Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: IwOQM3DnutY6tjawuYxmQ2GX6wR3E3c6VXe54FIq2iA=
Subject key identifier: 5A:38:4F:02:81:A0:6C:C2:AD:BE:8B:F7:0A:AD:53:10:8B:FB:9D:56
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 019953E691E334BA6A348943196C927A18E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 168A
Signing time: Tue 16 Sep 2025 19:00:43 +0000
Manifest this update: Tue 16 Sep 2025 19:00:43 +0000
Manifest next update: Wed 17 Sep 2025 19:00:43 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: dynfuVCi9eQU+/pyLINzkHnL9JWxf7HbzxloDzGOcXc=)
2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Sep 2025 18:48:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:53:e6:91:e3:34:ba:6a:34:89:43:19:6c:92:7a:18:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Sep 16 19:00:43 2025 GMT
Not After : Sep 17 19:00:43 2025 GMT
Subject: CN=5a384f0281a06cc2adbe8bf70aad53108bfb9d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:38:7f:38:39:3f:2a:21:d1:fc:95:04:13:5f:
3f:80:83:5e:c4:99:48:88:2c:a4:a4:6e:50:c1:2f:
34:c4:26:12:28:39:40:41:f5:1c:80:2a:51:b9:1a:
ce:35:00:47:6c:02:76:c1:5f:cf:05:85:0f:d2:d7:
29:84:59:6e:19:2c:25:c9:7b:4b:5a:95:ae:f7:b8:
10:e4:27:f7:be:ea:b7:b6:87:84:4b:c2:cf:1d:1f:
53:16:41:07:cd:65:ba:84:1d:d1:54:f5:6b:a4:6f:
72:63:ba:48:56:20:42:8e:78:9a:d4:90:c3:aa:bf:
2f:93:de:1d:15:45:99:b9:f5:f1:da:7a:ad:9e:08:
b4:85:f0:a6:94:e4:43:e2:a4:cc:fa:97:6c:67:de:
0e:84:01:42:5f:dc:1f:cb:c6:f4:d8:da:08:f3:1b:
d4:e5:24:c5:b8:3a:ec:6f:9e:21:8a:73:c6:f4:0a:
c7:55:ea:a9:e0:83:9c:f5:17:d9:58:d4:aa:13:f2:
67:ff:7b:0c:9f:a4:a0:ea:ab:40:82:71:ff:cf:50:
49:20:3c:c8:1c:3e:db:b3:ad:51:e8:15:7f:12:42:
0b:6d:8b:7d:f6:d6:0b:41:77:76:bd:09:16:fb:c7:
27:d6:ca:06:99:8c:4c:d1:f7:cb:9c:6e:a2:93:d4:
7a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:38:4F:02:81:A0:6C:C2:AD:BE:8B:F7:0A:AD:53:10:8B:FB:9D:56
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:60:46:63:45:92:04:8b:24:0e:31:93:c2:45:4c:35:ec:f3:
8e:86:2e:3e:20:79:f9:19:b3:3e:16:3b:57:cb:fc:71:2b:b9:
9f:08:e4:b2:a8:6c:9a:56:81:f0:e9:7b:1b:5f:c0:6d:c0:0d:
ee:dd:fb:d8:c7:ab:ec:12:04:3d:94:df:29:65:21:07:cb:1f:
a1:97:87:0e:eb:ec:19:16:96:53:f1:80:10:03:14:72:42:7e:
1f:b0:33:22:38:c6:dd:88:a3:52:40:58:5a:b1:fd:d8:61:81:
82:b5:48:95:62:67:ac:02:9c:f9:aa:bd:63:b7:80:7f:71:75:
df:e7:96:89:a3:6f:27:5b:e5:5a:74:8b:7a:6b:42:e3:c1:db:
90:3e:06:5e:99:0d:0e:1b:ea:ea:ed:d7:94:6c:20:72:df:e2:
fd:8a:c5:1b:21:6e:8e:26:05:ab:bb:cb:b5:1b:cd:23:12:37:
6f:b8:03:cf:c3:0b:60:83:50:f4:ab:33:88:aa:44:47:09:36:
0a:57:11:da:43:33:99:52:dd:30:0e:e0:a0:5f:46:d6:fb:36:
46:2e:4a:25:4d:c3:41:84:50:f6:3a:ba:bf:03:28:4c:0d:d4:
a6:3a:fe:55:53:41:ae:78:f4:ae:fc:d6:41:2f:ab:01:4e:b3:
e0:7d:65:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 23:33:58 2025 by rpki-client