Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
File: AozMjYF4yenS_8Uy_LXNaL6qd20.mft (raw, json)
Hash identifier: eG+8eU8dpDAUTEyvrdl8vvI+BvQ2LjsRFU2fsZQhIWQ=
Subject key identifier: A6:71:AA:58:47:08:98:81:4F:76:E8:7B:48:B9:97:88:4A:AB:58:CE
Authority key identifier: 02:8C:CC:8D:81:78:C9:E9:D2:FF:C5:32:FC:B5:CD:68:BE:AA:77:6D
Certificate issuer: /CN=028ccc8d8178c9e9d2ffc532fcb5cd68beaa776d
Certificate serial: 019A5307F6FC605AF4D838E53388F37E1969
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
Manifest number: 0158
Signing time: Wed 05 Nov 2025 08:00:22 +0000
Manifest this update: Wed 05 Nov 2025 08:00:22 +0000
Manifest next update: Thu 06 Nov 2025 08:00:22 +0000
Files and hashes: 1: AozMjYF4yenS_8Uy_LXNaL6qd20.crl (hash: /Y8JiUDg0mxJeCppmNWs9T5KVwc2wMeGAwKvBi05sjQ=)
2: hNq3yGnPCHaydptWbrbgby3w7SM.roa (hash: TF/bJmN5adtoEqSxW4KjZfMJbH3NebJd9z02MI+Ip68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 08:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:07:f6:fc:60:5a:f4:d8:38:e5:33:88:f3:7e:19:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028ccc8d8178c9e9d2ffc532fcb5cd68beaa776d
Validity
Not Before: Nov 5 08:00:22 2025 GMT
Not After : Nov 6 08:00:22 2025 GMT
Subject: CN=a671aa58470898814f76e87b48b997884aab58ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f3:a2:1a:66:65:6d:1a:63:cb:af:26:3c:8b:
2c:9b:52:29:3e:0f:82:26:8b:b8:c0:f2:78:ce:db:
2b:60:7a:6b:e1:e6:25:2f:4b:c4:39:75:82:16:ba:
4f:44:b8:58:98:34:1f:0c:41:c3:1a:6c:30:4d:fa:
93:ca:f6:b6:db:0e:6b:1f:e6:fc:bb:98:5d:a6:24:
95:b5:e1:a2:0b:44:41:0a:ba:fc:d6:c7:89:4d:89:
7b:f6:65:70:5f:48:66:76:3c:fe:a6:a7:e0:a9:35:
f6:d6:8e:17:58:0a:f7:77:24:94:6d:55:5f:06:33:
06:e6:e5:79:75:33:cc:7f:17:44:a4:09:6a:3d:ee:
bc:a4:2f:1e:1e:cc:e7:6c:84:2d:c7:46:b7:e6:43:
a1:07:28:71:5e:db:a9:53:24:eb:19:6c:14:f1:c2:
6d:0b:ac:64:1b:f2:06:98:78:8c:13:4a:3d:06:d1:
c9:2a:5d:34:0b:c8:25:9d:7e:21:90:25:01:6a:cb:
fb:48:3e:8f:b3:69:f3:fe:25:ab:c8:89:24:3c:e4:
92:7a:77:ff:22:48:b6:7b:38:5d:4e:45:88:99:85:
ab:56:eb:dc:5b:39:85:ed:f7:76:ba:c6:6c:e0:fa:
f8:d7:16:a8:8b:4d:93:a7:62:5f:79:d6:bc:b2:72:
f6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:71:AA:58:47:08:98:81:4F:76:E8:7B:48:B9:97:88:4A:AB:58:CE
X509v3 Authority Key Identifier:
keyid:02:8C:CC:8D:81:78:C9:E9:D2:FF:C5:32:FC:B5:CD:68:BE:AA:77:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:c2:65:83:ac:28:03:72:12:4d:a7:61:8c:aa:18:d3:fb:76:
0c:04:bd:9e:74:4b:c8:6e:0e:77:11:ef:3d:b0:81:0e:ab:7d:
28:8a:94:2c:8f:d6:5c:dd:01:89:0f:03:5a:31:cd:d9:90:1d:
84:05:ca:68:04:8e:96:94:cf:48:2f:48:26:8b:32:15:8f:97:
7a:21:51:bc:6f:d0:88:d8:47:37:fb:df:e3:a9:50:8d:9d:40:
f2:9d:06:ac:fd:3f:08:e9:86:13:3d:bb:4d:77:27:b0:60:68:
cf:e9:fa:d3:a1:23:a0:e0:4b:a0:da:73:2e:74:d6:1d:84:1b:
e4:12:4d:e9:12:96:fb:2b:b1:f0:cd:b1:83:8e:2f:ad:59:9d:
99:ca:bf:db:89:51:ad:af:27:05:2e:d4:73:f0:a9:96:5a:9f:
74:ed:1c:05:6b:fa:41:3d:08:0f:76:04:b9:61:66:5f:2a:10:
3f:4c:fb:77:12:81:63:b7:5a:95:7c:84:37:9f:7c:f9:21:55:
f4:ef:14:f4:cd:a7:72:b6:7f:a1:e8:c2:6b:cc:57:77:ef:6e:
61:fd:15:cf:a1:a3:94:5c:eb:58:3a:c1:f2:25:da:9c:e7:34:
fa:16:44:e2:86:d5:57:c3:1e:9d:ac:b4:86:28:0d:4f:cf:4d:
64:85:c4:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 17:02:44 2025 by rpki-client