Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/c8649d-2f00-4663-8e4e-e3c22d0f6207/1/aAImjB8WbJ31GjQgRbsTLw-WyC0.mft
File: aAImjB8WbJ31GjQgRbsTLw-WyC0.mft (raw, json)
Hash identifier: yA9Qi2Va5k41dTOVQrOKpkjilCxu3HTBwgkxuyZqpI0=
Subject key identifier: F4:6C:FB:87:8F:D0:53:DD:B7:AA:8B:AA:81:04:B3:7C:44:29:F2:76
Authority key identifier: 68:02:26:8C:1F:16:6C:9D:F5:1A:34:20:45:BB:13:2F:0F:96:C8:2D
Certificate issuer: /CN=6802268c1f166c9df51a342045bb132f0f96c82d
Certificate serial: 0199239F3D9AF71F4C8AABF9AA8D088074A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAImjB8WbJ31GjQgRbsTLw-WyC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/c8649d-2f00-4663-8e4e-e3c22d0f6207/1/aAImjB8WbJ31GjQgRbsTLw-WyC0.mft
Manifest number: 0BF4
Signing time: Sun 07 Sep 2025 10:01:02 +0000
Manifest this update: Sun 07 Sep 2025 10:01:02 +0000
Manifest next update: Mon 08 Sep 2025 10:01:02 +0000
Files and hashes: 1: aAImjB8WbJ31GjQgRbsTLw-WyC0.crl (hash: zfymIE23McEeSNt3qiyu+y4vYM3+eZ6YZHkH3Lfkf6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/c8649d-2f00-4663-8e4e-e3c22d0f6207/1/aAImjB8WbJ31GjQgRbsTLw-WyC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/c8649d-2f00-4663-8e4e-e3c22d0f6207/1/aAImjB8WbJ31GjQgRbsTLw-WyC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aAImjB8WbJ31GjQgRbsTLw-WyC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:3d:9a:f7:1f:4c:8a:ab:f9:aa:8d:08:80:74:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6802268c1f166c9df51a342045bb132f0f96c82d
Validity
Not Before: Sep 7 10:01:02 2025 GMT
Not After : Sep 8 10:01:02 2025 GMT
Subject: CN=f46cfb878fd053ddb7aa8baa8104b37c4429f276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:21:6c:ef:4d:20:0c:08:b9:7b:72:d0:7b:13:
fb:34:82:e1:a8:45:e6:4f:0e:2c:73:b8:62:f8:e9:
04:2b:cc:1e:e9:af:0f:30:a3:e7:91:49:32:6e:08:
c6:da:4c:72:07:91:2a:e4:f1:bf:d0:4b:e3:75:b2:
f8:e8:91:41:5f:94:ae:80:e8:f3:94:1c:f3:2a:fb:
57:da:63:b0:93:cc:88:77:37:06:86:9a:e8:bb:e9:
b0:29:78:56:7f:f7:13:72:ce:e7:d2:07:17:1d:6f:
ac:dd:6f:7b:0f:e9:b1:e9:01:0e:58:5b:8e:cb:2b:
89:c6:22:1d:4c:64:e2:6d:a6:ed:25:22:5c:db:7e:
91:4e:b5:65:f7:aa:2e:18:cc:dc:57:df:f2:f4:f0:
5f:61:95:66:71:82:6c:83:d4:b4:e4:47:e1:8d:91:
88:1b:28:d2:7f:c5:18:23:51:7d:c8:93:0e:7b:58:
80:46:72:66:37:b0:fd:fb:e5:fc:29:64:e2:43:d4:
af:c2:95:03:68:50:2e:1d:56:20:bd:16:ea:1a:9d:
77:a3:14:a2:46:7b:9c:51:6f:b5:4b:1b:61:5e:2c:
68:6a:3d:50:3d:48:34:1b:9a:3e:8a:18:c7:4e:55:
47:8b:5b:a2:f0:cf:fb:c6:31:37:5f:65:00:4f:60:
b6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:6C:FB:87:8F:D0:53:DD:B7:AA:8B:AA:81:04:B3:7C:44:29:F2:76
X509v3 Authority Key Identifier:
keyid:68:02:26:8C:1F:16:6C:9D:F5:1A:34:20:45:BB:13:2F:0F:96:C8:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAImjB8WbJ31GjQgRbsTLw-WyC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/c8649d-2f00-4663-8e4e-e3c22d0f6207/1/aAImjB8WbJ31GjQgRbsTLw-WyC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/c8649d-2f00-4663-8e4e-e3c22d0f6207/1/aAImjB8WbJ31GjQgRbsTLw-WyC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:ea:c3:0d:10:29:da:91:d8:81:f7:a3:50:75:7f:dd:9a:30:
cf:cf:ee:61:e7:67:15:b8:34:d5:6b:9a:5c:99:4d:46:1e:c0:
a2:da:73:fd:51:c9:3c:ba:ac:10:9c:43:d3:fd:93:b2:31:0e:
b2:50:e1:9c:e0:1a:c1:f7:b4:02:8b:81:47:30:09:c8:a4:25:
63:3c:6c:3e:91:45:2b:4b:42:98:55:d3:3d:a5:16:cb:46:14:
ae:63:6e:9e:71:b1:c5:df:2c:83:28:c8:2d:39:2c:ff:6f:8c:
87:18:2c:12:5e:ba:46:03:36:35:6b:54:2f:08:b1:ae:00:f7:
d3:5a:3f:f6:09:90:0d:d7:5f:7c:52:c7:9c:f7:28:91:6c:90:
e1:6c:46:9f:61:b4:ec:3a:5b:6f:e0:14:e8:02:66:fa:73:ae:
09:a3:1c:cf:91:2e:91:47:40:96:df:e6:84:c4:d3:62:5a:33:
00:00:3e:e9:5d:d1:ac:da:de:02:6e:83:f7:45:8d:09:a2:e7:
26:01:e1:2b:97:bf:76:59:48:0b:e9:11:10:f6:a0:8e:5c:36:
9e:5c:16:0b:9f:bc:07:df:9d:b8:a8:2e:02:6f:c5:1c:c6:f8:
df:ec:68:8f:1c:03:b2:17:fc:b0:ba:74:86:20:c4:fd:e1:28:
8e:a4:bd:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:36:23 2025 by rpki-client