Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft
File: afY2pbazoordg_l0Rtewg7lMPa4.mft (raw, json)
Hash identifier: 16zTdZGBT1TdEFbuJeQIADBCLWWT5mnOK0PxCPmRG30=
Subject key identifier: 94:8B:E1:3D:BF:95:A8:BC:5A:9A:EA:17:6A:8F:A6:C1:9A:AA:88:0D
Authority key identifier: 69:F6:36:A5:B6:B3:A2:8A:DD:83:F9:74:46:D7:B0:83:B9:4C:3D:AE
Certificate issuer: /CN=69f636a5b6b3a28add83f97446d7b083b94c3dae
Certificate serial: 01992331713B5A02602DED7BD3B8FF23EEC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afY2pbazoordg_l0Rtewg7lMPa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft
Manifest number: 0641
Signing time: Sun 07 Sep 2025 08:01:06 +0000
Manifest this update: Sun 07 Sep 2025 08:01:06 +0000
Manifest next update: Mon 08 Sep 2025 08:01:06 +0000
Files and hashes: 1: Uq41S_TL-4cdbHQOXq-81k1Y6B0.roa (hash: imvcawPVkLTN2rqi9GrM6dLepGLRmW6IgQsJl3oa4vo=)
2: afY2pbazoordg_l0Rtewg7lMPa4.crl (hash: g4ARlr9XTwO2lZ4WnBrcls1eLN+P1t1vBHXAILEml3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/afY2pbazoordg_l0Rtewg7lMPa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:71:3b:5a:02:60:2d:ed:7b:d3:b8:ff:23:ee:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f636a5b6b3a28add83f97446d7b083b94c3dae
Validity
Not Before: Sep 7 08:01:06 2025 GMT
Not After : Sep 8 08:01:06 2025 GMT
Subject: CN=948be13dbf95a8bc5a9aea176a8fa6c19aaa880d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:99:d6:c4:3c:63:62:b5:3f:62:80:e6:73:72:
d3:0f:34:76:e3:44:97:ca:79:cf:ba:25:17:8b:7d:
d7:1c:f4:d9:68:db:cd:60:00:a3:4c:f3:e2:67:ee:
3e:43:af:48:7f:f4:28:ce:4c:b5:ba:89:3f:9f:c8:
d4:98:9d:89:1a:65:47:16:79:af:1c:51:c2:13:bb:
b1:f1:f6:86:d4:db:63:3d:15:15:a9:50:9a:1e:e8:
2b:f9:03:2e:8f:6b:81:41:06:5f:de:e6:4b:bf:56:
74:aa:fa:e9:de:92:8d:a8:b0:45:f6:c6:86:ad:a2:
fe:cd:f8:8a:2f:78:e3:1a:42:10:d6:a3:02:00:92:
47:7a:72:4a:61:95:77:b8:49:6c:d2:63:0c:17:4a:
c8:da:ce:87:3a:bb:1b:7f:65:60:5f:ff:f6:32:82:
b4:aa:42:e1:df:92:0f:c3:88:81:17:1a:6c:52:30:
2f:c1:95:8b:47:07:bd:84:7b:ed:8c:c6:0f:c3:8f:
f9:91:eb:49:54:0b:93:0a:c5:3c:a7:67:be:5c:64:
6a:73:c6:cd:08:de:9e:c8:ee:4d:65:68:01:83:2e:
92:21:2b:77:cd:11:5e:93:4f:07:b0:9e:fd:a9:6b:
90:8b:e3:f1:c5:e6:e7:cf:0b:ab:d7:66:45:0b:55:
f4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:8B:E1:3D:BF:95:A8:BC:5A:9A:EA:17:6A:8F:A6:C1:9A:AA:88:0D
X509v3 Authority Key Identifier:
keyid:69:F6:36:A5:B6:B3:A2:8A:DD:83:F9:74:46:D7:B0:83:B9:4C:3D:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afY2pbazoordg_l0Rtewg7lMPa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:5d:c8:0f:7e:87:05:48:8f:87:37:c0:e8:3a:62:8d:fb:a3:
b6:29:72:09:c0:e6:e5:ba:ef:9c:1c:2b:dd:7b:1c:48:2b:d5:
38:42:f7:d5:62:ed:83:62:04:0f:1e:98:3a:85:1d:0e:87:ab:
3f:fe:b6:40:a7:4a:94:36:8a:c3:e7:67:11:2a:b5:8a:73:cc:
48:f0:ee:c6:05:f6:b5:8f:91:b7:ff:99:39:5f:71:b7:46:92:
62:08:fb:c3:54:33:8f:44:15:14:1d:86:cc:de:a3:ef:f5:e3:
28:ff:aa:42:2d:b2:58:3f:00:0f:c1:ea:8d:5f:36:c5:2d:6f:
ab:5b:0d:fb:e2:f2:0a:71:5c:57:1a:7e:61:00:0c:91:91:00:
bc:91:76:c2:2c:19:71:d4:31:3c:b6:89:ff:d9:bf:71:b6:98:
68:89:32:f2:ce:e4:24:22:bf:1e:1d:2e:22:6e:c8:da:62:10:
3c:d4:42:76:ea:e4:f2:80:b9:15:11:36:fe:c2:84:4d:ff:99:
4b:c7:66:84:2c:6f:27:48:fb:4b:aa:99:58:93:96:84:76:de:
de:a4:d1:92:35:72:62:a4:7b:0d:48:1b:5c:5e:cb:f7:47:61:
5b:95:30:7e:f9:bd:cf:e1:9f:32:7c:29:9d:19:9b:71:b0:53:
7a:c4:13:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:43:31 2025 by rpki-client