Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
File: aIEP_k-SA6EAZ31lGTtEJniaz1w.mft (raw, json)
Hash identifier: QUaH4KPl83RlQIMNVjYaiIvhzNYaGMFQT6t3cc0s9S8=
Subject key identifier: 36:62:86:A7:67:74:D9:A4:61:D8:A1:17:DD:52:C8:6C:90:F3:A3:90
Authority key identifier: 68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
Certificate issuer: /CN=68810ffe4f9203a100677d65193b4426789acf5c
Certificate serial: 0198895750C0C7AD24BAF01FF97699C2738E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
Manifest number: 0A33
Signing time: Fri 08 Aug 2025 11:00:57 +0000
Manifest this update: Fri 08 Aug 2025 11:00:57 +0000
Manifest next update: Sat 09 Aug 2025 11:00:57 +0000
Files and hashes: 1: aIEP_k-SA6EAZ31lGTtEJniaz1w.crl (hash: cqseOphxoZfbGqkYJSBqZoV6eIlVVwrMwLsVMxsji+k=)
2: vq_lB1n1a8tSkpEaBYJenT9A5i0.roa (hash: TQs2bRUGUy5hOg6esXq8436QciZ59nHTgLwMPf5bhwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:57:50:c0:c7:ad:24:ba:f0:1f:f9:76:99:c2:73:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68810ffe4f9203a100677d65193b4426789acf5c
Validity
Not Before: Aug 8 11:00:57 2025 GMT
Not After : Aug 9 11:00:57 2025 GMT
Subject: CN=366286a76774d9a461d8a117dd52c86c90f3a390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b9:fc:88:c6:e8:70:87:5d:34:82:b9:bf:e7:
3c:fb:18:c7:de:68:3d:61:61:29:9b:f8:98:20:91:
be:ac:87:0c:12:d9:f7:82:6b:ae:2e:71:ea:d0:d4:
fb:1f:c7:65:fb:b9:84:7f:54:83:b3:ad:57:3b:52:
1a:ad:2d:33:64:9f:dd:f2:dd:ed:39:63:a9:87:d8:
2c:c3:10:8a:c5:44:14:83:3e:9d:12:00:c9:1c:f1:
b7:54:39:bc:a1:f4:2d:04:40:bc:76:b9:d1:d3:2a:
12:6f:ad:e4:15:48:d1:97:f2:91:82:82:f9:c8:d5:
4b:5a:5b:c9:e3:c2:a0:0d:7f:ca:08:8d:e7:e7:bb:
aa:58:76:84:68:70:46:fa:95:4a:81:6d:76:9c:46:
9e:a9:68:a7:8a:11:12:6c:ea:e5:9f:01:55:a7:16:
65:1e:8a:59:00:82:e7:a0:2e:73:9e:7e:6b:2a:6b:
71:b9:2c:cf:8b:74:16:e8:88:b4:fa:fe:2d:cb:81:
9b:b7:37:76:3b:6e:65:ef:a8:77:66:6b:81:24:39:
7c:a9:48:ad:64:95:41:77:63:8f:3b:11:36:f8:48:
17:e7:7f:1c:1f:b3:d2:06:dc:12:29:8a:72:59:8a:
ba:14:c3:3a:29:c7:47:94:82:77:30:df:38:0e:40:
fb:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:62:86:A7:67:74:D9:A4:61:D8:A1:17:DD:52:C8:6C:90:F3:A3:90
X509v3 Authority Key Identifier:
keyid:68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:8f:76:81:86:05:65:a3:26:f7:66:05:61:00:e6:ce:32:b9:
d2:34:e6:10:58:1a:83:b5:ba:95:65:72:1d:7e:0d:8d:c9:31:
a2:b8:63:36:08:27:d5:e0:22:c3:3c:9f:8c:88:71:2a:b6:3a:
ea:25:2a:ae:6a:2d:87:46:10:eb:60:bd:b7:7c:3b:78:b0:bf:
69:19:9a:72:66:04:57:e3:57:51:c0:53:58:14:e8:17:61:a3:
43:c6:a4:18:15:15:99:16:09:d7:22:dc:41:f8:00:e2:68:95:
2a:85:7d:f0:92:96:d6:15:d6:7f:f6:56:ee:62:53:85:a9:d8:
f7:17:c7:51:0c:41:e7:64:e6:fc:b2:b8:8f:88:84:b0:18:54:
bd:fa:8e:a8:05:57:fc:cd:50:d2:e3:69:3c:ff:e0:2a:bf:5a:
dd:45:b9:80:83:bc:9c:b9:9a:22:86:79:c3:f6:91:0d:97:87:
2f:7f:88:ff:a3:8c:af:70:ec:1e:2b:fd:e6:a4:8a:42:fc:87:
fa:8d:8b:85:04:af:cb:e2:e3:20:34:fc:17:9b:04:85:e3:52:
52:57:5b:0d:a3:b2:c4:3a:a3:29:33:54:b8:06:98:5d:78:d9:
d1:73:01:44:83:94:cb:2b:6b:10:80:dd:13:a8:31:f3:91:7b:
7b:52:36:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 12:58:29 2025 by rpki-client