Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
File: AozMjYF4yenS_8Uy_LXNaL6qd20.mft (raw, json)
Hash identifier: W/fHSu2yWWtX27yBcS6PGj15LRV9pwwfsU2dFG34YJ8=
Subject key identifier: E1:D5:2F:1C:F5:C9:88:97:90:0D:E4:7F:D1:62:B8:F7:9B:19:52:79
Authority key identifier: 02:8C:CC:8D:81:78:C9:E9:D2:FF:C5:32:FC:B5:CD:68:BE:AA:77:6D
Certificate issuer: /CN=028ccc8d8178c9e9d2ffc532fcb5cd68beaa776d
Certificate serial: 0198A0843D48EDB21C5554F5A781623C2A7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
Manifest number: 77
Signing time: Tue 12 Aug 2025 23:01:17 +0000
Manifest this update: Tue 12 Aug 2025 23:01:17 +0000
Manifest next update: Wed 13 Aug 2025 23:01:17 +0000
Files and hashes: 1: AozMjYF4yenS_8Uy_LXNaL6qd20.crl (hash: sZQ3I/zWc85COINeMJ2bnsnKFttedOTPOiZ0z8zv1vU=)
2: hNq3yGnPCHaydptWbrbgby3w7SM.roa (hash: TF/bJmN5adtoEqSxW4KjZfMJbH3NebJd9z02MI+Ip68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:84:3d:48:ed:b2:1c:55:54:f5:a7:81:62:3c:2a:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028ccc8d8178c9e9d2ffc532fcb5cd68beaa776d
Validity
Not Before: Aug 12 23:01:17 2025 GMT
Not After : Aug 13 23:01:17 2025 GMT
Subject: CN=e1d52f1cf5c98897900de47fd162b8f79b195279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ac:20:3a:04:98:9e:cb:30:ac:1f:f8:97:dc:
e6:2b:e2:6b:62:a0:e9:6f:35:c1:e5:2b:de:63:63:
e8:8b:50:28:68:60:98:c7:46:1d:a9:d4:ca:a0:b6:
10:82:dd:20:40:80:b3:e0:60:3e:e0:46:d9:c7:7a:
6f:01:7e:e5:b8:84:db:ab:bb:98:7c:38:0e:44:e6:
c4:9e:1b:67:54:17:fd:ef:68:de:32:fb:f4:fa:05:
c7:ea:e2:8a:46:58:f5:85:4d:46:23:62:58:3c:3d:
06:eb:d2:57:4b:c6:d2:ee:f4:14:9f:e7:45:ce:72:
c7:cb:83:20:89:5a:2b:54:c2:57:90:80:5b:3d:82:
b3:e1:84:d6:12:ee:56:40:72:f5:a9:33:f5:a2:30:
6d:c0:1d:a8:9e:47:9c:1f:6b:dd:0e:89:13:ab:e6:
0c:fa:96:a9:3b:11:02:dd:c5:17:19:40:b9:3f:fb:
c9:b0:21:e5:b7:c3:40:27:76:23:53:ff:84:13:e5:
86:f2:34:cc:4a:b4:6e:dd:a2:a3:40:a5:ea:37:b9:
37:df:72:9c:6e:3e:30:ca:81:0d:cc:5b:4f:30:87:
1d:2a:40:0c:7e:44:7b:70:47:cc:08:95:99:dc:8c:
03:11:ad:72:8b:e8:62:9b:be:e4:f5:df:02:8c:79:
0f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D5:2F:1C:F5:C9:88:97:90:0D:E4:7F:D1:62:B8:F7:9B:19:52:79
X509v3 Authority Key Identifier:
keyid:02:8C:CC:8D:81:78:C9:E9:D2:FF:C5:32:FC:B5:CD:68:BE:AA:77:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:e0:3e:41:c6:ef:47:3f:a2:08:10:57:b9:a6:2b:2c:77:04:
69:b1:86:59:d7:1d:10:82:e6:cb:12:7a:b5:d3:d0:4b:22:47:
74:b5:ea:7c:78:e7:fa:f4:fd:a8:67:a3:41:50:01:2e:66:f9:
f7:8f:7b:34:f9:70:25:12:94:7a:9f:5a:7f:a1:48:53:21:39:
46:31:6e:e6:98:db:33:c4:4e:7a:5a:36:b3:6b:e0:e2:f9:3e:
e7:34:d7:29:7c:c6:5c:62:30:d4:6d:a7:54:92:fe:ce:a2:c9:
08:9c:f6:1d:53:f3:5f:44:6d:a4:5c:d8:a2:e0:3a:87:e6:f1:
85:04:f7:bc:47:34:a5:42:78:45:4d:cb:3c:14:55:62:23:21:
fb:35:5e:24:f1:5b:86:ba:3e:e0:95:77:25:8a:be:2e:d8:31:
1b:f2:06:54:e1:a5:24:22:0e:ba:40:9b:79:0f:5d:47:fd:6c:
50:ab:b2:30:a9:60:46:34:d2:40:37:88:57:48:cb:87:a1:d6:
01:c5:02:6b:4e:fd:3f:01:78:0e:4e:c1:3e:b0:df:e1:f2:a8:
54:c4:ea:7c:2e:ed:e9:a0:a4:42:88:83:02:7d:87:eb:64:32:
65:7d:6f:26:28:5e:f7:73:9c:d4:44:07:93:27:f3:93:f3:10:
74:8c:58:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:46:32 2025 by rpki-client