Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
File: aFeXIsOgywwzUcWV36PX6tgfFr8.mft (raw, json)
Hash identifier: yqJBTsLoSfGY4fTag/IfPrDEfpg92jAZ71o4K+rRZtE=
Subject key identifier: 6B:1D:84:A4:87:DD:BF:C8:41:4B:6C:D9:05:45:B9:81:C5:73:24:26
Authority key identifier: 68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
Certificate issuer: /CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Certificate serial: 019916BF16387D80F11604AF7C5A077596FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
Manifest number: 1672
Signing time: Thu 04 Sep 2025 22:00:45 +0000
Manifest this update: Thu 04 Sep 2025 22:00:45 +0000
Manifest next update: Fri 05 Sep 2025 22:00:45 +0000
Files and hashes: 1: 5kpPrp0PsQaLwN-0f4M5ORyJaIo.roa (hash: sRLtBcmB7NMgyGt87xrsnTDd/kvjgxEDyhMytt8u1mY=)
2: TEQ2s_TPddXgs2TBHawu_QRXdAY.roa (hash: v8GdY3sNaK+PD8iTL9fBBYBUT72JOPHFN0JrePdltX0=)
3: aFeXIsOgywwzUcWV36PX6tgfFr8.crl (hash: 16Ifpydwg0f9Q6c7p/qIQwG1F7+jsJaLKFtYBmaPXSY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 22:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:bf:16:38:7d:80:f1:16:04:af:7c:5a:07:75:96:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Validity
Not Before: Sep 4 22:00:45 2025 GMT
Not After : Sep 5 22:00:45 2025 GMT
Subject: CN=6b1d84a487ddbfc8414b6cd90545b981c5732426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:85:31:1f:91:12:74:2c:b5:17:a5:5b:bd:cb:
17:6d:e9:5d:91:69:a0:63:ce:1a:7c:1c:92:d5:ba:
62:7c:3e:61:0c:1a:6d:b2:55:5e:ec:e8:16:a8:44:
ca:03:0a:29:29:fd:26:79:84:4c:3f:25:7d:20:23:
fa:7a:b1:a2:07:50:91:64:b4:0b:c5:32:9c:83:db:
01:46:43:47:c9:05:78:ad:60:26:71:80:b0:63:54:
c1:fe:47:69:3f:96:eb:3b:1b:eb:e9:09:8d:2d:f3:
f0:e3:62:bc:3b:76:6c:f3:25:9b:51:a7:78:80:c0:
40:8e:23:f5:22:c6:f7:52:9f:80:12:9b:d8:11:80:
81:d5:e2:a7:c4:22:87:8f:eb:ba:c4:22:2d:2a:ce:
1e:a9:e0:1f:20:f7:6e:13:a6:d9:70:3b:ed:69:9f:
69:62:08:46:67:c8:10:ff:7a:ea:8f:30:0d:20:f4:
19:ab:3c:82:3f:fb:e7:a7:4b:8d:d3:17:8b:52:fa:
41:1b:78:75:cb:1f:e5:eb:35:a9:bc:81:a8:95:62:
47:29:b6:cb:db:37:e5:3d:11:cc:aa:09:09:a5:5e:
2d:ee:90:9f:18:79:cb:63:08:6c:5b:aa:cd:4b:d3:
89:cb:49:b8:3f:14:43:ee:37:11:51:a8:aa:2f:84:
60:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:1D:84:A4:87:DD:BF:C8:41:4B:6C:D9:05:45:B9:81:C5:73:24:26
X509v3 Authority Key Identifier:
keyid:68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:57:87:19:9c:1c:55:3f:ae:22:00:d2:94:54:fd:c8:07:b2:
88:f5:63:09:7b:d9:2c:cf:4b:61:c2:ca:7b:f9:a0:81:d9:43:
f6:8e:ea:e1:44:69:c0:3c:6e:e2:8a:2a:4e:48:f6:cf:9b:17:
dd:8d:98:91:fb:b9:c7:a0:13:60:71:8b:d4:68:ce:39:ea:50:
90:3b:34:2a:7a:c2:24:b2:16:89:5f:25:50:07:4a:6f:dd:d6:
fd:be:6c:82:1d:59:42:4d:53:57:22:9c:fc:55:4b:06:77:33:
8a:ac:35:d7:98:d3:c4:e7:b3:26:6f:81:39:37:01:b0:c8:f2:
58:a2:8f:53:13:f6:73:5f:55:03:a8:b5:4f:79:5b:14:77:6c:
89:5b:82:a2:57:df:a9:ad:49:a4:49:06:78:47:3f:50:5c:21:
95:18:3c:3b:7c:5c:3d:91:74:56:b1:ef:8d:f2:57:9e:f4:ff:
47:ee:86:22:6e:52:b4:88:e8:0d:30:a4:dd:7b:73:c2:7c:3b:
2a:b1:17:88:3f:58:34:cf:a5:0e:92:24:8c:74:36:7e:1f:f3:
a3:be:6f:49:c4:e3:5d:0c:b2:d8:a2:1c:4a:51:6e:46:44:2f:
ff:2b:ac:a7:ad:8d:8a:70:b9:b6:45:47:25:2c:6a:ca:17:3a:
0b:1f:0e:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 07:33:08 2025 by rpki-client