Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2f5269-d433-47ed-bf1b-ab6fc4e0f1e0/1/aG1vVpUAwlBwthJPG4b2CVJnepM.mft
File: aG1vVpUAwlBwthJPG4b2CVJnepM.mft (raw, json)
Hash identifier: ctpQgyGf2EZNGENXKXgjHVwYFuK9tYC3eoTCVe71Jvw=
Subject key identifier: DD:FC:C3:A1:2E:22:D9:F3:C1:DE:CB:99:51:FE:F5:99:D9:AD:16:4E
Authority key identifier: 68:6D:6F:56:95:00:C2:50:70:B6:12:4F:1B:86:F6:09:52:67:7A:93
Certificate issuer: /CN=686d6f569500c25070b6124f1b86f60952677a93
Certificate serial: 0198511F672473333A5404DF0D125F22155E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aG1vVpUAwlBwthJPG4b2CVJnepM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2f5269-d433-47ed-bf1b-ab6fc4e0f1e0/1/aG1vVpUAwlBwthJPG4b2CVJnepM.mft
Manifest number: 09A6
Signing time: Mon 28 Jul 2025 13:01:09 +0000
Manifest this update: Mon 28 Jul 2025 13:01:09 +0000
Manifest next update: Tue 29 Jul 2025 13:01:09 +0000
Files and hashes: 1: aG1vVpUAwlBwthJPG4b2CVJnepM.crl (hash: kzPMmtcDwNbkNv7JHBtRqFBYmr9IJEl/bGnsbCEYtz0=)
2: fUaeEEckRfBNE0XG7eTK1gjPW_w.roa (hash: sw5+wxsLZVOQhkR/KheuEdoMzOUAkFrmAKd0BU+FbcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2f5269-d433-47ed-bf1b-ab6fc4e0f1e0/1/aG1vVpUAwlBwthJPG4b2CVJnepM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2f5269-d433-47ed-bf1b-ab6fc4e0f1e0/1/aG1vVpUAwlBwthJPG4b2CVJnepM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aG1vVpUAwlBwthJPG4b2CVJnepM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 13:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:51:1f:67:24:73:33:3a:54:04:df:0d:12:5f:22:15:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=686d6f569500c25070b6124f1b86f60952677a93
Validity
Not Before: Jul 28 13:01:09 2025 GMT
Not After : Jul 29 13:01:09 2025 GMT
Subject: CN=ddfcc3a12e22d9f3c1decb9951fef599d9ad164e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d5:88:63:61:7e:c3:6e:d0:b0:25:ba:5c:a4:
fd:6f:03:e8:c3:e5:38:0b:74:15:8c:19:e2:51:c5:
69:96:6d:e9:51:3e:46:6f:1c:f3:3b:8b:55:b3:11:
58:f9:5f:41:8b:ae:8a:66:e1:c4:45:ec:d7:2f:6d:
68:55:71:a3:22:41:78:32:b9:aa:41:19:79:66:86:
36:1e:f5:b3:a6:a1:ec:59:2c:a1:3c:c8:35:20:d3:
61:4c:c3:66:c0:6f:cb:d0:a8:6c:3f:d3:33:42:3b:
11:dc:72:17:26:25:8a:c3:de:83:8b:f3:56:c8:7f:
cb:d4:54:c0:86:bd:0b:ec:22:76:f5:fb:cc:10:4d:
1e:0e:c2:34:dd:d5:b8:69:5f:d6:1c:8c:ac:77:0c:
aa:b4:a6:f6:1c:68:39:85:aa:3c:f7:dd:e7:ba:cd:
a8:6e:24:f2:ac:ad:9c:e5:a9:75:88:8b:b7:61:a3:
83:75:a4:ed:3a:35:2a:f9:d5:e1:22:5b:ee:00:4c:
31:05:7a:4f:96:96:7e:e4:f2:4a:68:cc:ea:77:80:
d0:c7:f2:4c:59:1b:bb:45:d5:95:0d:f5:a4:44:de:
cb:63:ed:24:80:1a:e3:6e:c2:dc:d7:54:dc:ac:ef:
8a:79:41:36:dd:5a:6e:16:95:fe:aa:6d:cc:a7:02:
58:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:FC:C3:A1:2E:22:D9:F3:C1:DE:CB:99:51:FE:F5:99:D9:AD:16:4E
X509v3 Authority Key Identifier:
keyid:68:6D:6F:56:95:00:C2:50:70:B6:12:4F:1B:86:F6:09:52:67:7A:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aG1vVpUAwlBwthJPG4b2CVJnepM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2f5269-d433-47ed-bf1b-ab6fc4e0f1e0/1/aG1vVpUAwlBwthJPG4b2CVJnepM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2f5269-d433-47ed-bf1b-ab6fc4e0f1e0/1/aG1vVpUAwlBwthJPG4b2CVJnepM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:f6:21:8e:f6:62:8c:74:9b:b3:93:7b:2a:ea:93:ea:da:71:
37:8c:c0:90:56:ef:d5:fd:f4:69:97:ad:b6:85:60:1b:23:22:
2d:02:fa:59:9f:25:3d:90:fa:40:e3:22:61:0f:30:44:77:26:
38:5b:57:e1:40:e6:55:a8:0f:3d:c8:ba:bc:72:de:d3:15:43:
94:6c:5c:a7:06:64:90:9c:92:9a:a1:4e:50:ba:b1:a8:c9:63:
dd:06:93:a1:19:34:e3:12:3b:d6:f0:06:08:05:ad:cd:37:b0:
d6:d7:5c:e5:ca:2a:c7:a4:11:06:f6:ee:de:25:9b:e7:61:81:
6e:19:93:14:7e:bc:2f:95:3a:97:39:19:f7:53:3a:7f:2f:72:
6c:eb:4e:cb:6f:c8:c3:25:ec:f2:34:e0:2a:31:ec:f6:58:ef:
e6:0a:bf:62:d6:47:3e:2d:6c:38:15:4d:ea:db:32:9b:9f:25:
79:ea:af:5a:27:6d:0a:cc:dc:e7:88:41:b9:97:29:08:be:61:
ed:71:13:d5:05:ba:26:49:d9:2f:11:d4:e5:2b:73:61:a6:7c:
00:e5:0e:4d:6c:2c:0d:35:0b:37:3d:14:2a:3d:d3:71:10:f7:
44:a0:e5:58:52:6e:33:2d:69:7b:ab:0e:43:71:9b:95:00:97:
48:8a:c7:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 28 23:21:36 2025 by rpki-client