Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
File: aO_MqEmPXSbBIK802EbAKB_2Ka8.mft (raw, json)
Hash identifier: rRdyqSUIEjicWCX05/iTLcKx0SB87W1aXt8LMdXkwZw=
Subject key identifier: E1:F2:C5:44:22:B2:E2:6A:A6:54:DE:1E:B7:96:A6:42:8F:CC:E7:20
Authority key identifier: 68:EF:CC:A8:49:8F:5D:26:C1:20:AF:34:D8:46:C0:28:1F:F6:29:AF
Certificate issuer: /CN=68efcca8498f5d26c120af34d846c0281ff629af
Certificate serial: 019A5375ABE1CB176A2A695084A9F6FF79C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
Manifest number: 117E
Signing time: Wed 05 Nov 2025 10:00:11 +0000
Manifest this update: Wed 05 Nov 2025 10:00:11 +0000
Manifest next update: Thu 06 Nov 2025 10:00:11 +0000
Files and hashes: 1: aO_MqEmPXSbBIK802EbAKB_2Ka8.crl (hash: n9ARPqw9+r8gRkLpH157Cpxd9YC2/PgcHLcWsTCPOKY=)
2: bz3fbBHm2ElR6vxL1-cqQoSLlk8.roa (hash: iWv2k5/cNl7lJrUkdCeVYiFcY+HPf8sJg4JbV1Gwcrc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:75:ab:e1:cb:17:6a:2a:69:50:84:a9:f6:ff:79:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68efcca8498f5d26c120af34d846c0281ff629af
Validity
Not Before: Nov 5 10:00:11 2025 GMT
Not After : Nov 6 10:00:11 2025 GMT
Subject: CN=e1f2c54422b2e26aa654de1eb796a6428fcce720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a6:28:27:c3:72:85:09:fe:c9:39:cb:5a:da:
2d:46:2d:eb:c1:8c:27:fa:e8:fa:57:44:4f:82:09:
69:61:f4:c3:5f:3e:e3:fe:61:4b:7f:ac:86:aa:f9:
4d:e7:e8:b0:00:fe:e9:c0:56:3e:04:b1:4f:4c:6b:
85:80:ec:32:83:12:71:3a:d4:5c:40:38:8b:61:00:
a2:56:ee:64:4e:98:54:94:7b:53:c8:20:cf:23:97:
7b:9f:93:bd:4d:42:8b:47:c2:69:b7:4a:f3:08:80:
c3:80:35:54:bb:3c:61:d4:4e:3a:b1:b0:ac:0d:77:
56:6e:30:57:a8:a5:66:bc:a2:cd:62:7b:c3:97:a5:
85:17:5e:70:8a:fa:c8:7d:91:5e:32:d7:31:00:18:
fe:13:e6:49:41:9f:84:93:92:b4:79:f0:61:7e:4d:
3c:79:5f:1e:18:3c:28:23:9f:51:aa:9e:50:0c:57:
ff:6c:99:49:f4:0f:fb:58:59:8b:09:fd:dc:d5:94:
8e:cd:ee:17:cb:12:59:37:20:3a:93:59:39:b3:32:
41:22:51:37:b2:42:08:f9:47:7d:18:f1:4d:d2:44:
62:41:de:57:26:12:0f:98:aa:f5:1f:f9:ba:47:44:
8c:ad:3b:6e:4e:de:b0:27:36:31:f1:06:10:57:ec:
09:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F2:C5:44:22:B2:E2:6A:A6:54:DE:1E:B7:96:A6:42:8F:CC:E7:20
X509v3 Authority Key Identifier:
keyid:68:EF:CC:A8:49:8F:5D:26:C1:20:AF:34:D8:46:C0:28:1F:F6:29:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:61:f2:87:5c:cf:b4:21:24:ce:66:b9:b7:fa:ac:fc:31:c3:
d6:b9:b4:00:ff:4c:84:ba:c0:ba:a5:e6:71:ea:40:07:43:0f:
bf:ab:3c:85:e7:60:8e:14:9c:e4:a1:f3:74:26:c5:72:ae:87:
bc:97:f9:5c:1a:c5:61:7e:f9:59:b5:43:80:43:c1:21:52:b5:
4e:84:03:72:dd:9d:f2:3c:16:df:73:fa:f4:b4:a3:de:a0:ae:
3c:47:7a:ae:14:e8:29:02:db:78:2a:82:cc:e6:72:61:4f:fc:
c9:e5:19:fa:b9:1f:09:19:d6:6f:c3:e0:cf:9a:32:0b:52:65:
10:4f:7f:13:54:bc:a1:39:0a:56:d8:a1:92:76:71:18:ee:b0:
72:68:7e:18:f1:b5:34:b3:2d:21:03:cf:f6:45:60:7a:89:63:
1e:c7:68:1a:a1:f6:13:e9:ab:a2:da:6a:5a:b2:81:b5:b2:34:
bd:a8:0a:b5:3a:64:37:e1:56:c8:97:b8:1b:aa:97:48:4e:29:
e0:4c:ce:68:6a:3d:cb:7e:21:58:97:46:70:19:33:e4:34:fe:
25:44:a7:2e:bb:b4:d6:83:8b:4c:14:d2:d9:f7:e8:09:e1:6a:
51:2a:d5:42:18:1d:75:33:b8:b3:01:dd:c9:ef:0f:22:17:ef:
bb:84:a0:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 14:44:04 2025 by rpki-client