Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
File: aEZbnPs2jGnssOP-o7VCupxzAfQ.mft (raw, json)
Hash identifier: rUCbtYR7Z3+stH9cIAe9dwyaMf/wIw5dBIvP+YEa/pQ=
Subject key identifier: 27:E2:84:54:53:65:02:7D:9E:B3:D1:FC:30:7D:A8:F6:D9:5C:D0:17
Authority key identifier: 68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
Certificate issuer: /CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Certificate serial: 019A4C612A6F3284BB8B8964F6EB224F8EAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
Manifest number: 1424
Signing time: Tue 04 Nov 2025 01:00:27 +0000
Manifest this update: Tue 04 Nov 2025 01:00:27 +0000
Manifest next update: Wed 05 Nov 2025 01:00:27 +0000
Files and hashes: 1: aEZbnPs2jGnssOP-o7VCupxzAfQ.crl (hash: enxEZ7eegG+h5RSvsE4fJUqFxMmuLWKi0jBgy/f4szU=)
2: s3MszUL2Sssrqjezj_btDkPTmQg.roa (hash: rgkSdfEiUESbKFQA8EcHOyD2UnXv2kAlPQ3EqnLhSNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:61:2a:6f:32:84:bb:8b:89:64:f6:eb:22:4f:8e:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Validity
Not Before: Nov 4 01:00:27 2025 GMT
Not After : Nov 5 01:00:27 2025 GMT
Subject: CN=27e284545365027d9eb3d1fc307da8f6d95cd017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:22:af:05:7c:f0:3c:cc:08:47:e1:f0:2b:c3:
3c:8e:9f:0b:e8:c1:f9:d4:03:76:10:62:59:01:b7:
1f:94:72:35:f1:91:da:c0:08:7d:8e:b0:e9:fc:f3:
5b:19:e7:4b:fc:c8:ed:da:3c:f9:80:88:f2:59:a2:
01:ee:7e:e5:09:47:8a:8b:ef:40:01:e4:f5:29:4d:
0a:a9:32:ab:36:76:0a:10:0c:94:90:1e:0b:d2:13:
97:dc:30:af:08:12:92:6a:da:9c:a6:db:0d:c7:c4:
e2:ce:3b:8f:be:a3:1c:f9:f6:71:f0:c8:21:b8:99:
46:1c:56:df:80:42:14:c0:1c:41:77:16:df:2e:75:
ff:5b:38:7c:9d:94:61:c6:0d:b5:ea:87:36:45:2d:
45:94:7e:b3:19:91:ab:b6:46:cb:19:dc:96:8e:02:
91:a2:4b:f5:b2:81:00:25:bc:80:71:e9:c2:ef:72:
17:85:11:44:d4:2e:d5:53:d8:15:67:58:c1:cd:6a:
b9:a3:0d:f8:8d:31:3a:3b:8c:06:bc:df:2d:4c:3f:
f7:6a:19:a0:b5:52:ca:8d:1a:f6:e4:be:0e:28:ae:
b5:09:c6:62:75:1a:0f:22:95:79:a1:e0:69:07:91:
b7:3f:43:d8:7c:6c:e9:25:6f:ef:f4:dd:d8:ad:31:
2a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E2:84:54:53:65:02:7D:9E:B3:D1:FC:30:7D:A8:F6:D9:5C:D0:17
X509v3 Authority Key Identifier:
keyid:68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:97:be:d3:e2:31:7c:2a:26:6f:94:7c:60:0f:f0:65:6b:26:
08:f5:4e:8c:8d:00:7c:85:99:51:86:5b:d7:2a:6c:87:94:15:
d2:23:66:1c:62:fe:af:88:58:b2:f3:1d:77:41:34:b3:cc:cd:
4a:bb:9c:42:99:0d:df:9c:94:18:a3:ab:95:15:43:a2:d3:95:
07:c5:2c:a4:fb:7c:b2:30:ff:06:c7:d7:1f:af:f7:03:38:2a:
e0:4d:18:bf:22:63:13:43:3f:ae:32:8c:13:10:84:81:13:4e:
a1:f0:9f:fe:79:47:c8:0b:77:c5:f9:b4:60:16:55:8a:33:4a:
88:e8:26:94:c6:04:27:15:dd:eb:06:d8:ed:9b:d9:7d:9d:f4:
26:12:60:1f:b2:7b:8c:76:96:02:58:ba:02:dd:ad:a0:c1:91:
93:9f:2e:b8:2b:1f:5c:5e:ac:bc:07:c5:21:a5:c0:d2:0d:0a:
4f:10:6d:f9:c3:33:e3:6b:7e:4d:34:96:b9:2c:50:b3:e9:66:
a0:0b:ea:e9:aa:ea:7f:ed:fa:aa:04:78:02:6e:9e:3b:93:72:
8b:2e:0a:a6:85:67:cd:cc:0e:c3:2a:c1:86:10:ed:54:5f:b4:
f4:24:14:be:3b:ee:fe:f7:c8:11:9a:0c:20:d2:c7:c3:7c:af:
33:2b:3a:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:48:20 2025 by rpki-client