Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
File: aajmjRKuKTryNpBDzVmgINrCQGI.mft (raw, json)
Hash identifier: p/29fyJkk2bsulHqdXnGyrRybg+P82+O9mTyi+gs538=
Subject key identifier: 17:B4:BF:87:42:0E:8D:C4:98:F5:54:12:58:41:FF:31:F0:36:54:5A
Authority key identifier: 69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
Certificate issuer: /CN=69a8e68d12ae293af2369043cd59a020dac24062
Certificate serial: 019A4D7410AAACA038D939E2B0C25F0CBAEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
Manifest number: 0BFE
Signing time: Tue 04 Nov 2025 06:00:43 +0000
Manifest this update: Tue 04 Nov 2025 06:00:43 +0000
Manifest next update: Wed 05 Nov 2025 06:00:43 +0000
Files and hashes: 1: aajmjRKuKTryNpBDzVmgINrCQGI.crl (hash: GaFW251OxjZ2HLjGf0vXzTriNZOUq3myRdZwwoTt7zA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:10:aa:ac:a0:38:d9:39:e2:b0:c2:5f:0c:ba:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a8e68d12ae293af2369043cd59a020dac24062
Validity
Not Before: Nov 4 06:00:43 2025 GMT
Not After : Nov 5 06:00:43 2025 GMT
Subject: CN=17b4bf87420e8dc498f554125841ff31f036545a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0d:0b:f7:53:35:73:33:86:4d:86:40:71:cf:
31:8e:7e:6a:34:28:8c:51:44:0b:5c:c8:10:ef:1e:
a9:ff:ca:a4:bd:21:1e:c9:dc:1a:9c:5a:cc:31:8d:
4d:bb:62:b6:90:09:9c:eb:f5:06:44:56:66:17:40:
cd:20:51:37:a8:83:07:81:6a:81:06:cc:68:73:62:
d9:72:5c:54:7f:18:47:57:fd:9d:f7:3d:79:5d:d2:
c4:4d:47:e9:0a:46:fe:79:0a:b9:60:08:a9:4a:00:
06:89:dc:51:07:bc:17:72:78:4d:c4:2b:e1:cb:1e:
67:42:5f:59:fd:21:1c:86:8c:d3:1b:d8:a7:f6:05:
b8:6e:ca:0b:d1:32:7a:a9:7b:ed:13:d5:7f:02:53:
60:7f:01:1d:c8:e7:29:eb:27:6b:32:70:f2:08:34:
53:eb:a8:09:05:32:68:d8:e6:2f:17:ef:1a:88:6b:
c3:d3:74:2c:50:7a:c3:8b:99:eb:44:66:ba:29:0b:
3a:25:92:5d:c9:af:0b:4c:50:72:99:66:8f:0c:25:
88:a8:46:9f:08:b9:95:ec:6f:66:72:c2:a1:0b:16:
eb:68:a8:71:71:88:11:7b:d1:15:d7:de:df:7a:99:
be:f0:39:d8:21:4b:49:ea:0d:8b:0a:03:d6:06:db:
92:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:B4:BF:87:42:0E:8D:C4:98:F5:54:12:58:41:FF:31:F0:36:54:5A
X509v3 Authority Key Identifier:
keyid:69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:9c:f1:d0:17:c4:a5:24:88:e8:5e:bd:e6:eb:a0:58:40:92:
5c:06:b0:18:09:93:2b:f5:45:4d:43:e2:9d:4f:de:51:86:6d:
71:5e:fa:8b:f9:0f:bd:8c:fc:63:09:a8:9d:f8:dd:56:b3:a8:
ac:fd:bb:8a:f4:16:c0:01:57:94:1b:88:7e:ce:23:8e:b3:2d:
66:37:2f:5b:2b:3e:e3:7a:3f:b3:82:2b:31:2a:65:0f:4e:f0:
7b:91:4d:1f:e3:db:90:b6:bf:fd:ee:09:20:06:c8:3f:5a:86:
d1:21:1d:d6:64:b9:c6:a8:c1:07:31:12:8a:3f:0d:ff:6a:07:
57:41:2f:60:72:0f:20:fb:50:6c:f3:fc:6b:e7:36:66:22:1c:
4c:ff:a0:83:08:da:d0:7b:dc:3b:4a:10:d1:9f:2a:8c:76:fc:
58:3d:13:a2:d6:be:28:9e:c6:e5:d5:cd:7a:ab:e1:a8:3b:41:
bb:bc:85:1c:1a:f9:95:ea:38:67:57:27:a4:78:8c:18:8b:54:
30:d7:e4:6e:3a:64:ad:91:52:31:6b:c9:e5:a4:11:1e:6e:bc:
40:53:f5:31:0d:af:bf:18:bd:1c:ca:b4:71:fa:ab:2b:c4:62:
12:49:11:6c:9f:84:d8:f3:6a:d2:7e:ba:30:e6:c5:5b:fa:32:
c4:35:0d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:45:57 2025 by rpki-client