Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
File: 1AjPCbarAFupM7KnpKbSfqa7cso.mft (raw, json)
Hash identifier: uk6huHRyMQ6NrjEW6AD81+ejbWCyVb/8+V3TT5vzlC4=
Subject key identifier: 7F:71:6D:DE:53:F0:ED:BC:04:2C:B4:A4:1C:EC:5A:44:CA:3F:C8:C9
Authority key identifier: D4:08:CF:09:B6:AB:00:5B:A9:33:B2:A7:A4:A6:D2:7E:A6:BB:72:CA
Certificate issuer: /CN=d408cf09b6ab005ba933b2a7a4a6d27ea6bb72ca
Certificate serial: 0199356E5DB07BB9727C8F4DD3BF7819116D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
Manifest number: 0394
Signing time: Wed 10 Sep 2025 21:00:49 +0000
Manifest this update: Wed 10 Sep 2025 21:00:49 +0000
Manifest next update: Thu 11 Sep 2025 21:00:49 +0000
Files and hashes: 1: 1AjPCbarAFupM7KnpKbSfqa7cso.crl (hash: 6Bd+ryOs2IAeooEvbUXd+ar517GmZzSnEmwhi1HydKk=)
2: mjk_9mBIX2K41ASneFahi5WxQms.roa (hash: qL7nGWS3Awht9PmP0vDzSTXhKhc/jIpjX536PZtB9fQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:6e:5d:b0:7b:b9:72:7c:8f:4d:d3:bf:78:19:11:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d408cf09b6ab005ba933b2a7a4a6d27ea6bb72ca
Validity
Not Before: Sep 10 21:00:49 2025 GMT
Not After : Sep 11 21:00:49 2025 GMT
Subject: CN=7f716dde53f0edbc042cb4a41cec5a44ca3fc8c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:b1:fa:59:fa:af:ce:32:55:40:e7:bc:e9:0a:
5e:0f:11:56:d7:13:16:03:18:8c:3f:0a:4b:52:42:
ce:95:76:c9:06:a9:c5:7b:6d:ce:10:83:cf:9b:7e:
9e:e8:67:39:a2:f2:30:bb:80:61:17:a4:5b:4d:21:
fb:28:b2:b8:38:11:6d:5e:db:19:ab:40:51:c0:8f:
e7:d4:70:5b:29:db:ae:e7:8d:bd:70:aa:b6:2f:d3:
49:f2:00:e1:38:60:d1:7c:94:d3:14:49:33:79:54:
a3:91:16:b3:72:64:cb:09:d6:24:b7:00:e7:d2:ed:
6b:4a:ea:19:d1:ef:47:96:21:e1:4b:db:98:db:38:
63:81:f9:58:d3:f0:da:a2:f3:55:d2:24:fc:01:13:
c5:89:6b:33:46:5c:a0:34:41:84:7a:51:cd:5f:18:
22:1a:8a:84:d1:bf:a9:b4:95:5b:24:7b:59:0a:4c:
95:82:65:27:28:3d:e1:db:9a:9c:9f:90:b0:aa:2c:
35:03:e3:26:42:09:fc:ca:0d:c1:70:1a:cc:d7:df:
18:bf:62:6e:f2:da:d4:46:ff:df:0d:cd:88:7d:89:
59:09:5d:09:5e:63:ab:6c:5a:1b:ee:2d:3e:eb:51:
99:8c:1b:1a:fe:e2:27:10:e4:21:97:72:5e:59:4c:
9c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:71:6D:DE:53:F0:ED:BC:04:2C:B4:A4:1C:EC:5A:44:CA:3F:C8:C9
X509v3 Authority Key Identifier:
keyid:D4:08:CF:09:B6:AB:00:5B:A9:33:B2:A7:A4:A6:D2:7E:A6:BB:72:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:06:33:40:3f:ec:e1:41:d3:09:2b:57:ee:0d:82:74:45:48:
2a:87:01:22:cc:b6:78:3d:7c:20:f0:d2:db:97:44:4a:3b:a0:
ee:79:f8:2a:51:08:4f:9c:98:00:23:6d:9d:42:b9:e0:21:9a:
91:bc:0e:60:4f:f9:a3:b4:b3:38:22:f4:6b:00:ab:a5:61:ed:
ad:0e:5f:51:b3:1e:a3:4f:8e:9d:3f:a6:8a:c5:9b:24:8a:ff:
d2:78:57:e4:78:65:5c:bf:f7:de:a3:a3:3a:5c:3c:2d:88:b4:
78:9c:74:fc:a6:62:02:f4:24:f4:15:f6:1f:1e:cd:ff:f7:07:
43:30:00:0d:c0:d0:dc:29:10:eb:fc:65:f3:90:f6:a5:b7:4c:
80:04:4a:0f:98:0b:5d:08:2a:34:8a:db:3a:65:c2:9a:c3:13:
7c:cf:52:78:3a:e6:5e:09:c8:d9:4a:80:c9:52:bf:2c:b7:fb:
2b:62:8a:7f:32:0b:d3:22:12:28:c5:17:78:11:00:fe:8a:df:
d9:21:b6:60:a2:d1:04:42:16:31:dc:81:d5:74:4f:15:7f:07:
99:9b:4b:7f:04:80:c5:2c:6f:30:9e:59:34:9b:2f:62:b8:5e:
68:7c:fb:fe:7d:62:73:a9:aa:9c:37:81:0f:1d:41:dc:81:94:
cb:94:75:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 23:08:11 2025 by rpki-client