Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
File: aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft (raw, json)
Hash identifier: hr4rJWYW3asfivPvtZ6R4Bhafcx+pVtzgwvbVhfnbfw=
Subject key identifier: 53:5E:93:A3:82:3D:6B:58:91:C3:72:CD:A4:CA:51:5C:99:8F:E2:BF
Authority key identifier: 69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
Certificate issuer: /CN=6987d0047fb1d8912c63f911305a714f438b1e71
Certificate serial: 019893363DE7258AE94FC93623455AF77014
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
Manifest number: 1626
Signing time: Sun 10 Aug 2025 09:01:02 +0000
Manifest this update: Sun 10 Aug 2025 09:01:02 +0000
Manifest next update: Mon 11 Aug 2025 09:01:02 +0000
Files and hashes: 1: Atkr4h8_-iWKS-lQ1C-yvRl84ME.roa (hash: 2T7HRH5eHvmAemXfiDHO7EMODqi7SWlhFBBbiZ8y44c=)
2: aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl (hash: kDpM6tCdR0D0mIFREQmZ5fOyziRuM/vtqCO6Mz51mWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:36:3d:e7:25:8a:e9:4f:c9:36:23:45:5a:f7:70:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d0047fb1d8912c63f911305a714f438b1e71
Validity
Not Before: Aug 10 09:01:02 2025 GMT
Not After : Aug 11 09:01:02 2025 GMT
Subject: CN=535e93a3823d6b5891c372cda4ca515c998fe2bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:8b:b1:ce:81:ee:7a:ff:b7:72:47:ab:e3:5d:
e2:23:2c:a3:a3:b8:da:21:b1:85:2b:f8:49:e6:a8:
9e:27:f9:42:d3:49:52:f7:2e:cb:cc:07:61:90:c0:
d4:8c:8d:12:b9:f6:a8:5c:5a:05:b5:45:9d:7b:85:
ea:92:b4:89:12:4c:84:eb:82:a0:ea:65:d6:e3:78:
d5:aa:83:2e:dd:41:e6:c0:2c:73:9f:da:58:cd:f0:
55:77:b1:9b:76:4f:d6:9d:58:01:5d:63:37:d9:c7:
96:9a:11:5d:83:04:98:09:94:f6:05:1c:16:c8:9b:
8f:3c:41:7a:a1:5b:ed:d4:72:51:79:d8:b6:27:6f:
02:d4:c7:62:46:9b:ef:01:86:f7:fe:ce:03:01:67:
6c:3c:68:f1:da:9b:61:22:00:c9:11:ab:30:84:78:
0d:ba:fe:c8:04:f0:8c:03:ca:50:e7:cb:99:1f:25:
21:46:e6:3b:5a:64:09:09:e0:8f:44:ba:96:5a:e0:
09:a0:c8:fd:ea:e2:ff:e6:c5:6b:71:74:a2:af:2f:
59:b2:b8:c8:9d:87:de:aa:b4:d0:11:4f:f2:c9:0a:
38:6e:d7:a5:96:38:5b:e3:b0:22:38:5c:6d:26:21:
53:ae:cd:b5:47:48:39:05:7b:54:16:92:07:d0:25:
0c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:5E:93:A3:82:3D:6B:58:91:C3:72:CD:A4:CA:51:5C:99:8F:E2:BF
X509v3 Authority Key Identifier:
keyid:69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:bd:d6:71:95:b3:33:0e:95:db:cb:a6:c8:de:94:24:88:d7:
b4:a7:f3:3d:1b:96:76:0e:9a:8b:5a:3b:8e:d4:3c:07:f6:4b:
d5:aa:9d:92:0d:57:54:e6:25:52:db:f1:8f:76:1a:21:f8:5c:
c0:f4:70:86:b8:0e:a3:15:6d:0f:83:b2:a1:84:59:cd:c1:e7:
b3:9c:06:19:6f:1c:7f:3e:c3:5f:77:ca:97:85:70:aa:3d:48:
5f:32:f4:4d:e7:a4:d8:6d:10:88:cb:d9:08:b1:08:e7:b3:9b:
7c:43:bb:a0:21:b9:45:6a:ad:0b:cb:87:05:d5:f1:fe:91:fe:
a7:7c:f4:7c:97:e3:05:0d:be:c8:23:01:bb:0f:fe:ba:26:ef:
2b:bf:9c:30:b9:5b:d8:cc:21:ef:a4:aa:bc:c7:73:03:5f:68:
66:5a:90:69:bc:26:f4:88:45:9c:9b:42:8a:15:40:b5:77:7e:
1e:66:5d:60:c5:1a:b8:c7:5a:24:0a:65:a3:48:cc:89:db:7d:
28:c9:af:ea:e5:7f:74:5b:92:89:63:93:47:5c:c3:69:a7:23:
c5:f4:02:b3:d3:8c:13:ae:74:e2:bb:38:de:16:99:e7:8a:7c:
3b:a7:15:ad:43:0c:1f:a5:c7:61:5e:17:d2:77:c1:44:52:68:
4d:e4:f0:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:43:18 2025 by rpki-client