Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft
File: AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft (raw, json)
Hash identifier: yiQY1rr7/EX+voXkBMKz2Wjl5nCHNIpqpIXFU08h1/g=
Subject key identifier: 83:2F:82:B8:57:91:0E:F6:16:AD:88:21:C4:83:CB:60:BA:6C:82:B8
Authority key identifier: 02:F5:46:89:04:A8:AA:7D:DB:5D:42:9E:A0:5E:8D:31:87:36:44:19
Certificate issuer: /CN=02f5468904a8aa7ddb5d429ea05e8d3187364419
Certificate serial: 0199228D067BC979AD2BB210480883F0F99E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvVGiQSoqn3bXUKeoF6NMYc2RBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft
Manifest number: 0E
Signing time: Sun 07 Sep 2025 05:01:31 +0000
Manifest this update: Sun 07 Sep 2025 05:01:31 +0000
Manifest next update: Mon 08 Sep 2025 05:01:31 +0000
Files and hashes: 1: AvVGiQSoqn3bXUKeoF6NMYc2RBk.crl (hash: ySm6c445Jxa8KWzLnfDxUolX/u/ZPaipd1a0a5HzEmc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AvVGiQSoqn3bXUKeoF6NMYc2RBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:06:7b:c9:79:ad:2b:b2:10:48:08:83:f0:f9:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02f5468904a8aa7ddb5d429ea05e8d3187364419
Validity
Not Before: Sep 7 05:01:31 2025 GMT
Not After : Sep 8 05:01:31 2025 GMT
Subject: CN=832f82b857910ef616ad8821c483cb60ba6c82b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:70:85:24:2a:b8:bc:96:08:9b:0e:7e:46:46:
02:e6:4f:2f:6c:f7:73:e9:5b:43:e8:52:ba:8e:6a:
c4:04:9a:c0:3d:57:37:f3:4c:b5:dd:82:70:7d:f4:
b4:7f:05:ca:a8:26:8a:9a:23:f3:c3:88:f7:39:e5:
e1:d2:4c:a2:52:01:4f:f0:39:48:29:ce:fa:62:20:
80:33:aa:ee:28:97:18:c9:06:06:ce:ab:25:02:52:
b5:22:f6:d2:61:51:75:f0:1e:f2:c1:10:85:cb:8f:
e5:12:98:73:f2:86:fe:10:cf:0b:a0:5a:b2:a8:57:
e1:40:35:d4:ba:e0:16:ec:98:d2:47:08:4d:12:3b:
87:7a:83:a1:64:a4:25:80:ca:d6:cc:4b:2a:66:d5:
f3:07:75:43:0e:c3:4a:2f:85:56:eb:57:72:e8:f5:
be:45:99:8c:0e:da:d6:42:da:89:a2:a1:07:c6:68:
c9:d2:1c:71:d6:a8:a0:f5:ef:a7:05:d1:a1:19:f3:
49:64:8e:7a:e8:29:b8:eb:7c:a9:28:19:42:55:50:
25:59:c4:54:f2:ee:c4:9f:27:56:0d:4c:c0:fe:19:
ce:a0:5a:6f:02:45:fd:54:05:0e:87:1a:99:e1:d6:
b4:02:8a:7b:d0:eb:e6:ef:69:b1:ae:68:33:3a:86:
15:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:2F:82:B8:57:91:0E:F6:16:AD:88:21:C4:83:CB:60:BA:6C:82:B8
X509v3 Authority Key Identifier:
keyid:02:F5:46:89:04:A8:AA:7D:DB:5D:42:9E:A0:5E:8D:31:87:36:44:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvVGiQSoqn3bXUKeoF6NMYc2RBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:54:4d:f2:50:f1:78:38:e8:d3:f7:54:37:45:83:2d:b1:b4:
44:aa:dc:da:fa:d5:6d:07:47:67:93:47:9d:ec:73:82:22:a1:
64:00:dd:75:7a:01:a1:ad:c0:e5:8a:29:d6:d5:a4:24:8d:ce:
06:12:78:a0:48:60:9e:7a:fd:42:ae:69:a7:1f:cc:12:8d:ab:
8e:4b:8c:a1:56:b7:19:f1:55:89:01:46:0e:dc:c3:02:86:e5:
69:78:f0:11:d7:82:36:da:d5:4b:c5:0b:3d:a6:3b:bc:ca:d6:
6a:2f:ec:d6:52:dc:6a:74:7c:bf:29:03:8d:c4:6c:fb:b8:fa:
0a:30:bd:88:21:8d:35:45:b9:bf:d5:5b:e4:0d:61:88:c0:7a:
22:f2:78:2c:bf:ee:9d:4c:29:37:b9:e9:7d:49:cc:dc:a9:be:
7a:3a:91:62:17:b2:b1:a2:5d:b8:5b:3a:0f:6d:34:91:46:30:
53:c2:4c:be:62:74:d4:83:93:7d:01:58:ec:a8:e5:73:5c:30:
f9:6c:2b:e2:38:70:09:53:2e:88:e4:02:c4:9f:7e:07:4e:a3:
66:73:42:68:a6:47:b5:6d:64:68:7f:39:9b:3d:2a:5c:03:eb:
9a:00:25:1a:a8:ca:be:b7:0c:b1:23:f9:d3:06:e7:2a:4e:19:
f0:aa:6f:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:18:43 2025 by rpki-client