Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json)
Hash identifier: NnR/owWOwHzl+5l0XJbbC5KBsCJ5Io2pzKBjDWZStho=
Subject key identifier: 5F:8D:7C:AD:7A:1C:3E:F2:B6:78:5C:56:35:44:1E:52:A2:72:53:6B
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 019A51BEAE2373013A10DC8A01FDB38B3E38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
Manifest number: 1189
Signing time: Wed 05 Nov 2025 02:00:42 +0000
Manifest this update: Wed 05 Nov 2025 02:00:42 +0000
Manifest next update: Thu 06 Nov 2025 02:00:42 +0000
Files and hashes: 1: 6zOYtzjXBD-DYg3_-ZbwFYlxy-U.roa (hash: bndS1Tzx6VzHh/lOs3pK1BLzPGIXQ0EzQwN4Ak3MXSs=)
2: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: tVxyNVdlZYYeiivaoCLTeDVE6I9FXO3UizmYZnaA6q4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:ae:23:73:01:3a:10:dc:8a:01:fd:b3:8b:3e:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: Nov 5 02:00:42 2025 GMT
Not After : Nov 6 02:00:42 2025 GMT
Subject: CN=5f8d7cad7a1c3ef2b6785c5635441e52a272536b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ca:5e:55:b0:a7:0f:a7:f8:6c:6e:8e:57:56:
d2:c1:af:1f:3e:f2:76:a1:24:8c:9c:2e:1f:72:33:
97:21:92:7e:88:98:5f:70:f9:d5:38:48:74:f5:24:
1e:27:f6:b1:50:d5:e0:11:70:77:bf:e6:95:4c:08:
9d:54:e9:ec:0b:00:0d:bd:c1:ef:32:c9:15:b6:3e:
8b:dc:fa:11:cf:ba:95:80:bc:29:9f:62:bb:12:b9:
f9:86:d1:d2:d0:1a:90:93:ee:32:35:30:70:b5:83:
20:d8:ab:ad:dd:f9:db:9f:ca:1c:5b:d8:6f:a3:bb:
a1:61:e2:bd:3c:48:e1:85:46:fd:31:f6:ca:8d:b0:
39:50:28:cb:13:b5:81:2e:ef:fc:68:ce:b5:57:a5:
98:36:22:8f:36:02:56:3a:98:cd:bd:22:7a:45:86:
c7:49:6e:df:68:22:1f:4e:86:bc:83:67:8a:6a:5e:
8f:c2:95:ad:d0:af:9e:c4:f6:b6:5d:93:bb:92:48:
dc:b1:46:be:51:62:1c:28:27:21:d5:a9:3a:ce:b4:
7d:9f:85:a3:fb:77:14:65:19:ee:a7:5c:4e:dc:e4:
51:c6:f7:f8:b3:68:80:e8:b0:a1:35:a4:7e:85:94:
fc:e3:64:0b:70:6e:88:1b:29:0f:98:ef:88:13:d7:
8e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:8D:7C:AD:7A:1C:3E:F2:B6:78:5C:56:35:44:1E:52:A2:72:53:6B
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:f0:f0:90:2c:72:a4:69:a9:c7:0b:92:49:7e:53:65:11:6c:
3c:f5:6a:47:bd:dd:1b:f8:9a:84:46:be:84:3a:14:25:99:60:
96:e4:be:cc:27:fd:f8:45:ce:b6:1c:38:dc:7e:a7:61:dc:e9:
01:0e:e6:b0:bb:45:e2:e8:54:88:eb:7f:79:24:9a:1d:1c:12:
59:5b:c8:f7:94:ec:ae:d6:b4:8e:b0:2b:ad:ed:0a:2d:43:7e:
df:a1:04:7e:2e:34:d3:70:ba:60:73:d7:32:db:06:61:a6:00:
67:55:dc:6d:d1:c8:c1:35:69:29:50:14:ad:ef:db:55:c6:4b:
3f:e3:cc:4d:78:13:da:30:97:1c:32:41:04:b2:91:72:04:a9:
00:42:ae:a3:cb:21:db:fa:fb:7c:75:c1:4f:c5:12:e3:a3:6d:
7d:4c:ba:40:eb:ef:f7:b8:0b:0c:39:f7:28:fd:0a:d2:4d:c8:
16:12:f7:34:ee:7e:a2:28:a9:42:13:16:b3:3f:23:b9:b1:f8:
fa:23:e5:12:59:e9:49:36:8f:c0:2c:5e:3e:ac:2d:16:3d:1b:
98:fc:0b:98:d4:36:3b:d9:54:ed:80:11:59:81:de:a9:17:cf:
da:b9:5f:e6:2e:b4:dd:a9:cc:fd:24:c5:88:f3:76:22:52:5d:
6b:3b:06:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:44:26 2025 by rpki-client