Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
File: aweCDo1ADzwl3dC-G0bFTpVZYKE.mft (raw, json)
Hash identifier: G/kxNQli3L2kMl3tT2M5enjaQQHFD5KUgtEyMz6QXAA=
Subject key identifier: 0F:AF:E5:AE:36:08:6C:AB:95:20:46:DD:65:3C:4E:DB:CC:59:81:6D
Authority key identifier: 6B:07:82:0E:8D:40:0F:3C:25:DD:D0:BE:1B:46:C5:4E:95:59:60:A1
Certificate issuer: /CN=6b07820e8d400f3c25ddd0be1b46c54e955960a1
Certificate serial: 019916F630755D4FAF890089CD47264F3DE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aweCDo1ADzwl3dC-G0bFTpVZYKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
Manifest number: 0D85
Signing time: Thu 04 Sep 2025 23:00:56 +0000
Manifest this update: Thu 04 Sep 2025 23:00:56 +0000
Manifest next update: Fri 05 Sep 2025 23:00:56 +0000
Files and hashes: 1: aweCDo1ADzwl3dC-G0bFTpVZYKE.crl (hash: 7cOgYBH32hBzPJ/wFHNtNteFBG6sMpRcUhIw4LCG2/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aweCDo1ADzwl3dC-G0bFTpVZYKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:f6:30:75:5d:4f:af:89:00:89:cd:47:26:4f:3d:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b07820e8d400f3c25ddd0be1b46c54e955960a1
Validity
Not Before: Sep 4 23:00:56 2025 GMT
Not After : Sep 5 23:00:56 2025 GMT
Subject: CN=0fafe5ae36086cab952046dd653c4edbcc59816d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:90:2f:f9:9a:0d:b9:6a:89:b4:75:e4:05:09:
de:4e:c1:b7:6e:e5:b7:55:4a:d7:e0:21:07:d9:81:
38:5c:da:f1:6b:ea:8d:7b:d9:5d:5b:2d:53:37:85:
ed:8f:6e:29:13:3c:0e:71:ac:8f:4d:1d:33:bb:8b:
37:be:68:8e:4f:f8:41:80:f6:8f:a7:9a:1b:0a:d1:
6b:8c:fa:4b:fc:50:12:ae:f6:86:b2:4e:4a:e3:20:
2b:c5:e2:7f:3b:99:7b:3b:70:9f:9a:8d:73:5a:ea:
a0:e3:2b:0c:71:1e:c1:30:07:2b:4c:66:1c:6d:15:
93:99:4d:0a:bb:de:89:23:b2:79:6e:21:d8:49:53:
42:ed:dc:62:d9:26:01:59:5c:0d:d8:e0:db:52:e4:
27:1d:0b:05:46:73:44:cb:25:73:04:ed:05:42:77:
ed:fa:66:7d:8f:a4:ea:c2:f2:8c:27:1f:e9:b7:69:
8c:8c:b8:50:6f:00:c9:27:7a:aa:8f:c5:5c:28:b3:
b2:fb:d2:ba:1b:46:37:ce:ad:7f:18:25:0f:71:21:
c9:dc:1a:23:f1:b8:9b:49:15:6a:34:43:8e:44:a8:
66:1b:a1:21:15:d3:63:df:b9:1a:fc:1e:23:8d:65:
d3:35:69:68:a8:27:f9:a1:44:6b:f9:bf:83:d3:9d:
32:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:AF:E5:AE:36:08:6C:AB:95:20:46:DD:65:3C:4E:DB:CC:59:81:6D
X509v3 Authority Key Identifier:
keyid:6B:07:82:0E:8D:40:0F:3C:25:DD:D0:BE:1B:46:C5:4E:95:59:60:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aweCDo1ADzwl3dC-G0bFTpVZYKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:84:8b:42:b1:1b:9f:f4:4b:8d:5d:db:e8:69:ef:b8:7b:aa:
22:40:a1:cf:16:23:97:0f:23:74:c7:ab:c5:f0:49:de:79:82:
db:be:7e:a9:e9:3d:90:89:eb:43:ad:a9:07:ac:bb:72:d1:22:
56:16:13:e9:1d:40:e0:9a:c0:55:70:c4:63:5f:5c:6c:39:16:
f4:9e:33:f1:6f:c1:f7:a6:d7:b9:2a:b7:98:b6:00:6a:65:d1:
41:65:19:52:f6:73:9b:68:39:bf:b5:86:0d:ec:51:38:0c:3c:
eb:82:86:98:3f:2a:dc:53:b2:b6:04:b8:75:41:02:3c:c1:82:
e9:ba:ab:ce:52:13:d9:7b:a1:d4:25:6e:33:13:fc:8c:a8:4c:
ef:22:ba:d2:9c:f4:a6:b2:10:10:0e:5e:e4:e7:c4:1a:d7:26:
63:db:05:15:c8:1a:cf:05:f0:88:47:3b:01:2f:91:a8:5a:d6:
54:cf:17:55:5f:28:30:fb:c6:f5:b8:7e:37:c0:47:8f:7b:65:
d4:23:2f:11:d1:dd:82:2c:5e:04:c4:d5:2b:2d:10:b8:37:0b:
65:e6:f3:93:19:09:b5:d1:6e:21:ce:aa:ee:d4:6c:ea:db:17:
4f:12:09:67:e1:1c:02:c6:78:68:4c:94:ae:e6:b2:ae:f3:0f:
bb:c8:7b:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 05:52:42 2025 by rpki-client