Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json)
Hash identifier: HEZO0n4OtF5/gsgEY0mQg4BDAlU4Uy7pzzxS+IwTHC0=
Subject key identifier: 21:D9:A4:A6:7E:70:DD:57:66:C2:64:39:4F:61:9A:72:CC:95:11:C9
Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69
Certificate serial: 01992330F4048BDACE15EDD3EACC789F98A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
Manifest number: 06AF
Signing time: Sun 07 Sep 2025 08:00:34 +0000
Manifest this update: Sun 07 Sep 2025 08:00:34 +0000
Manifest next update: Mon 08 Sep 2025 08:00:34 +0000
Files and hashes: 1: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: PF1KQx/3II46NkgVEy6CRKNfhrfTk1Y9Uav9cQrG0Oc=)
2: hnTM8e9DDp88O_jCAHz8InVW_vE.roa (hash: 8skhoEZiI2jfYQ4DDQgvqEaBRoMspiQzmuxF61YcMEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:f4:04:8b:da:ce:15:ed:d3:ea:cc:78:9f:98:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69
Validity
Not Before: Sep 7 08:00:34 2025 GMT
Not After : Sep 8 08:00:34 2025 GMT
Subject: CN=21d9a4a67e70dd5766c264394f619a72cc9511c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:59:3b:48:ae:bd:0d:e2:b7:14:fd:e6:18:0b:
4b:14:34:56:70:6a:c9:d3:c0:61:21:1e:a8:4c:53:
da:6e:36:1c:8c:97:30:37:01:b8:94:06:cd:99:9a:
8e:de:89:cd:ed:e6:d6:4f:ef:3b:e8:94:8f:0a:06:
07:80:5c:cd:6c:89:cd:da:7d:73:2d:d9:dc:fe:b8:
fc:92:cd:86:1f:16:a2:48:1f:75:cb:34:b2:ec:46:
61:1e:8e:26:65:d2:cf:77:af:61:17:cc:73:26:c8:
8f:ac:d1:44:c2:25:b0:93:96:7d:38:fd:cd:0c:96:
c1:20:16:b9:cb:85:3a:4b:81:df:35:18:6c:e0:fa:
3b:cc:26:34:b4:7d:50:a7:a6:f5:43:58:89:7b:22:
62:76:3d:be:30:09:21:90:4f:8d:dc:cc:1b:95:56:
28:1b:08:bb:b1:c8:60:4c:b4:32:37:e6:de:e3:de:
9f:24:5f:74:86:eb:37:0c:73:e3:e0:ca:5f:db:ff:
47:d0:27:7f:fc:86:2f:fe:08:56:81:2b:40:fe:b3:
49:eb:4f:23:35:7c:7e:8d:04:38:77:04:f3:0e:96:
c6:28:3d:31:6a:16:62:3a:cd:ee:cd:b5:35:01:ad:
69:18:20:6b:c7:f4:81:97:e1:f7:7b:83:79:40:e2:
4d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:D9:A4:A6:7E:70:DD:57:66:C2:64:39:4F:61:9A:72:CC:95:11:C9
X509v3 Authority Key Identifier:
keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:4c:9c:14:fe:fc:88:d0:1b:40:f9:05:e4:88:11:5b:a3:c8:
73:33:4f:24:9c:44:7b:71:cb:b9:0f:b3:b5:76:ad:d1:49:24:
4a:64:b5:ff:2a:d3:3a:ea:ea:e8:89:e9:72:3e:dc:4c:96:73:
57:63:8d:52:c6:b6:85:40:bf:89:21:f0:21:3e:9f:0c:83:4a:
21:79:08:0d:65:96:c6:79:0a:d1:2b:5d:b2:b0:e5:d4:1f:18:
2a:5c:1c:8c:62:d8:14:7d:16:c8:d5:c0:ff:db:97:39:49:0b:
f3:f4:3d:d0:31:61:b3:bb:00:f7:d3:92:f2:70:ff:40:8e:9a:
d4:6a:0c:4c:b7:8f:10:59:b3:4b:4b:cb:ae:eb:db:aa:e6:8b:
a7:41:80:7a:29:46:ae:5a:11:ff:2f:df:2f:fc:60:93:51:e7:
4d:0d:1b:62:71:71:93:46:6d:22:8d:4a:23:09:39:a5:d4:9b:
57:ab:74:45:cf:a8:93:da:68:f7:a3:29:ab:f6:7a:e7:14:48:
b2:76:78:77:ff:53:4b:26:4d:31:d8:e3:16:9f:a4:ca:28:18:
c6:79:03:73:8e:26:bd:f2:2a:cb:0b:c3:3f:5f:f2:eb:fe:c9:
5d:2e:1c:a5:cf:e2:82:58:db:ae:8a:78:4f:c4:6b:3b:4e:f6:
28:f4:02:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:16:07 2025 by rpki-client