Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json)
Hash identifier: MXgLYbBvWhd1T3dmAHawVBjH3oCCjuiUpH7eMkOEpVs=
Subject key identifier: A8:F3:A0:D1:36:FD:85:07:F6:ED:68:67:8D:4B:66:F7:45:9C:08:D5
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 01987C7764138315E76883FCC03CB43CE490
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
Manifest number: 1096
Signing time: Tue 05 Aug 2025 23:00:55 +0000
Manifest this update: Tue 05 Aug 2025 23:00:55 +0000
Manifest next update: Wed 06 Aug 2025 23:00:55 +0000
Files and hashes: 1: 6zOYtzjXBD-DYg3_-ZbwFYlxy-U.roa (hash: bndS1Tzx6VzHh/lOs3pK1BLzPGIXQ0EzQwN4Ak3MXSs=)
2: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: 0iRgF41wu44YXkJKMUMklHpkpFerh+4gjlX9pdD1/h4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:64:13:83:15:e7:68:83:fc:c0:3c:b4:3c:e4:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: Aug 5 23:00:55 2025 GMT
Not After : Aug 6 23:00:55 2025 GMT
Subject: CN=a8f3a0d136fd8507f6ed68678d4b66f7459c08d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:cd:63:33:51:94:0d:48:fc:60:d7:e9:29:96:
f5:77:69:44:14:b5:cb:0f:f8:c5:24:80:a5:69:f7:
90:a8:42:43:2d:91:fc:ca:e9:d0:17:46:2e:30:c6:
fb:d8:78:b8:15:0a:62:73:6c:26:13:f2:b6:ef:1d:
c4:31:a3:60:fe:01:44:ef:80:73:5a:5e:14:19:ba:
a2:39:25:69:db:75:5e:03:75:c7:6d:cd:2c:e8:ba:
8b:f3:dc:20:da:91:04:2e:1f:de:5c:26:f0:93:27:
9c:9f:2b:17:d1:11:c4:69:8e:e0:d7:88:c9:1a:4e:
70:ef:dc:29:56:f2:5a:b3:a3:16:03:c0:ca:2f:6c:
70:9d:fa:ab:ea:34:84:7b:c1:59:78:75:7f:b3:e0:
3f:d1:90:d6:64:a6:99:32:6b:94:d5:57:da:0e:3a:
70:ff:6f:22:6d:e8:52:f2:6f:84:e6:f4:5e:a3:c5:
6a:51:ca:c7:dd:01:f2:50:63:da:9d:f4:0e:f8:11:
c6:bd:ee:66:46:8c:9f:9d:a7:af:8b:c6:c3:66:b3:
b1:f6:b9:28:4f:d4:db:97:b7:f0:9f:30:42:5c:65:
8f:e3:64:6a:c6:ad:7d:23:c9:66:b1:e0:e5:17:0c:
3a:b6:01:a4:f5:f6:b5:55:0b:f7:77:6f:bc:de:d8:
02:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F3:A0:D1:36:FD:85:07:F6:ED:68:67:8D:4B:66:F7:45:9C:08:D5
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:bb:a0:c0:87:b4:77:c3:b3:4c:c6:9b:06:28:f5:93:5f:78:
4d:41:81:ea:8a:4a:61:4f:e3:e9:62:81:33:3d:aa:ab:7f:46:
27:3c:81:01:c5:e5:0d:1e:6f:b2:b0:3c:01:8c:83:b3:b8:84:
a4:b6:f4:35:72:cb:a6:01:3e:36:d5:29:88:6e:b9:25:8f:ef:
c3:1f:6a:34:89:f0:5c:ad:9d:b6:0b:85:d3:a4:12:d7:12:2f:
6a:0f:a7:13:ec:23:ca:dc:3a:d8:ca:46:2d:5c:b8:3c:60:9c:
f3:86:21:15:c3:78:67:a5:60:e5:0c:79:b0:5a:12:9e:13:38:
58:90:80:d6:66:13:57:b2:4b:5a:33:63:e8:38:d0:a7:a2:eb:
c4:44:b5:d2:c3:df:bf:c3:c1:17:38:e9:ba:74:4f:a5:4d:88:
a2:bc:21:09:f1:fa:e3:55:57:3f:bc:1c:92:d6:cf:27:43:13:
0e:8f:5b:ef:35:1c:6e:2f:1e:fc:6b:3d:8c:a4:6a:e3:11:8c:
84:5a:81:e4:36:93:ab:67:70:d8:e5:13:c5:0c:a2:27:32:3a:
19:6e:87:28:81:8b:df:d7:8d:81:ba:54:78:42:dc:0c:0d:7e:
70:d1:62:22:65:68:8b:b5:38:b9:1b:10:36:29:ae:c9:2b:2e:
af:d5:12:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:17:48 2025 by rpki-client