Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
File: AJJn8-O54eu5eZaQgLDfqyTDYBo.mft (raw, json)
Hash identifier: pSyuY3MF8jkcdhwvQLMGZ8O1CAtVNZfDBL/Rg+lQaD8=
Subject key identifier: 16:1E:4D:FC:7B:31:2D:15:DF:EC:12:7F:62:14:62:32:18:B8:7D:7B
Authority key identifier: 00:92:67:F3:E3:B9:E1:EB:B9:79:96:90:80:B0:DF:AB:24:C3:60:1A
Certificate issuer: /CN=009267f3e3b9e1ebb979969080b0dfab24c3601a
Certificate serial: 019A5187B608EF46C7648ADDE01D1AE19D7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
Manifest number: 02E1
Signing time: Wed 05 Nov 2025 01:00:39 +0000
Manifest this update: Wed 05 Nov 2025 01:00:39 +0000
Manifest next update: Thu 06 Nov 2025 01:00:39 +0000
Files and hashes: 1: AJJn8-O54eu5eZaQgLDfqyTDYBo.crl (hash: zW6bfVce64U47kBVa52tJpZIls5uvGH02z05cG5T12Q=)
2: jt-iRSNGZBGhABnXoxTRm_rAskI.roa (hash: l7KIq5bWvwsgCT6cMEiSjjaqu0hDSyke8GcgCL2LIpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 01:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:b6:08:ef:46:c7:64:8a:dd:e0:1d:1a:e1:9d:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=009267f3e3b9e1ebb979969080b0dfab24c3601a
Validity
Not Before: Nov 5 01:00:39 2025 GMT
Not After : Nov 6 01:00:39 2025 GMT
Subject: CN=161e4dfc7b312d15dfec127f6214623218b87d7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:67:e5:3f:ce:43:84:c6:18:84:ff:25:58:c3:
9c:c2:07:81:aa:34:91:c5:fc:cb:78:d6:4b:f8:e4:
f1:aa:94:03:a9:e4:0f:10:72:22:13:87:45:c0:15:
c0:54:87:ac:69:c8:e2:89:ab:b5:d4:62:38:10:7e:
d3:f9:50:83:12:ba:02:54:c6:6b:83:62:aa:b7:05:
df:21:1a:63:56:ff:e0:b9:d3:b5:58:5c:0b:80:e5:
2b:7e:33:17:6f:b0:f4:e1:42:56:8d:1d:c2:db:7f:
27:23:a6:f4:54:aa:f1:12:da:71:5e:77:83:8d:7e:
8d:7b:5c:c8:4c:cf:13:f9:0a:7e:8e:ba:4a:98:a1:
82:d2:98:12:b8:56:21:ac:fa:13:5a:6c:a4:01:0b:
68:a6:35:a0:18:8f:71:ec:4f:af:a4:b3:3c:8a:84:
10:1f:18:9c:0b:0a:7e:9a:98:1c:53:1d:49:a4:dc:
c3:a1:45:23:9c:89:a1:69:30:2d:60:20:27:d9:3b:
7a:59:e7:25:4a:2f:45:ee:54:72:5d:bb:9d:f0:d7:
9c:de:d6:b9:eb:11:a5:b6:89:8c:d5:03:02:43:37:
cb:70:64:20:8b:85:1e:89:d5:a4:d0:d3:82:28:5e:
2b:c0:6c:e2:c0:25:10:03:8a:aa:2b:e4:bb:78:57:
1e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:1E:4D:FC:7B:31:2D:15:DF:EC:12:7F:62:14:62:32:18:B8:7D:7B
X509v3 Authority Key Identifier:
keyid:00:92:67:F3:E3:B9:E1:EB:B9:79:96:90:80:B0:DF:AB:24:C3:60:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:7a:0f:5a:97:b3:23:f4:c6:d5:b9:d1:3d:8b:93:bc:96:c8:
6e:17:f2:6e:87:e5:c0:64:dc:fd:4d:f9:eb:59:4d:fa:00:0d:
3b:27:8c:1b:e1:f3:b6:5d:f1:8a:38:c8:bc:21:b5:46:a7:1f:
8b:d4:c6:9c:09:1e:11:d2:73:c1:99:cf:a0:98:92:05:1a:66:
a7:0f:b5:fd:f2:83:6f:df:45:22:8c:6a:b1:bd:3e:11:d9:a7:
8d:fa:72:36:7f:00:5c:01:10:1e:5d:56:07:97:3d:b8:c9:60:
4e:f6:76:9b:14:cd:70:52:97:78:d9:d0:6b:23:32:14:99:ad:
73:dc:47:98:82:ee:5a:e3:9f:00:98:83:41:b2:2e:d8:25:ac:
47:38:ab:07:53:5e:9c:f5:03:b2:22:72:ff:a7:c6:c6:98:85:
55:76:d6:df:1e:c6:72:ac:36:5e:94:f9:c0:0f:76:96:57:42:
13:3f:e6:1b:68:2f:bf:e4:dd:a3:23:88:23:ca:7f:8f:3d:78:
4b:dd:63:97:50:0b:ba:3b:91:89:6e:fb:a6:f1:a6:0d:36:f4:
9f:ce:6c:3e:9d:23:23:07:ba:67:f6:e2:4e:fe:3c:db:1b:6c:
0e:c0:0f:01:b4:5f:03:5b:ca:bc:9d:11:93:be:14:75:66:24:
33:38:ad:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:53:21 2025 by rpki-client