Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.mft
File: aBFGMD9XUewN_C71R6qyR69OaB8.mft (raw, json)
Hash identifier: ALVwMzk63OnGDc7a4wZeCVkNPjzhtReNtju/Z1//qO8=
Subject key identifier: 91:66:EB:53:C9:CE:85:B7:44:82:2D:97:1B:4F:B6:70:9D:A5:50:4A
Authority key identifier: 68:11:46:30:3F:57:51:EC:0D:FC:2E:F5:47:AA:B2:47:AF:4E:68:1F
Certificate issuer: /CN=681146303f5751ec0dfc2ef547aab247af4e681f
Certificate serial: 019845894E9163664800E5B140516C63AD05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBFGMD9XUewN_C71R6qyR69OaB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.mft
Manifest number: 0CDF
Signing time: Sat 26 Jul 2025 07:01:23 +0000
Manifest this update: Sat 26 Jul 2025 07:01:23 +0000
Manifest next update: Sun 27 Jul 2025 07:01:23 +0000
Files and hashes: 1: aBFGMD9XUewN_C71R6qyR69OaB8.crl (hash: aut1ZN0hApjd7LIe58i+AH7djKcUSXPI9ZZl7hRmlCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aBFGMD9XUewN_C71R6qyR69OaB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:89:4e:91:63:66:48:00:e5:b1:40:51:6c:63:ad:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=681146303f5751ec0dfc2ef547aab247af4e681f
Validity
Not Before: Jul 26 07:01:23 2025 GMT
Not After : Jul 27 07:01:23 2025 GMT
Subject: CN=9166eb53c9ce85b744822d971b4fb6709da5504a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b9:b5:ac:fb:d1:24:df:b1:8f:21:5a:e1:92:
0c:bf:c8:a7:cd:66:0f:7d:49:b0:48:f7:3d:58:80:
99:56:45:d8:b0:71:b1:43:8d:d1:3c:ca:77:d6:9d:
c3:83:dd:04:61:18:71:f0:f0:be:be:19:f7:58:98:
c9:a7:38:11:77:47:2b:92:fb:6a:7e:d8:0c:c0:07:
ff:af:4b:d5:e0:ee:ea:58:b6:e5:9e:7e:92:ae:52:
66:f5:a0:79:9b:a7:86:3b:9b:59:ad:99:1e:67:19:
ba:58:7f:87:76:c7:21:72:0d:de:98:0f:8a:55:54:
55:3d:af:79:79:fb:2f:8c:5a:c7:eb:77:a5:39:e9:
e2:15:a6:d0:50:93:f7:35:9e:58:05:ca:d1:3d:a3:
2f:a0:b8:33:12:e7:41:b7:fe:7e:b7:2a:15:3a:99:
b5:58:0a:a2:a3:af:d3:8e:9b:8c:14:41:3d:5d:c1:
bb:80:6b:62:ae:f2:ff:e7:f0:c1:33:79:5a:22:70:
26:3c:38:5f:63:b5:be:81:d7:c4:a4:72:5e:19:71:
77:a7:bf:ef:ec:0d:0f:a3:6c:d4:b9:d7:e0:5d:86:
e0:8b:30:f9:f2:8f:0e:c6:8b:4a:83:aa:01:db:8e:
6a:f9:97:9f:a5:85:20:d4:ee:29:1b:6c:b0:ad:37:
28:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:66:EB:53:C9:CE:85:B7:44:82:2D:97:1B:4F:B6:70:9D:A5:50:4A
X509v3 Authority Key Identifier:
keyid:68:11:46:30:3F:57:51:EC:0D:FC:2E:F5:47:AA:B2:47:AF:4E:68:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBFGMD9XUewN_C71R6qyR69OaB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:29:74:ea:86:df:3d:f5:f8:5b:1b:71:b2:47:32:f2:07:20:
2d:3c:e1:f1:f3:51:15:35:ea:e3:b4:18:f8:20:16:28:57:5b:
8c:b3:6a:36:2c:cd:b2:ea:9b:a8:4a:30:fd:57:47:92:d5:38:
6f:9a:93:51:f1:57:84:3c:30:27:2e:9b:20:c2:25:3c:7b:58:
75:7b:3e:af:33:38:ab:9f:30:4a:b4:c2:be:27:52:44:5f:12:
00:1e:2d:2d:a4:69:1e:93:4a:6c:eb:29:5e:6a:8f:23:e9:34:
7c:59:de:c0:56:b0:d3:b7:7b:c3:12:be:00:c9:04:b1:a3:db:
6a:14:8f:e3:19:6f:9f:4d:09:ef:80:3f:73:9a:a4:3c:7c:6c:
1d:e2:02:c3:8c:a0:f3:d9:c6:d1:74:f6:6f:75:b2:55:5f:84:
3b:6d:03:e6:50:1e:fa:f3:2e:71:b2:2f:17:5a:80:fe:f1:08:
3b:fa:30:95:a9:fc:36:9f:0f:92:af:d8:8a:f3:27:e4:71:06:
fa:e5:39:9c:f5:49:4e:5f:7d:25:ae:55:87:f9:bc:bc:36:92:
03:74:0d:f3:de:14:02:9c:ee:21:ea:f6:17:54:5e:78:24:0d:
fd:96:4f:a4:a9:df:6d:1e:0a:3d:75:59:f1:3d:72:f4:0c:69:
ac:df:fe:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 11:57:13 2025 by rpki-client