Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: up2hA0xQVJCiWtlCSSD+wk/mS4GbmDE/JMrgjLqhNko=
Subject key identifier: 8E:90:9A:F3:5B:44:1C:52:12:86:EF:91:07:3F:C0:3A:43:29:58:60
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 0198511F592562E3E316D11D765B72788352
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 1604
Signing time: Mon 28 Jul 2025 13:01:05 +0000
Manifest this update: Mon 28 Jul 2025 13:01:05 +0000
Manifest next update: Tue 29 Jul 2025 13:01:05 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: 9UYEEiH8PvoKVEjCZd/91V3t5VLmuL/eBLd+zIQkOlM=)
2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 13:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:51:1f:59:25:62:e3:e3:16:d1:1d:76:5b:72:78:83:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Jul 28 13:01:05 2025 GMT
Not After : Jul 29 13:01:05 2025 GMT
Subject: CN=8e909af35b441c521286ef91073fc03a43295860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9b:ad:81:81:97:51:5e:ae:47:87:fe:f5:29:
c7:75:1d:e7:c6:77:2c:27:e8:13:ae:e3:cd:e8:ac:
20:45:58:5b:24:72:b3:f1:3b:b0:76:64:ad:cd:77:
34:a9:27:d9:3d:3d:c6:c4:0b:e6:c2:44:ba:d6:ba:
81:a1:41:24:a9:1e:af:55:8c:43:a4:00:11:d4:0a:
36:0f:58:96:a3:d3:64:f4:e2:04:31:5e:a3:8b:d9:
27:41:8b:c8:c8:2d:b7:b3:0d:87:92:b6:1f:45:6f:
04:4f:61:eb:e8:d2:a8:a9:dd:7c:9d:cc:87:c5:b5:
c6:2d:21:c7:11:97:a9:62:f9:b1:02:b2:3f:f5:e1:
9b:d8:f1:a0:f5:36:b4:0c:6a:5a:31:71:ec:02:2a:
c1:90:1a:f6:85:8d:12:aa:14:45:f4:fc:71:69:48:
55:3b:31:9e:d7:9d:58:7d:c1:7c:d9:8c:b0:05:01:
60:0a:fc:b6:86:0d:ee:d8:b3:5f:28:35:fd:f7:68:
82:e5:01:35:df:28:63:79:76:4f:97:4f:50:aa:06:
f8:d4:fa:8d:a4:5b:62:43:6c:dd:a4:ee:dd:70:93:
c9:00:c9:5a:1f:ee:77:a7:82:9a:ca:ca:a1:11:3c:
5e:c3:04:7c:00:36:49:a2:e0:f7:77:03:8e:23:bd:
9e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:90:9A:F3:5B:44:1C:52:12:86:EF:91:07:3F:C0:3A:43:29:58:60
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:22:1b:40:0f:ab:ae:fa:cd:ce:24:93:92:6d:6d:cc:55:89:
54:d7:2e:49:ae:92:78:c3:e1:6e:1c:5f:9c:e6:13:f6:4d:00:
44:17:e8:27:3c:99:e3:f4:82:db:04:65:15:31:c1:f7:cf:79:
36:52:28:7e:09:27:72:24:43:90:51:ac:2d:94:1b:33:1f:17:
13:c3:74:e8:c9:0b:68:c4:7e:cc:e4:ce:ca:a9:64:5a:7b:d6:
7e:a2:e6:65:9e:00:f2:c3:50:2f:c5:21:30:a7:28:e5:a0:26:
aa:de:6e:59:df:cb:d3:e5:00:e9:36:c2:15:8c:2c:a6:a0:30:
5f:b5:fd:43:bf:6d:91:fb:4e:75:fa:14:10:3e:bf:2a:40:b1:
00:31:10:47:ff:1d:88:b7:81:a6:6b:0e:a8:c1:f3:13:54:d7:
25:d1:35:18:b4:0b:88:95:8c:47:ac:19:ba:21:f8:5a:f0:d0:
1c:96:5d:82:34:97:59:4e:e6:09:8c:6c:40:6c:4c:56:ae:bf:
ea:be:e0:58:ce:4c:00:96:c8:27:86:d8:fe:ab:43:13:5a:9b:
0e:2c:eb:9b:54:3e:62:fd:21:f7:37:08:74:00:df:e8:68:51:
10:d8:24:20:ba:9f:a7:7d:75:8b:93:cd:2a:4f:b5:3a:d0:33:
f8:ef:a3:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 28 22:23:21 2025 by rpki-client