Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
File: Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft (raw, json)
Hash identifier: 2ENjogl7Vu5JhD2n4XjrsajKeQ3tA9BJP76bsoO3sDA=
Subject key identifier: 1E:98:28:D6:BA:8C:B7:65:8F:C8:F9:A7:F3:9D:A7:2A:0E:7D:B9:D7
Authority key identifier: 02:3C:39:71:09:34:0B:76:7B:CB:32:45:15:F6:D1:F8:2C:8C:C7:CF
Certificate issuer: /CN=023c397109340b767bcb324515f6d1f82c8cc7cf
Certificate serial: 01988D6B7C46E575B9EE1270BCAA979A0315
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
Manifest number: 1290
Signing time: Sat 09 Aug 2025 06:01:28 +0000
Manifest this update: Sat 09 Aug 2025 06:01:28 +0000
Manifest next update: Sun 10 Aug 2025 06:01:28 +0000
Files and hashes: 1: Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl (hash: A4LCYaZ62+AubWuMHi7cWxpxVtSR8obeeOgv+OEwAzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:6b:7c:46:e5:75:b9:ee:12:70:bc:aa:97:9a:03:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=023c397109340b767bcb324515f6d1f82c8cc7cf
Validity
Not Before: Aug 9 06:01:28 2025 GMT
Not After : Aug 10 06:01:28 2025 GMT
Subject: CN=1e9828d6ba8cb7658fc8f9a7f39da72a0e7db9d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:97:af:92:c9:f5:02:e0:d1:a9:a3:97:3f:5e:
47:9f:94:20:24:f2:33:72:4e:3b:1c:ba:3d:eb:9a:
b0:9f:9e:26:ab:8b:11:2f:a0:6c:12:fc:e6:bd:e6:
55:52:c1:4c:98:27:fd:32:08:33:db:5b:45:30:83:
73:1d:aa:ff:fe:46:64:9c:fd:5e:c5:91:e2:e0:66:
62:95:9f:97:a9:8b:a5:1c:5b:56:8d:80:d4:f5:b4:
28:a4:5f:54:d9:7f:7f:ab:56:ce:d7:91:15:ad:ac:
ed:e3:23:49:5b:8e:f6:67:a6:92:a5:b2:ca:55:81:
d9:81:98:93:2e:0f:e7:52:31:20:95:e5:06:b0:81:
1c:2c:3a:e6:c3:ff:15:33:06:00:ce:66:0b:ab:b5:
99:e5:f9:63:71:22:7c:83:35:e7:3a:a5:ef:bd:44:
51:23:b3:fc:aa:b8:22:9e:d0:95:69:be:c0:c8:fd:
3b:68:9b:b1:86:49:e0:69:dd:58:26:3f:fd:67:95:
bf:fa:b3:9b:d5:0d:5d:0b:f4:f5:f6:65:df:7c:ca:
bd:c1:40:61:6d:cd:af:96:91:26:5a:4e:99:d9:57:
3c:5e:7c:57:e5:4f:41:2c:9f:72:b1:14:b5:ed:70:
6c:d3:1c:37:e6:ca:26:7c:de:ba:85:30:53:ee:ef:
c2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:98:28:D6:BA:8C:B7:65:8F:C8:F9:A7:F3:9D:A7:2A:0E:7D:B9:D7
X509v3 Authority Key Identifier:
keyid:02:3C:39:71:09:34:0B:76:7B:CB:32:45:15:F6:D1:F8:2C:8C:C7:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:23:6a:03:b8:7c:04:eb:1d:b1:bc:f9:4e:53:00:47:7e:25:
3f:97:f1:0a:58:63:c0:d4:33:2e:46:f3:41:9e:30:b6:e9:17:
09:25:b4:cb:8f:6e:24:55:5e:70:b9:be:92:b5:b3:ab:9f:ea:
47:09:23:8b:74:24:bd:73:4c:39:05:29:3b:8f:e9:2a:c9:14:
02:06:0e:4b:60:a6:dd:c4:36:4e:c2:d0:f7:b6:86:e4:e5:03:
e3:37:c2:c0:ed:ae:dc:97:07:82:a3:a1:77:c8:d6:73:dd:e0:
c3:b9:bf:f8:ca:49:aa:da:47:ff:b7:b6:6a:50:be:64:d6:e6:
d1:00:6a:5d:47:6d:b9:fd:ce:ab:d6:2f:b9:5a:c4:85:79:0a:
bc:8f:35:55:e3:20:27:57:e4:f7:a7:fd:34:f6:1d:db:2b:c0:
61:e6:97:5c:4a:82:71:6e:b1:4a:cc:b1:62:88:b4:a4:ee:4c:
1d:be:16:1e:be:b8:8a:16:e1:12:8b:94:a5:b2:37:a2:a6:90:
4d:b0:e3:4f:e3:17:a2:fd:ea:2b:d7:a8:2c:95:64:a7:01:a6:
7d:1a:29:d0:d6:73:80:71:f7:53:4b:e1:d0:58:dc:4b:8f:ab:
0f:e8:95:13:8d:69:4c:3a:01:81:7b:33:9f:5c:9e:cc:14:e5:
78:a9:49:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:23:55 2025 by rpki-client