Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
File: 7qq8oRa05zqZRKuXAs-YZleANYA.mft (raw, json)
Hash identifier: iNqUQzEJL2+MvzR+cf+gcp5sq81tq+k8MlZxTXSXkk0=
Subject key identifier: 87:97:3E:96:0B:27:72:DE:B4:9A:87:BB:3E:65:BE:B6:B0:1A:61:FC
Authority key identifier: EE:AA:BC:A1:16:B4:E7:3A:99:44:AB:97:02:CF:98:66:57:80:35:80
Certificate issuer: /CN=eeaabca116b4e73a9944ab9702cf986657803580
Certificate serial: 019A4FD0770E9E9A3A5B4089A659FFBF4C7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
Manifest number: 0356
Signing time: Tue 04 Nov 2025 17:00:53 +0000
Manifest this update: Tue 04 Nov 2025 17:00:53 +0000
Manifest next update: Wed 05 Nov 2025 17:00:53 +0000
Files and hashes: 1: 7qq8oRa05zqZRKuXAs-YZleANYA.crl (hash: 6O57N7pdcjMyrIHPTfEVmvyDnzb3h0cPWS/8I+dmlEY=)
2: 87MujmzYjqiHmvGtUQfVum9xgYI.roa (hash: wh9UFynd+k4p6PBt8Z51e5f4u9WZiYuFkQCOx8EtepA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 17:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:77:0e:9e:9a:3a:5b:40:89:a6:59:ff:bf:4c:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eeaabca116b4e73a9944ab9702cf986657803580
Validity
Not Before: Nov 4 17:00:53 2025 GMT
Not After : Nov 5 17:00:53 2025 GMT
Subject: CN=87973e960b2772deb49a87bb3e65beb6b01a61fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:32:d2:89:b7:c9:e3:30:1f:64:65:fc:be:d8:
e4:64:4f:3d:64:53:51:7d:de:8b:66:33:45:50:de:
6a:7a:e9:14:af:05:15:08:60:e0:8b:fa:14:67:4a:
c1:8f:ed:42:7a:13:95:ab:1b:41:66:6a:04:d7:b3:
3d:65:65:52:ed:87:04:b0:2e:2e:44:70:ab:c7:bb:
7a:9f:96:4b:bd:77:32:e1:91:44:49:59:6c:00:c3:
95:92:92:a1:af:23:49:c1:94:a0:27:54:1b:cf:01:
7d:64:b7:64:77:f8:62:52:db:e2:56:5f:09:ff:c7:
52:12:e2:69:cf:d7:0e:2b:19:7a:a3:d3:3d:1d:b5:
a2:07:d9:01:23:6d:00:53:fd:cf:59:5a:c0:8e:21:
fd:44:1f:c7:33:59:ef:18:40:95:2a:d8:15:ca:51:
6b:6c:7d:f3:25:5c:40:34:57:86:ee:63:df:71:42:
46:b3:31:3b:5d:77:3d:00:e1:c8:52:6c:63:0e:8a:
c4:9d:75:33:c0:8e:13:94:90:a7:2e:ee:05:16:ed:
ad:b5:23:b0:73:c6:ee:4e:27:3e:cb:4e:12:5d:1d:
0c:8a:77:ab:99:15:a6:41:11:e7:f9:39:48:0e:a5:
f8:29:bb:0a:e9:53:1b:2f:e4:72:b6:0c:a8:72:7f:
24:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:97:3E:96:0B:27:72:DE:B4:9A:87:BB:3E:65:BE:B6:B0:1A:61:FC
X509v3 Authority Key Identifier:
keyid:EE:AA:BC:A1:16:B4:E7:3A:99:44:AB:97:02:CF:98:66:57:80:35:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:4f:12:a0:ad:bf:36:de:11:76:59:43:b0:27:52:b4:e7:a4:
08:26:4e:9d:3f:67:af:c5:3e:17:d9:aa:34:e2:19:0c:28:4f:
57:86:9a:65:66:ca:e7:12:de:ff:2e:45:f1:5d:a7:06:63:e6:
7e:59:0b:ff:8a:fa:14:06:44:a7:a9:21:e3:a9:76:f0:99:61:
fb:41:00:20:c5:79:92:25:02:a2:08:f7:1b:a4:24:22:6d:af:
63:45:5e:0c:19:31:a9:42:82:7f:dd:56:db:a6:87:e9:e3:56:
7b:b3:1c:96:33:ca:5a:8c:4f:e7:18:07:9a:75:d3:63:e9:65:
51:eb:27:8a:99:35:ad:b5:e0:20:70:2f:4e:fc:fb:fc:71:ca:
55:29:6c:5e:6a:bb:46:48:47:23:94:59:38:2d:c3:ad:f9:b3:
60:9d:f7:9d:fc:56:b0:9c:52:0b:dc:98:c2:07:61:49:ff:0e:
bb:13:7d:10:e1:d8:69:a8:9c:a9:da:85:ad:e7:8c:49:07:41:
50:d3:2d:26:50:cf:96:3a:bc:61:e7:ff:fc:f9:46:5c:33:b7:
c4:72:2a:4e:c2:14:e6:b5:a8:a2:92:d5:8d:a7:fc:32:72:7e:
84:80:fe:20:d7:7a:53:42:ba:bc:30:92:de:db:b2:37:6c:59:
09:51:62:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:04:57 2025 by rpki-client