Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
File: AozMjYF4yenS_8Uy_LXNaL6qd20.mft (raw, json)
Hash identifier: ZgMxjMKupkUReR7bTeKFqj1FGNBSXxjE3SUoxlx3n7k=
Subject key identifier: 19:4D:43:12:F5:CD:5F:77:63:60:D4:C7:19:7E:AB:20:6E:7D:9F:7F
Authority key identifier: 02:8C:CC:8D:81:78:C9:E9:D2:FF:C5:32:FC:B5:CD:68:BE:AA:77:6D
Certificate issuer: /CN=028ccc8d8178c9e9d2ffc532fcb5cd68beaa776d
Certificate serial: 019A54F6B171A09734E92D7D5902A8CFD416
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
Manifest number: 0159
Signing time: Wed 05 Nov 2025 17:00:44 +0000
Manifest this update: Wed 05 Nov 2025 17:00:44 +0000
Manifest next update: Thu 06 Nov 2025 17:00:44 +0000
Files and hashes: 1: AozMjYF4yenS_8Uy_LXNaL6qd20.crl (hash: 6c5f26fGfGSmSrHUgiWq0NV6i01V1XxLImKGVeweQoU=)
2: hNq3yGnPCHaydptWbrbgby3w7SM.roa (hash: TF/bJmN5adtoEqSxW4KjZfMJbH3NebJd9z02MI+Ip68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:f6:b1:71:a0:97:34:e9:2d:7d:59:02:a8:cf:d4:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028ccc8d8178c9e9d2ffc532fcb5cd68beaa776d
Validity
Not Before: Nov 5 17:00:44 2025 GMT
Not After : Nov 6 17:00:44 2025 GMT
Subject: CN=194d4312f5cd5f776360d4c7197eab206e7d9f7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:4d:2a:28:c0:f4:b6:92:5f:de:21:5d:86:f1:
2b:18:5e:83:17:91:b4:42:e5:b6:2c:6b:ae:6a:d1:
7d:bf:81:27:ff:eb:9c:97:96:b4:03:f7:df:04:b6:
91:0a:ca:17:51:e5:6b:30:37:f2:a8:a8:a7:19:e3:
1f:27:fe:1b:68:c7:4e:04:ef:17:ce:4f:c7:15:6b:
5e:98:48:e0:85:fe:22:88:72:53:57:db:73:03:4f:
5d:91:5e:8c:56:82:26:0a:b2:23:3d:19:86:67:e7:
c1:3a:58:d4:49:8e:fc:13:1f:80:fb:97:d6:1b:94:
de:e6:0e:44:c0:d6:73:a3:f8:66:cc:f6:b7:ec:fc:
cb:19:25:57:95:bf:e8:d6:61:7e:e6:ea:c8:89:5b:
2c:65:4d:17:b5:6b:b3:7e:9c:7b:43:13:1c:5f:c8:
ed:89:9d:3b:b5:f7:fd:0a:a5:55:19:0c:66:5d:d8:
a0:99:29:b9:06:01:2e:e7:87:be:27:11:10:70:95:
ad:ba:9d:0b:d4:5b:21:63:67:52:f9:61:4a:8a:cd:
0f:97:e2:ab:a7:1d:6d:93:f1:48:50:e4:a6:b3:24:
52:4d:a5:66:1c:4b:29:a9:10:cb:27:0d:16:46:f3:
06:37:9e:80:48:c2:87:ad:8f:8f:d3:8e:f3:c0:4f:
71:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:4D:43:12:F5:CD:5F:77:63:60:D4:C7:19:7E:AB:20:6E:7D:9F:7F
X509v3 Authority Key Identifier:
keyid:02:8C:CC:8D:81:78:C9:E9:D2:FF:C5:32:FC:B5:CD:68:BE:AA:77:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:3a:13:2b:f4:1d:73:6c:94:70:56:e2:1e:7a:9d:73:75:d0:
be:5d:d2:33:10:5b:cb:c7:87:7a:22:ca:0e:ab:8e:22:20:e5:
0d:42:13:d0:a8:95:8c:93:9a:ad:02:3a:39:fa:23:ce:3a:ce:
b0:13:b6:94:c5:54:a5:18:d0:30:a6:80:8e:6c:d6:94:f9:49:
7a:6d:58:21:2e:4d:87:fa:31:9c:4c:c1:ab:33:f3:27:54:e8:
0c:bc:3c:24:a8:3e:a7:b5:50:03:23:33:45:a2:a8:2c:4f:99:
97:cd:71:5b:dc:62:f2:f9:e3:3b:72:3d:e9:2c:2e:b3:06:a4:
34:53:fd:0d:35:43:57:5a:58:e5:04:5e:c7:67:db:6a:b4:b9:
56:d9:73:3a:27:d6:e4:54:8f:8b:22:d5:be:43:84:87:b1:15:
4a:81:82:18:17:ff:a0:5a:8e:20:a6:1d:2b:a7:46:03:9d:e4:
fa:9b:81:a6:22:a6:02:10:ed:ad:14:6d:cd:95:ef:79:68:2b:
bd:3a:20:ca:2a:da:33:45:05:d2:03:2a:c1:bb:3e:e1:89:b2:
c3:83:62:71:b0:3f:99:46:66:94:ca:b8:9f:9a:2a:74:cb:00:
b3:f1:13:d4:7f:91:dc:50:4b:23:ba:0c:84:ce:04:35:a7:ee:
ce:88:42:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 20:57:02 2025 by rpki-client