Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
File: AYZ9mLBSF68a-spyJrvWEzcHSfA.mft (raw, json)
Hash identifier: Xcbeokg/lD+hNmE9lS1Myii/smF70a2YwWVH7pXmgA4=
Subject key identifier: 5D:63:65:0A:F7:3B:6B:33:66:73:40:7F:A5:0A:8D:1A:64:29:41:32
Authority key identifier: 01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
Certificate issuer: /CN=01867d98b05217af1afaca7226bbd613370749f0
Certificate serial: 019874193A7ED296F62D33070F00BFB2BA3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
Manifest number: 02FD
Signing time: Mon 04 Aug 2025 08:01:07 +0000
Manifest this update: Mon 04 Aug 2025 08:01:07 +0000
Manifest next update: Tue 05 Aug 2025 08:01:07 +0000
Files and hashes: 1: 1ENw1gcCvt1Pmax0p8zhB7SKAEg.roa (hash: 1qhYf9E0Pe4/V/O+LSKzrT8cldjvFnxKyFJ5/QtS500=)
2: AYZ9mLBSF68a-spyJrvWEzcHSfA.crl (hash: 3PsaZlQ0EsClEZqwKrgPwpXH9xzEedlQWlvKu27RmdE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:19:3a:7e:d2:96:f6:2d:33:07:0f:00:bf:b2:ba:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01867d98b05217af1afaca7226bbd613370749f0
Validity
Not Before: Aug 4 08:01:07 2025 GMT
Not After : Aug 5 08:01:07 2025 GMT
Subject: CN=5d63650af73b6b336673407fa50a8d1a64294132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:da:04:4c:f8:60:b6:ef:50:da:6a:07:a9:a6:
dd:81:ba:f0:01:6c:39:c6:86:73:f8:cc:d1:fd:5c:
45:30:06:97:f4:cc:95:54:c6:f0:76:14:de:b1:80:
e4:69:ce:15:41:f9:e4:9f:6a:b1:59:b1:53:57:83:
b1:d0:fe:a6:a9:a5:29:4c:dc:94:3e:af:e1:b9:5c:
e8:0c:7e:71:91:a7:01:c4:cf:96:dd:79:32:ea:4b:
90:a4:97:35:da:e1:4b:84:05:8f:23:88:50:71:73:
f7:a4:48:78:0d:89:d9:25:98:d8:21:92:9e:53:62:
b1:de:16:58:fb:11:cf:36:64:ca:fe:f3:88:a4:20:
1c:8f:31:c7:a8:74:48:44:44:1b:e9:86:79:3e:08:
f6:fc:a8:84:c4:ed:fe:68:24:51:ef:6c:9c:08:58:
5a:af:30:b9:1e:05:3f:7e:98:e5:78:04:9b:2c:ab:
96:81:1a:1d:19:56:ef:d2:5d:ea:35:0b:2f:22:63:
41:80:4d:d0:d9:fc:3a:ca:fe:37:f6:45:99:67:0b:
4e:08:71:ac:67:0e:e7:a6:2f:ac:75:01:34:b1:14:
84:54:39:77:04:25:27:17:6b:be:c4:50:f9:fc:2d:
ea:df:21:c3:48:ea:99:46:81:ba:51:73:eb:aa:cc:
64:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:63:65:0A:F7:3B:6B:33:66:73:40:7F:A5:0A:8D:1A:64:29:41:32
X509v3 Authority Key Identifier:
keyid:01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:f6:31:9b:18:f2:d7:dc:4b:3b:53:62:dc:f9:79:3a:1c:0f:
fa:ae:fd:bd:e5:50:00:a4:e7:b7:97:54:0e:01:85:f6:d3:de:
0f:9c:0b:cd:ff:57:1a:7a:80:45:45:8b:ec:3c:25:24:f5:97:
4a:96:68:a4:c5:f0:47:93:aa:7f:c3:e7:79:53:ae:19:0a:3d:
16:a6:1d:b6:d6:35:36:65:0a:3a:65:92:12:e0:19:07:c0:1b:
a7:a1:c4:c1:b3:45:78:d6:fe:ed:d8:4d:bb:c8:f3:67:dc:e6:
83:d8:4a:2a:dd:7c:1a:73:73:d4:be:2a:77:40:d2:da:de:ce:
0e:5e:00:91:49:a7:64:3b:30:a6:fc:fa:4a:e5:4a:a2:07:a6:
fb:34:a4:ec:10:5d:99:94:fa:25:86:f9:36:c6:af:31:55:66:
b5:39:2f:89:f6:1d:fb:3c:d8:ca:fe:ac:46:73:54:e9:c9:cd:
cc:4a:58:0f:12:75:d7:22:e2:00:13:58:bd:f5:2d:f0:a6:59:
51:5c:5c:63:dc:8f:d8:01:00:d7:9c:f3:d1:3e:33:26:f7:69:
1b:68:b3:2c:5f:b0:53:54:22:27:86:34:4b:10:3a:7f:33:76:
fe:37:25:25:67:e8:82:9b:0e:ea:a7:99:e7:48:ed:49:24:ea:
e6:96:4e:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 10:58:48 2025 by rpki-client