:34:70:9f:10:0d:48:d2:a3:d7:5b:ad:31:f5:90:02:ff:
a8:a4:e0:53:26:8a:93:6d:b0:ec:6f:54:21:34:66:6f:89:2d:
5d:3a:aa:a4:2f:f9:bd:04:d7:40:ea:fb:47:3a:d0:c1:ee:10:
bf:37:0d:12:22:de:01:9e:4e:ca:a2:47:dc:3b:39:b3:95:45:
4d:a0:5f:ea:6b:69:20:d3:20:df:fb:c6:60:bf:66:56:09:d6:
81:ca:b3:73:fa:d1:57:b7:59:d3:15:96:3d:c5:69:dc:d1:59:
1b:74:05:88:4c:dd:76:97:87:4f:61:4e:a2:2f:c3:9b:4a:ef:
98:cd:a9:19:98:6b:11:75:f5:05:55:08:56:72:7a:9c:43:17:
e7:71:74:78:23:db:78:7a:cd:73:84:6c:3a:37:63:d9:08:13:
4e:f4:5d:a7:60:b3:07:91:ff:b5:07:21:c7:76:2f:4e:4e:62:
c2:a0:21:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 04:25:31 2025 by rpki-client