Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json)
Hash identifier: YNmKK7OwrQ+rmpVtVlzUxihd7rHJfxDpxb/U+U8LyL4=
Subject key identifier: FB:C6:49:F6:F4:D4:91:3E:DD:5C:21:A8:0C:80:86:A8:CB:69:93:A0
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 01989411E4604D8745075E100308E7AB29DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
Manifest number: 162A
Signing time: Sun 10 Aug 2025 13:00:57 +0000
Manifest this update: Sun 10 Aug 2025 13:00:57 +0000
Manifest next update: Mon 11 Aug 2025 13:00:57 +0000
Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: nXx6tSu2gpSRzjUGAWf6bhVn+tuxN4BJto7d3oK6OJo=)
2: qen-QoIAAGwgpqx4OQAF6M4rR_M.roa (hash: Pfgs1o9qvVrkxz8on7jtYneDypFRD7JuU2XED3GEHk4=)
3: sJjIi8LxyBaapUPztypafiGazB4.roa (hash: snoS7xcNMuCgLXX7PRPXvmr0bu9uS7kTUSsVN0SedsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:11:e4:60:4d:87:45:07:5e:10:03:08:e7:ab:29:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Aug 10 13:00:57 2025 GMT
Not After : Aug 11 13:00:57 2025 GMT
Subject: CN=fbc649f6f4d4913edd5c21a80c8086a8cb6993a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:92:17:96:a6:ca:64:77:bb:57:6c:8e:bc:5d:
53:a4:7e:ad:0a:3c:23:40:93:3a:4a:b5:bb:a8:80:
7b:7c:06:54:32:0b:aa:f5:7f:e5:0f:f1:44:9e:80:
94:b7:fa:e2:86:22:de:24:4d:e0:e5:fb:7e:01:a1:
27:5c:96:9c:85:fc:3a:2a:d0:0d:14:46:ca:56:9f:
58:9f:26:11:40:27:a9:74:8d:6d:11:1f:68:0d:8a:
87:26:08:f2:0e:9d:93:71:68:d1:01:f0:3e:d7:49:
c0:66:ce:a7:4b:bd:28:e5:d8:20:ce:38:8a:2c:69:
30:96:d3:5e:f4:08:3e:1e:78:b7:46:40:83:65:f8:
56:11:6b:d0:51:65:be:ae:55:2f:12:8d:91:4a:a8:
48:7d:f9:ca:b1:39:2c:1d:95:bc:8a:66:12:a8:8b:
e9:f8:c5:4c:3b:ee:13:2f:f5:7e:21:6e:98:7c:3d:
e3:db:a2:e4:1f:11:7f:d7:2c:8d:b2:d8:4f:2c:1f:
1d:2a:a4:2e:ac:81:ed:c8:52:45:59:bd:02:c9:22:
94:b0:fb:d3:d9:87:ba:d8:2d:e5:35:85:62:8b:e9:
73:d1:80:bc:e8:77:d0:cf:e9:6a:4a:97:bb:78:fd:
ff:7e:8c:92:6f:94:38:90:f1:9e:20:b6:50:84:73:
b8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C6:49:F6:F4:D4:91:3E:DD:5C:21:A8:0C:80:86:A8:CB:69:93:A0
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:80:56:1a:04:64:cd:c4:1b:be:d0:e2:86:83:c7:c4:dd:ca:
71:21:ab:2c:86:48:1f:92:95:5b:bc:83:0d:f8:53:f4:b7:31:
f6:7a:51:1a:4c:76:7f:ac:b9:4d:ce:c6:20:21:b6:6d:3e:4d:
82:c3:ad:a5:0a:9f:94:8f:21:28:a0:03:b1:0a:04:18:d5:f1:
03:13:ff:6e:a0:79:44:48:a0:27:55:ef:80:23:61:24:ae:a9:
56:0f:44:70:6a:84:0e:9a:7e:cc:e9:70:ae:65:b3:a2:1b:ae:
c1:8b:c9:49:93:73:31:ba:2a:8d:e1:be:32:5a:40:1b:84:f5:
93:28:33:47:ed:15:ea:3b:38:22:2e:66:f2:62:d8:ad:ec:e3:
15:31:d7:95:b7:d7:6c:5b:d3:8d:a8:e8:d0:0b:dc:aa:29:02:
7e:e0:93:14:f1:57:04:e5:70:e8:74:64:4a:36:c3:ba:0e:bd:
6d:b4:8d:ff:e9:41:4c:ae:08:f1:b2:4b:3c:7a:2d:bc:da:ed:
5f:bd:32:97:ea:18:33:da:04:39:ae:f5:11:e2:8c:6d:2e:08:
c6:3a:49:42:2d:ff:85:9a:72:ea:20:99:60:ee:f5:9d:2e:71:
96:68:19:94:17:19:51:87:2b:fc:39:ae:ab:29:52:28:73:1d:
c4:82:cd:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 15:59:22 2025 by rpki-client