Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
File: aPw7CfVvin8ea-PJTw8IikKiy1s.mft (raw, json)
Hash identifier: L2svQy1xtzeplYhV1V8IjRYISIZKv+Wl2SZmF4xUL44=
Subject key identifier: 8A:D8:46:98:01:3D:4B:F6:5E:52:7E:DF:29:35:B8:48:C8:F0:A3:5F
Authority key identifier: 68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B
Certificate issuer: /CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b
Certificate serial: 0199228C6A2D0C84677A46268746920A9DF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
Manifest number: 082F
Signing time: Sun 07 Sep 2025 05:00:51 +0000
Manifest this update: Sun 07 Sep 2025 05:00:51 +0000
Manifest next update: Mon 08 Sep 2025 05:00:51 +0000
Files and hashes: 1: aPw7CfVvin8ea-PJTw8IikKiy1s.crl (hash: HDGcKZ5dvvdf8/BpzK1C4rpoxO6VKNIadPVI7/kXjuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:6a:2d:0c:84:67:7a:46:26:87:46:92:0a:9d:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b
Validity
Not Before: Sep 7 05:00:51 2025 GMT
Not After : Sep 8 05:00:51 2025 GMT
Subject: CN=8ad84698013d4bf65e527edf2935b848c8f0a35f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:96:c8:f3:98:43:a5:fa:f6:fd:8d:02:89:b2:
79:15:45:39:e3:a2:c9:25:41:96:9c:f1:14:1c:33:
60:a7:e4:8a:57:43:50:d5:3b:4e:47:51:5c:2e:f1:
eb:7b:a6:62:b9:23:b5:63:8f:73:75:52:9e:9f:61:
61:40:ec:ee:e7:6e:9f:cc:e2:a1:c1:77:a6:0c:45:
fa:05:45:a6:24:8a:8d:84:d9:69:68:5d:db:0a:7a:
5e:7f:bc:b0:fa:61:cd:1d:a7:8b:89:f8:2e:70:4e:
54:89:73:ef:a2:77:bc:a2:b8:5d:d0:96:c3:77:21:
dc:3f:21:eb:3f:f2:59:4d:f2:92:1f:2b:7d:92:a0:
30:46:2d:da:e9:09:e3:e0:ed:59:80:4e:ff:b9:69:
88:24:34:4b:02:68:f8:ec:89:fc:33:d1:44:bc:6c:
ee:c6:f6:51:f2:f0:1b:33:28:44:28:6d:fe:f4:52:
8f:fc:c1:94:dc:95:28:d3:7c:c1:ca:f1:e4:1b:5c:
19:a5:4a:87:d8:95:5c:e3:b7:b5:32:8f:80:89:5c:
b1:48:7b:6d:63:4b:66:77:3b:2c:68:fb:a6:b0:ef:
a4:5b:1b:16:13:66:7c:0f:da:d5:7b:13:1f:03:f4:
8d:9c:df:de:83:75:2f:14:aa:a8:b7:2f:55:96:00:
59:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D8:46:98:01:3D:4B:F6:5E:52:7E:DF:29:35:B8:48:C8:F0:A3:5F
X509v3 Authority Key Identifier:
keyid:68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:1f:ea:ee:b0:2c:51:8c:5b:53:44:8a:a8:c5:7e:81:ee:6b:
50:31:5e:a7:a2:9d:3e:af:47:d4:d5:8b:ac:2b:19:24:de:28:
64:7c:0d:6c:2a:94:54:db:35:d9:45:80:43:ce:b9:da:df:aa:
8f:c0:9d:6f:0f:67:75:81:06:81:ff:05:0c:59:74:4e:c3:49:
7e:5c:7a:13:88:0a:30:dc:78:1f:0c:b3:b5:91:6e:1a:80:13:
90:26:30:b5:03:58:af:4a:6c:15:85:52:bc:a9:18:06:39:46:
a6:8e:3e:8f:bb:6d:58:7a:b4:4f:7a:99:4b:1d:24:2c:55:a7:
64:b5:e3:03:41:48:a9:21:03:c9:fb:20:93:e9:11:d8:9d:b5:
21:79:a7:02:29:90:61:25:00:d2:98:88:1d:cd:40:0f:00:6a:
10:ed:a2:85:53:fc:c3:60:aa:87:67:f4:18:34:76:d4:99:2d:
6b:a6:07:25:d5:83:45:1d:e5:e5:fd:0f:2e:57:f1:09:e9:f7:
b3:d2:90:a3:b7:41:68:ca:76:38:b2:68:87:e7:dc:35:56:5e:
17:fa:2b:7a:01:24:99:b0:76:1a:82:03:c2:08:78:e5:07:56:
d5:40:35:62:4d:4a:64:24:de:f1:dc:b0:74:9c:0f:5a:00:9f:
cf:28:aa:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:55:30 2025 by rpki-client