Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
File: aErIoCEnBoJ2XSPvAzjzXHht2zU.mft (raw, json)
Hash identifier: li+pKz66N41KyYbcb4CulTqa2JZ3Oy2O8cvTzeLvAOc=
Subject key identifier: 33:19:98:3F:95:7F:68:20:93:08:90:26:27:24:6B:07:92:ED:C7:33
Authority key identifier: 68:4A:C8:A0:21:27:06:82:76:5D:23:EF:03:38:F3:5C:78:6D:DB:35
Certificate issuer: /CN=684ac8a021270682765d23ef0338f35c786ddb35
Certificate serial: 019A4E86934DDCD7C17BAF63A05E29C82209
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
Manifest number: 13BB
Signing time: Tue 04 Nov 2025 11:00:33 +0000
Manifest this update: Tue 04 Nov 2025 11:00:33 +0000
Manifest next update: Wed 05 Nov 2025 11:00:33 +0000
Files and hashes: 1: aErIoCEnBoJ2XSPvAzjzXHht2zU.crl (hash: T7UwK7nCXUZFJVQv/rC089qIKHO2eP3VKpTdKK7BhNE=)
2: eEP1VypyuqVxmlLrgaA9LlVwYK4.roa (hash: 5dvQLaqP0vbYafUJXNT7sKTWbRstUgrMUzxGvHU5Rgc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:93:4d:dc:d7:c1:7b:af:63:a0:5e:29:c8:22:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=684ac8a021270682765d23ef0338f35c786ddb35
Validity
Not Before: Nov 4 11:00:33 2025 GMT
Not After : Nov 5 11:00:33 2025 GMT
Subject: CN=3319983f957f68209308902627246b0792edc733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a3:54:e8:b8:79:89:40:26:55:c3:41:85:93:
9e:8a:ca:81:23:f7:bc:5f:84:9c:b3:e5:4f:97:36:
25:93:c2:af:a6:b6:77:88:df:00:ec:48:47:54:a6:
d0:18:76:47:f4:1c:b5:8f:74:b2:ff:77:55:e5:18:
01:ff:7f:6d:eb:f9:4c:48:54:c5:79:bc:c6:00:8a:
e3:16:c9:a9:0e:ff:d4:00:78:55:1c:ba:d2:0c:c3:
b4:f7:83:1a:46:0d:aa:6e:d1:f6:8c:de:ca:11:b9:
f0:3c:01:f2:ba:43:83:d0:c2:52:5d:b0:2b:44:c0:
6c:98:7e:e4:de:e3:6d:c3:ae:cf:36:1c:1c:eb:94:
7d:e6:52:b1:1c:ce:c8:60:7d:95:f2:4a:fa:02:38:
36:f4:17:e0:67:fc:72:89:b8:8b:98:1b:b1:30:34:
a2:41:9b:af:ba:d3:3a:c2:40:4e:6a:db:bf:4e:b8:
8e:c9:89:87:7a:61:c2:f5:31:8b:2a:d3:cb:af:71:
bd:ee:ff:19:01:fc:b7:96:94:25:9d:ac:86:9d:47:
6c:19:43:bd:c4:da:7b:d9:3c:93:56:a5:76:fd:f9:
cb:0e:35:a2:6c:d0:f0:ac:c3:ba:bb:a1:8e:13:1c:
50:36:2e:a3:2d:52:65:22:4a:f8:36:36:9f:12:6f:
76:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:19:98:3F:95:7F:68:20:93:08:90:26:27:24:6B:07:92:ED:C7:33
X509v3 Authority Key Identifier:
keyid:68:4A:C8:A0:21:27:06:82:76:5D:23:EF:03:38:F3:5C:78:6D:DB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:fe:34:ac:cf:a7:7c:ff:9a:ae:78:8b:28:f1:9c:91:59:d6:
c7:60:6d:1b:85:f2:6c:3e:4b:76:5e:11:bb:4e:3a:e4:11:3b:
d3:7d:cd:3b:e8:f0:cb:2a:ba:0b:5a:83:67:b2:5b:99:40:11:
3b:f8:d3:54:b5:9a:43:1c:fb:19:50:9b:92:db:fd:cc:b7:dd:
8b:5c:84:87:14:66:5c:09:03:b5:7e:5f:34:a0:e7:cc:1b:24:
13:30:00:72:fa:af:1e:10:e8:56:6b:88:c8:5e:ce:16:3c:43:
98:1e:e3:05:53:25:da:66:b1:18:73:51:8e:8b:d4:c0:0a:2d:
ab:28:90:bf:40:0f:27:58:af:9d:bb:ef:ea:7b:df:1b:b4:d7:
05:46:28:65:b3:70:81:f4:f9:6e:47:58:2a:4e:c1:d7:eb:ef:
f3:bb:19:10:e0:c6:c1:ab:c6:3a:7b:b1:cb:a6:b3:40:97:df:
8f:69:8d:2c:0e:4f:a6:3e:36:05:fc:c4:0b:5e:0b:14:49:32:
c8:d2:c8:8c:6f:4f:82:b3:0c:21:87:e0:9c:05:75:b4:79:a1:
d3:00:f1:f7:d3:59:36:c5:71:ab:97:82:be:da:2d:14:2a:b1:
44:45:d3:8c:0f:55:88:76:7e:6f:34:e9:fe:10:04:7e:00:72:
86:be:45:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:31:03 2025 by rpki-client