Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.mft
File: AhaSppUBf7XEv4wjgHjzA9j78Ic.mft (raw, json)
Hash identifier: isWRbOLhAgzXImA7oh7IYfW/QQpxqZ5LEp4tLF8KJFI=
Subject key identifier: 8E:E6:6B:D8:74:E2:A3:92:E1:64:8C:2B:DD:8E:39:88:24:7A:68:06
Authority key identifier: 02:16:92:A6:95:01:7F:B5:C4:BF:8C:23:80:78:F3:03:D8:FB:F0:87
Certificate issuer: /CN=021692a695017fb5c4bf8c238078f303d8fbf087
Certificate serial: 01988922301B7C50F0216508268F220A3095
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhaSppUBf7XEv4wjgHjzA9j78Ic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.mft
Manifest number: 161E
Signing time: Fri 08 Aug 2025 10:02:55 +0000
Manifest this update: Fri 08 Aug 2025 10:02:55 +0000
Manifest next update: Sat 09 Aug 2025 10:02:55 +0000
Files and hashes: 1: AhaSppUBf7XEv4wjgHjzA9j78Ic.crl (hash: dHXY4K/151HSCAKsw7IKPZ+2bFybMR0fzF76p59f+J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.mft
rsync://rpki.ripe.net/repository/DEFAULT/AhaSppUBf7XEv4wjgHjzA9j78Ic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 10:02:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:22:30:1b:7c:50:f0:21:65:08:26:8f:22:0a:30:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=021692a695017fb5c4bf8c238078f303d8fbf087
Validity
Not Before: Aug 8 10:02:55 2025 GMT
Not After : Aug 9 10:02:55 2025 GMT
Subject: CN=8ee66bd874e2a392e1648c2bdd8e3988247a6806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a3:6f:ba:92:94:e8:72:aa:a6:21:b0:d9:6f:
78:0c:b2:57:f0:c5:b0:93:e5:bb:75:b8:d2:91:70:
d6:4f:e1:da:88:1b:b0:bc:5b:db:ba:24:42:95:23:
2b:05:b8:97:f6:d4:3e:4a:31:0d:92:50:4b:f8:33:
ac:00:cb:d5:23:6d:e6:4a:6e:c0:fa:47:41:9c:12:
5f:42:17:95:15:54:82:21:d7:31:13:6e:5d:c6:e2:
bc:30:60:40:5e:40:63:88:5a:a6:36:5f:a0:6c:e4:
2a:aa:75:6c:bd:85:ab:f4:9b:fc:3e:96:ea:e0:cd:
ec:f7:e5:19:0a:02:f5:b6:a1:49:42:33:8c:33:97:
56:09:1f:66:56:e3:ca:08:06:9b:29:1b:15:27:6e:
d7:87:7a:a0:3c:95:67:11:b3:11:9b:a5:3e:ca:30:
61:e2:c3:f8:03:81:23:83:ef:33:1b:0c:95:4e:e3:
cb:17:5b:99:b2:87:bc:5c:74:91:53:8e:80:79:71:
9f:61:e0:3d:1d:e7:6d:ff:41:95:ad:a8:6a:d4:31:
62:21:29:9a:ed:22:c6:b6:70:38:43:ad:e5:6e:85:
40:ce:bb:e5:4b:c3:f1:6e:e3:a9:a5:76:23:54:54:
95:8c:cb:b1:dd:49:d4:f3:5d:54:f5:d5:a2:34:9b:
53:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E6:6B:D8:74:E2:A3:92:E1:64:8C:2B:DD:8E:39:88:24:7A:68:06
X509v3 Authority Key Identifier:
keyid:02:16:92:A6:95:01:7F:B5:C4:BF:8C:23:80:78:F3:03:D8:FB:F0:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhaSppUBf7XEv4wjgHjzA9j78Ic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:b9:e0:4e:2d:ad:c5:dc:82:69:a6:91:0c:33:b5:a2:39:79:
f4:42:bf:68:a0:ed:72:e1:0b:cb:07:29:98:05:55:d6:dd:fe:
e7:9a:dd:37:58:e4:95:84:90:35:10:69:74:ae:bb:b2:25:bc:
20:0b:90:6e:f2:a0:03:ad:fa:3d:38:8f:3d:b4:a7:91:71:e0:
91:98:63:1f:9d:3a:1f:88:bf:c0:22:63:c6:e8:30:bb:8d:ab:
17:cd:02:a3:58:1e:ef:55:e0:7e:30:6e:3b:7c:0b:95:c6:45:
f2:a3:51:67:0a:dc:cf:03:46:17:7b:61:62:5a:ca:cd:9a:6c:
52:ee:d2:71:9e:7c:69:5f:a1:fa:17:31:cf:ac:aa:a1:f1:1f:
30:2c:c1:1d:cb:6b:1f:e3:3d:96:c7:55:6d:02:cf:27:06:3b:
13:a5:4b:08:4d:ab:6d:1e:1f:95:57:2b:f5:db:26:2e:7b:f2:
a9:37:ad:8d:d0:9d:fe:4f:89:f6:e5:c5:1e:5b:9b:3a:39:0b:
a1:0a:49:a0:3f:6e:e7:26:0d:9b:16:c8:7b:31:30:6c:29:5e:
a4:97:0a:4e:fa:b0:29:9e:62:26:4c:f0:ea:b0:f4:ce:e7:2c:
04:f4:74:54:66:f8:cd:51:17:43:2b:41:0c:62:5a:8b:aa:2f:
02:c0:ef:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 12:49:15 2025 by rpki-client