Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
File: aIEP_k-SA6EAZ31lGTtEJniaz1w.mft (raw, json)
Hash identifier: qzDuUUB+8O4r2WAuMGFM8g/Yt5cSkyeyBGp55K00eAU=
Subject key identifier: 64:EB:9D:06:D1:CD:7E:CD:95:EB:8B:8A:E1:E1:8E:2A:E3:3B:61:8F
Authority key identifier: 68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
Certificate issuer: /CN=68810ffe4f9203a100677d65193b4426789acf5c
Certificate serial: 019A4D3CBBFB7CE81E5BEAC582683E6C1DB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
Manifest number: 0B1D
Signing time: Tue 04 Nov 2025 05:00:17 +0000
Manifest this update: Tue 04 Nov 2025 05:00:17 +0000
Manifest next update: Wed 05 Nov 2025 05:00:17 +0000
Files and hashes: 1: aIEP_k-SA6EAZ31lGTtEJniaz1w.crl (hash: +5pfhyz1jaZLfx5OSjw9yVQ2WQblYlvE4peVa8STIRA=)
2: vq_lB1n1a8tSkpEaBYJenT9A5i0.roa (hash: TQs2bRUGUy5hOg6esXq8436QciZ59nHTgLwMPf5bhwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3c:bb:fb:7c:e8:1e:5b:ea:c5:82:68:3e:6c:1d:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68810ffe4f9203a100677d65193b4426789acf5c
Validity
Not Before: Nov 4 05:00:17 2025 GMT
Not After : Nov 5 05:00:17 2025 GMT
Subject: CN=64eb9d06d1cd7ecd95eb8b8ae1e18e2ae33b618f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:31:b2:91:4a:f4:58:fd:f2:91:92:ea:e4:07:
6d:b8:6e:3d:31:94:46:b1:df:0d:65:36:f6:2c:08:
e6:8c:e3:f7:a0:5f:54:d5:77:a8:43:a4:8b:2b:e1:
1e:98:28:50:9b:b6:4b:14:96:e2:a2:2e:89:f7:0d:
84:c4:d7:14:75:73:e0:0e:a5:bf:1a:8f:aa:0e:7c:
3e:c3:57:e9:72:f9:d0:85:e9:c6:ad:ca:27:15:51:
3e:08:56:db:a3:19:e3:47:a9:ca:76:a6:99:01:e6:
73:9d:2f:24:dd:c8:b6:ec:8a:36:10:8e:3f:39:e1:
10:35:fb:d5:a4:89:d9:49:f3:13:6c:5a:99:29:7a:
db:64:b4:aa:7b:06:fb:db:8a:19:22:02:28:31:3a:
95:11:60:8c:72:07:2b:41:a7:0a:8d:10:95:98:ec:
3f:e3:39:45:40:bd:31:63:29:36:08:af:4e:ff:2c:
f2:61:ec:9b:53:7f:9d:4b:f9:33:c4:3a:64:58:da:
e4:6a:d6:5b:79:ce:43:8f:16:81:26:9f:c3:2e:66:
5e:f8:04:17:e6:b2:63:85:c6:53:cf:a6:2c:b1:00:
e1:d4:15:53:b1:b8:59:75:7e:26:20:6e:d9:1d:74:
2c:49:10:05:d0:3a:80:f2:d6:03:a5:b8:94:6e:e7:
45:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:EB:9D:06:D1:CD:7E:CD:95:EB:8B:8A:E1:E1:8E:2A:E3:3B:61:8F
X509v3 Authority Key Identifier:
keyid:68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:9a:bb:a0:c2:b4:bf:cd:e3:5f:66:ca:d7:96:8b:7f:96:04:
71:05:48:69:2e:2c:6e:7c:4c:69:22:ff:36:58:d5:70:67:d6:
50:cd:a4:25:13:ec:6e:7d:d2:2c:0c:ff:32:c1:33:e1:ad:1e:
01:90:a1:7b:09:5b:2e:12:05:32:66:66:11:23:f6:57:e0:be:
2e:33:48:4e:9b:82:9b:56:b0:08:9a:2c:ea:c7:79:cf:af:bc:
ae:2b:26:14:ef:ee:43:ea:42:8b:a1:52:6c:2d:d1:d4:87:3f:
23:3d:d5:79:9d:84:22:f0:71:a3:b8:fe:36:82:bc:20:fa:4e:
f7:50:fa:0f:73:f6:75:35:90:aa:1d:bb:df:63:f8:c9:00:f2:
0c:54:9e:76:d2:c5:39:62:19:18:be:1b:7e:1f:29:fc:b0:61:
04:75:ae:bf:20:de:6e:02:76:b6:02:2e:df:c0:d0:03:e8:5e:
0a:85:ae:59:86:a4:31:76:79:03:a9:29:8d:f4:e7:cd:86:be:
53:53:6d:72:1a:32:d2:3d:4e:03:e9:aa:35:03:56:15:a5:b7:
f7:90:d4:26:39:44:b0:bf:f6:ad:1a:ea:8d:6e:4a:b5:56:23:
e8:81:f8:61:69:f4:d3:88:08:75:b9:bc:da:db:bc:ba:e9:3c:
77:de:ce:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:01:54 2025 by rpki-client