Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
File: AyHqOVCODhemUf6SrCnqOIMtC_8.mft (raw, json)
Hash identifier: Cbj3R+Cl8aiK18asuUSLYHRffVc7eFMvhQnW/xqADhk=
Subject key identifier: D7:02:B4:F7:3A:86:2B:7D:77:CA:A8:93:DB:A1:18:87:35:D7:1A:1D
Authority key identifier: 03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
Certificate issuer: /CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Certificate serial: 01987450661D20567F54F0292A4F848F4B29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
Manifest number: 14B5
Signing time: Mon 04 Aug 2025 09:01:22 +0000
Manifest this update: Mon 04 Aug 2025 09:01:22 +0000
Manifest next update: Tue 05 Aug 2025 09:01:22 +0000
Files and hashes: 1: AyHqOVCODhemUf6SrCnqOIMtC_8.crl (hash: xR5zBhdqv9evY8wiDvKuqW7dZRKxkL3eVs3FQwuvkHo=)
2: bOONrlZHdROoIahZ7NmIjgIdExM.roa (hash: 1aT2l6/v3aO2MOldiF+P6gsdMx47ItIcMI7fEC/C0L0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:66:1d:20:56:7f:54:f0:29:2a:4f:84:8f:4b:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Validity
Not Before: Aug 4 09:01:22 2025 GMT
Not After : Aug 5 09:01:22 2025 GMT
Subject: CN=d702b4f73a862b7d77caa893dba1188735d71a1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:80:f3:d7:59:d9:2f:74:79:0c:95:78:35:89:
b9:01:23:82:ea:0a:3a:0a:1c:b2:a5:13:19:84:e4:
97:3d:2d:6f:23:8e:c2:ca:1c:f4:44:b4:83:b6:01:
9d:6e:6b:53:3b:f1:38:b0:d1:cd:23:3a:1c:6f:87:
d1:10:d7:8d:09:5f:77:e6:bd:3f:cd:b4:1f:8d:d8:
4f:54:2d:eb:ad:34:63:3c:71:e8:00:a8:fb:bb:b6:
48:93:a5:bf:a6:00:ce:5f:04:86:05:9d:f1:46:03:
df:e5:fc:7a:f7:ec:87:2e:c5:ce:26:74:a3:80:7c:
ef:6c:29:d0:a5:ac:ad:bd:d0:85:ec:ef:69:5c:b5:
be:6d:a1:36:08:84:24:e3:30:41:13:ee:61:50:57:
af:95:e6:d9:ca:d5:31:49:e8:69:66:4e:d8:93:c0:
cb:ac:84:b2:a9:64:12:5d:67:2f:fd:da:a7:56:1d:
92:93:7a:82:15:d6:f7:68:64:ec:c0:6f:17:8e:0a:
0d:74:89:72:aa:02:6e:9f:bc:e1:99:87:78:b5:99:
a3:a3:56:1d:8c:bf:97:bd:9b:e4:cf:1d:27:51:41:
08:96:d4:b1:44:1f:c8:cd:b7:14:4a:f3:c0:c2:57:
53:65:8f:c3:a7:50:b7:77:de:95:b8:38:a5:7c:de:
14:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:02:B4:F7:3A:86:2B:7D:77:CA:A8:93:DB:A1:18:87:35:D7:1A:1D
X509v3 Authority Key Identifier:
keyid:03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:ae:ec:63:8a:74:0a:4a:9d:d7:6c:3b:fd:8c:f8:5d:c0:34:
d3:a9:21:12:21:07:32:03:b3:53:72:4e:9d:53:88:2f:8b:71:
ea:95:d8:46:95:31:15:03:34:f8:3f:9c:6b:91:ba:11:84:b8:
cd:64:ce:68:d3:1f:f0:59:74:9d:23:bb:90:2d:fe:9d:77:55:
3d:55:43:81:0a:78:25:f3:29:20:a5:ef:5e:88:28:ea:3c:4b:
35:b6:ec:45:38:4a:cd:07:04:50:cc:38:fd:35:28:5c:06:18:
03:44:b3:c2:3e:32:ab:ab:c9:8b:b5:b6:ee:e6:18:a7:56:99:
3e:6e:e0:70:dc:c6:d9:8c:e7:26:c7:7a:f8:de:a5:1d:a2:9d:
d5:a6:86:e8:1c:30:6a:a0:c8:8c:fd:0e:0e:33:0d:9f:70:58:
19:71:b7:d8:94:86:30:62:02:99:8f:8b:ca:d3:30:9f:ae:c7:
57:75:2f:83:36:ac:37:44:ab:f4:77:24:bc:34:3f:0c:6e:87:
6f:de:81:19:91:f0:48:14:89:3d:e8:a8:af:82:0e:97:85:6a:
51:aa:3f:46:5b:7d:f1:04:4e:af:72:3e:a9:47:aa:44:0b:65:
68:71:7e:1c:4c:89:7b:32:31:36:ba:6d:a0:6f:45:eb:2d:7a:
ea:b2:b5:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:52 2025 by rpki-client