Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
File: aaUdRFt2erm2YncC5KKzkE0gP3c.mft (raw, json)
Hash identifier: aaF/6DrBji8fD8J6b2GnQ9h5EXrQStzu/LoTvcuC0hU=
Subject key identifier: D8:02:FE:1D:50:56:0D:51:F1:58:D7:BE:83:25:7E:FB:E9:02:D3:F4
Authority key identifier: 69:A5:1D:44:5B:76:7A:B9:B6:62:77:02:E4:A2:B3:90:4D:20:3F:77
Certificate issuer: /CN=69a51d445b767ab9b6627702e4a2b3904d203f77
Certificate serial: 0198819DD17E4290C352F879870EA05EB9DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaUdRFt2erm2YncC5KKzkE0gP3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
Manifest number: 15B0
Signing time: Wed 06 Aug 2025 23:01:00 +0000
Manifest this update: Wed 06 Aug 2025 23:01:00 +0000
Manifest next update: Thu 07 Aug 2025 23:01:00 +0000
Files and hashes: 1: aaUdRFt2erm2YncC5KKzkE0gP3c.crl (hash: hQQ3gGKDQvzPKO+rnIymLoY350MlqAjSuV8wu0YHXIU=)
2: gvJBtDmrBY4y1m9tVe-S6ndjy20.roa (hash: e9qz/rQIxQf43DTjLpdblCilaun5V9rCKHAnrG6oKJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaUdRFt2erm2YncC5KKzkE0gP3c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:9d:d1:7e:42:90:c3:52:f8:79:87:0e:a0:5e:b9:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a51d445b767ab9b6627702e4a2b3904d203f77
Validity
Not Before: Aug 6 23:01:00 2025 GMT
Not After : Aug 7 23:01:00 2025 GMT
Subject: CN=d802fe1d50560d51f158d7be83257efbe902d3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8b:7a:c1:04:50:2f:58:7d:98:5d:cb:41:6f:
c7:8f:6c:5e:7b:a0:7d:91:1a:57:0d:f1:e1:09:56:
93:ee:6c:3c:3f:60:c0:7b:d7:45:b7:cf:4b:c7:7c:
9f:f6:2e:27:a3:1f:84:48:2b:39:a9:48:99:44:39:
d3:b6:8b:80:52:fb:38:4e:6b:f8:c5:e9:f9:92:96:
1a:e5:ba:41:6f:07:fd:16:1f:4e:1e:fd:ba:67:a5:
b2:94:0b:47:fe:2b:22:a0:de:b0:83:9b:75:94:50:
1c:1f:19:29:44:99:15:fb:7b:12:c6:bc:22:ae:a9:
a5:72:dd:20:f1:4f:62:11:d9:5e:44:2f:6d:3f:1a:
e4:6c:ed:a3:4e:5b:ca:66:9c:bf:77:61:15:de:93:
3e:2f:3c:ec:66:60:7c:23:83:c2:7c:a8:26:8f:93:
85:10:fc:4f:63:ff:4a:72:ee:3f:39:a6:c7:f0:74:
6b:ec:5b:13:de:5c:d8:08:ba:f7:ed:db:fe:97:92:
f0:41:93:60:1b:81:1d:e6:0d:fc:4d:24:ce:15:d6:
2b:42:ea:88:14:83:03:c1:04:c0:62:ee:74:16:bd:
cf:0b:7a:c8:2d:e9:12:71:9a:5e:bf:d7:22:a9:c2:
02:02:65:30:bf:1e:dd:16:9a:b9:f9:ea:a2:a8:df:
3d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:02:FE:1D:50:56:0D:51:F1:58:D7:BE:83:25:7E:FB:E9:02:D3:F4
X509v3 Authority Key Identifier:
keyid:69:A5:1D:44:5B:76:7A:B9:B6:62:77:02:E4:A2:B3:90:4D:20:3F:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaUdRFt2erm2YncC5KKzkE0gP3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:95:5b:8f:06:fb:e3:06:85:2f:f6:fe:87:90:c8:8a:06:60:
04:2c:da:91:80:0e:79:5f:a5:8a:f8:51:e1:83:b4:1e:03:ca:
ae:5a:c8:40:eb:52:dc:f0:8a:ae:d8:cc:3d:94:c6:23:17:1a:
a8:d0:71:bf:99:03:4c:a0:a7:5f:64:fc:87:d6:c4:32:8d:88:
df:2c:d5:ef:f2:2f:75:1d:ef:b8:3f:ac:b4:bf:e4:01:f0:83:
69:bc:4d:8e:28:2a:46:51:47:12:c1:f3:e5:ee:cf:b7:b1:fa:
6f:1d:b6:94:2a:a4:c6:8a:f8:b0:62:9b:d6:f6:6c:d1:b1:b9:
63:f4:23:89:e0:fa:dc:9d:05:55:aa:10:eb:7f:ed:5b:96:ea:
77:0d:26:54:e6:6d:2a:7c:de:c1:fc:5e:33:ca:9e:5a:ba:36:
91:80:d5:e6:2c:d2:03:c0:03:6d:e6:65:8c:9b:b8:94:22:61:
15:6b:1c:c6:1a:fb:32:c8:fb:bb:33:f0:1f:41:da:b9:3f:73:
91:7d:90:b8:5b:c7:b9:e9:a9:98:3a:8c:fd:76:53:cc:10:6b:
8b:20:eb:2e:96:c5:bd:91:75:50:5a:02:d2:71:5c:bf:d0:8f:
b4:2a:40:b6:30:39:17:8b:5d:19:f8:4b:d2:52:52:89:b8:88:
7b:f9:e4:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:01:38 2025 by rpki-client