Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
File: aJQuPste6nkqdvray-wBqFaOl_Q.mft (raw, json)
Hash identifier: JdQ/APPidQfV8Z7jDI/M5ETUh828pziVJ4Y5eL90AKs=
Subject key identifier: 5E:9E:67:33:CA:E2:55:95:B1:49:DA:59:FF:94:41:C0:83:C9:14:1B
Authority key identifier: 68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
Certificate issuer: /CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Certificate serial: 01988AA0965795B394E80EEAB82F95677B2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
Manifest number: 1623
Signing time: Fri 08 Aug 2025 17:00:36 +0000
Manifest this update: Fri 08 Aug 2025 17:00:36 +0000
Manifest next update: Sat 09 Aug 2025 17:00:36 +0000
Files and hashes: 1: 2I7Ug_0TKUirYBKdCRFB3X-yPVM.roa (hash: OuAKBuCtiZrdtqQo3Ia+YQ9DdlyXDqDuhn9BW+I9wGc=)
2: aJQuPste6nkqdvray-wBqFaOl_Q.crl (hash: voN0m2lAgll/8qxbnxoF14Q6NR6acIl4zW4bb4pT70c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:a0:96:57:95:b3:94:e8:0e:ea:b8:2f:95:67:7b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Validity
Not Before: Aug 8 17:00:36 2025 GMT
Not After : Aug 9 17:00:36 2025 GMT
Subject: CN=5e9e6733cae25595b149da59ff9441c083c9141b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8a:8e:1c:07:ce:ac:92:2c:36:b6:56:3e:13:
fd:3b:d5:99:45:20:13:6e:d2:b4:55:0c:55:e1:6c:
74:21:27:16:4d:72:28:da:35:39:ce:b6:1e:68:52:
2c:04:6d:0e:d3:a4:73:98:e8:40:2e:14:44:b0:cb:
44:5d:a6:9b:67:11:89:11:c8:fb:13:69:70:13:2f:
57:31:ca:fc:b5:e3:80:54:7e:7d:62:c3:f0:7c:6c:
c8:9e:81:8b:a6:a4:d1:74:62:f2:a8:69:73:b8:13:
96:87:1d:83:82:6d:3f:db:33:7e:1c:af:30:1b:e7:
fa:bf:15:76:d1:d8:ac:59:0f:59:76:5c:15:45:cc:
bf:60:33:b9:22:69:ed:3b:53:68:88:67:da:f1:ee:
90:4e:30:ff:06:ff:3e:0e:c0:4c:54:0f:7a:98:a3:
5e:67:e3:af:10:36:e1:1d:63:65:12:b0:4d:90:0c:
f6:4b:30:7a:9b:59:f9:e3:9c:27:1a:ce:6b:8d:cd:
55:53:38:9a:9e:7a:df:43:84:87:d9:43:15:e0:32:
88:aa:90:3c:3e:9e:fc:42:ec:f7:f9:16:f2:1d:ec:
7b:fd:77:9a:63:19:79:8d:d7:ef:cf:81:37:6e:45:
e2:50:6e:40:d3:02:96:2f:d8:10:7c:94:9b:59:29:
1a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:9E:67:33:CA:E2:55:95:B1:49:DA:59:FF:94:41:C0:83:C9:14:1B
X509v3 Authority Key Identifier:
keyid:68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:2c:3a:be:98:26:ca:ac:4e:83:95:f1:20:4f:60:a8:6f:58:
7a:6c:1b:e2:3c:fd:2d:8a:01:14:f1:af:87:e3:4f:8d:81:bd:
fe:cd:ca:6f:19:76:7b:4e:fa:fa:1b:b1:95:65:57:0c:59:27:
dc:0d:78:74:9e:a6:ce:7e:41:0f:30:23:38:f6:df:f7:e9:b6:
ff:97:e5:b9:05:d0:55:66:19:97:90:7a:85:5f:8e:eb:9e:89:
a7:77:c1:18:32:5e:07:e2:d9:4a:fc:73:52:59:e9:a2:61:72:
b4:7c:e8:49:9c:d9:65:08:df:b0:eb:b8:bd:06:68:75:e9:d3:
fa:31:74:08:6a:83:e6:e8:e3:bd:0f:f1:d7:72:b8:68:cc:e7:
8b:e7:da:61:ae:55:91:b8:be:1b:e0:7c:3c:85:52:95:57:44:
fc:fd:9d:2d:2e:55:f6:46:0c:2c:fb:00:b9:fd:b6:e3:df:1c:
fd:a3:82:2d:fe:60:97:37:a3:d1:71:24:d8:6c:ac:4a:6b:ac:
bb:b3:c5:89:85:3a:88:95:ad:ff:e9:e8:d3:f5:0e:b4:c5:e9:
09:f7:bf:b9:01:9b:4e:d3:08:10:5c:4d:63:91:a6:e0:49:4b:
de:a6:42:09:61:65:97:44:e8:73:16:f0:3e:ae:de:76:f0:66:
60:8a:02:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:29 2025 by rpki-client