Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft
File: aPQ7W7zEligG6pMi7Ckum2bdzMU.mft (raw, json)
Hash identifier: DzuN3vCZHNP7nbJBLGiqorK9c8CGKAOT6iV4np8No9Y=
Subject key identifier: 01:D9:7A:4A:29:99:2E:A0:A2:7F:E8:16:E0:7C:3A:99:BF:87:83:27
Authority key identifier: 68:F4:3B:5B:BC:C4:96:28:06:EA:93:22:EC:29:2E:9B:66:DD:CC:C5
Certificate issuer: /CN=68f43b5bbcc4962806ea9322ec292e9b66ddccc5
Certificate serial: 0198296CF30A2699B03A24613990232F89A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPQ7W7zEligG6pMi7Ckum2bdzMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft
Manifest number: 22
Signing time: Sun 20 Jul 2025 20:01:02 +0000
Manifest this update: Sun 20 Jul 2025 20:01:02 +0000
Manifest next update: Mon 21 Jul 2025 20:01:02 +0000
Files and hashes: 1: aPQ7W7zEligG6pMi7Ckum2bdzMU.crl (hash: qaXRhoYxu8oa1BX6ktPonrc37UYngeOhIRirxLN71AY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPQ7W7zEligG6pMi7Ckum2bdzMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 16:21:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:29:6c:f3:0a:26:99:b0:3a:24:61:39:90:23:2f:89:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f43b5bbcc4962806ea9322ec292e9b66ddccc5
Validity
Not Before: Jul 20 20:01:02 2025 GMT
Not After : Jul 21 20:01:02 2025 GMT
Subject: CN=01d97a4a29992ea0a27fe816e07c3a99bf878327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:01:56:f8:d3:15:d4:58:2e:b9:cc:34:41:c7:
19:1a:16:f7:5c:45:c4:9d:7a:0f:a7:51:dc:66:b3:
f9:b4:59:e7:da:85:de:36:6d:01:80:69:ac:9d:7e:
11:15:d4:44:36:33:e4:36:fd:29:d2:e1:ae:34:20:
e1:18:1c:ec:24:86:14:4c:6e:d3:81:37:52:c6:b1:
ea:6d:61:f5:a2:a8:64:83:e3:b4:5c:98:c5:c3:ac:
9d:12:8b:74:6d:d0:29:00:f9:53:b5:33:ac:be:b4:
2c:fa:cd:da:aa:60:2b:c1:4e:01:19:5d:87:12:26:
ea:74:fd:03:03:89:83:c5:32:f4:60:e9:33:16:1d:
42:af:ee:69:7b:83:fa:e9:38:00:8b:05:9a:f0:c8:
e8:74:ce:04:7b:6b:10:cb:21:bf:57:67:c1:fd:92:
d8:8d:eb:fe:93:92:b8:f9:ef:64:1a:e4:54:c0:d2:
c5:aa:12:6e:0b:7e:5f:30:96:d3:fd:df:6d:ad:bd:
04:1a:df:5b:d2:cf:49:9c:e9:56:7e:88:e4:93:a7:
37:6e:1d:31:4b:89:4e:a6:1b:24:51:b0:b2:ce:78:
4c:34:69:de:82:40:09:3d:58:f1:bc:99:29:a3:b9:
ca:b9:d0:46:75:d7:e9:6d:4e:0a:8f:cc:bd:38:c5:
82:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D9:7A:4A:29:99:2E:A0:A2:7F:E8:16:E0:7C:3A:99:BF:87:83:27
X509v3 Authority Key Identifier:
keyid:68:F4:3B:5B:BC:C4:96:28:06:EA:93:22:EC:29:2E:9B:66:DD:CC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPQ7W7zEligG6pMi7Ckum2bdzMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:c7:72:4f:be:2d:ad:a2:c7:85:7b:9e:a8:54:6d:da:41:9e:
e8:51:57:1e:23:7b:fe:d6:c5:1a:8c:fc:5e:3b:13:91:71:1a:
50:e4:90:77:61:e2:53:8a:a1:af:7c:4b:5e:57:27:5a:cb:e8:
fc:11:67:9f:83:e4:0d:3b:f3:1c:8d:99:d6:02:22:fe:4e:e9:
9d:4e:77:c3:f6:14:1d:fb:bb:71:b4:b7:c2:d0:6f:c5:6c:99:
0d:ba:c3:76:8e:68:41:58:78:73:b4:ab:06:1b:b8:d0:8d:b1:
b9:b3:29:0f:28:24:9e:42:8d:0c:e3:28:9a:56:17:01:0f:bc:
73:2c:3b:7b:49:e4:08:8a:b6:04:c8:bd:a2:c1:18:ab:68:b4:
05:2b:b2:ef:2c:3d:92:e2:4b:f7:05:34:37:d6:47:52:a1:76:
4c:c7:dd:14:0d:74:75:f5:04:54:12:10:df:43:37:63:8c:9c:
a6:18:f3:c7:ce:8c:b3:e3:0c:69:bb:03:9e:6c:bd:6c:60:5c:
b4:8a:bd:04:85:e2:38:98:d0:2b:bf:63:c1:52:7a:df:ce:67:
a7:0a:dc:b8:04:82:1c:29:f2:59:fb:ef:8f:e5:c8:27:36:af:
f4:32:ea:b2:6d:ab:59:ec:5c:58:4d:51:be:89:34:c4:ea:8a:
d2:16:aa:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 00:02:38 2025 by rpki-client