Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
File: aaTWkWuTFZqoCYSps3dGg7tVDr0.mft (raw, json)
Hash identifier: gNs/C4NQjasNlr98Dw1HH/hapMrbZF/xd9l+ELXTUMU=
Subject key identifier: EF:70:FF:31:5E:EC:71:15:E1:EC:0C:7D:CC:CB:F5:9F:86:81:41:FB
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 019A5075360392F0217984F081C290B815BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
Manifest number: 1451
Signing time: Tue 04 Nov 2025 20:00:50 +0000
Manifest this update: Tue 04 Nov 2025 20:00:50 +0000
Manifest next update: Wed 05 Nov 2025 20:00:50 +0000
Files and hashes: 1: Jqr-CXHYnZmzg_xVdImaXbMmVEI.roa (hash: XvpOhA/u1tpu0r7xTILje32qKTHGeywG7gPta8XZExU=)
2: aaTWkWuTFZqoCYSps3dGg7tVDr0.crl (hash: H9YPsTE/CipSKDCZTrZJOmdoF9j76hCDydZnjFlPGBc=)
3: lqHZHTtSjRTsulRT9uODOQE8lxE.roa (hash: ps3jNh8IrB0LkmVcReSQZ1oXuY/U8lzEpr6J8ijs+08=)
4: xE9IyAhq0aHlL6_ym_xgvZ2_5uk.roa (hash: 1YgjglAtdi0WFBDpDXQ7veTTeatE49sPF4fCDK08QO0=)
5: z6mBzW6H29uI5KxETsJqR2soNbo.roa (hash: UhKW2I+drpoL0LurJwnMOqRysLzBC/O6KKhMC7EQlLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:75:36:03:92:f0:21:79:84:f0:81:c2:90:b8:15:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: Nov 4 20:00:50 2025 GMT
Not After : Nov 5 20:00:50 2025 GMT
Subject: CN=ef70ff315eec7115e1ec0c7dcccbf59f868141fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:aa:bb:92:51:7e:9a:ce:9c:37:38:1c:c2:de:
77:44:ce:af:ea:c2:2d:2e:12:e4:49:0a:33:89:b0:
b9:18:54:33:2b:bd:73:75:1c:44:8e:f5:3e:0d:06:
bc:9b:b7:eb:d0:40:e6:54:b7:ff:5b:d9:cc:db:d5:
dd:de:05:3f:3b:d1:e0:3c:67:70:c4:6c:d7:45:9e:
e9:2d:1b:5b:11:c9:c7:aa:0d:58:a4:47:02:89:cc:
d8:15:5a:db:64:1d:00:02:ab:c1:31:9e:ff:87:9f:
05:d6:60:db:9c:2d:bb:0f:38:c2:02:90:55:6d:03:
a8:bf:5c:ba:9c:f3:94:30:1e:36:52:92:20:71:57:
83:60:70:56:3a:b1:2e:3b:a0:02:98:43:e0:fd:4d:
7c:46:9d:4f:c5:5b:80:06:1f:12:44:02:86:76:15:
ed:18:46:e9:3b:c0:56:93:e7:ed:ff:14:99:33:ff:
5a:30:70:2f:2b:9d:99:3e:08:df:47:76:8e:7a:fe:
56:da:e1:1f:d4:61:58:98:64:d1:72:70:54:e4:de:
20:b6:2c:86:61:f6:bc:73:b4:a8:7c:22:af:ab:ef:
31:58:dc:93:03:33:82:7b:3c:3f:97:6b:0a:b8:b4:
39:80:58:3f:88:17:3b:6f:6a:ba:33:c1:5f:a6:5a:
4d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:70:FF:31:5E:EC:71:15:E1:EC:0C:7D:CC:CB:F5:9F:86:81:41:FB
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:a5:8e:4a:62:87:35:17:f9:c4:44:b6:4c:b7:03:67:27:08:
76:df:5f:bc:37:16:b0:3c:bb:22:c6:92:db:73:91:7a:d1:92:
e0:3a:56:8c:ce:d7:08:8f:0d:d2:77:f8:a2:97:e8:c1:62:ec:
ff:ab:3e:4f:d8:6c:38:fc:77:32:4f:9f:88:6b:57:40:34:e8:
42:46:e0:5d:b6:7c:3c:be:18:d7:0b:97:10:1e:5d:7e:fd:57:
29:33:aa:ac:1d:38:ad:92:13:66:88:1a:76:b2:0d:d2:0c:d6:
fc:e2:71:ea:11:56:6a:f1:e6:dd:14:65:b2:4a:74:4e:d8:6d:
1e:8c:f5:30:1e:11:fe:ea:41:ac:7e:1e:b9:46:bf:56:2d:dc:
c0:ac:9f:2c:b8:8e:5e:1a:9d:ff:dd:2d:bd:de:f6:b4:d3:38:
8a:aa:b0:f5:fd:34:5f:0b:c4:6e:61:f7:b9:d8:40:13:61:9c:
b6:64:98:dc:c3:40:98:82:ef:94:59:ad:7f:13:5b:3f:4e:ed:
a1:c4:fb:af:2a:f2:e9:46:fe:df:9e:73:2d:1f:a3:2f:9a:7f:
9b:dc:55:f0:e3:dd:f4:2e:12:fb:75:54:87:79:d9:d7:66:90:
c3:66:1a:fb:7a:3c:8e:02:b3:f0:9b:7a:d0:3f:74:62:ea:ad:
f2:bf:53:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:38:16 2025 by rpki-client