Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.mft
File: avqwkWjnzGa2Y8YWLVyNRUllzOI.mft (raw, json)
Hash identifier: HpS4NKDqBhMbNvntzqWNHqF0zI4+INm53A93TpG6hRc=
Subject key identifier: B8:E6:0F:1D:1E:4E:0D:3E:98:31:E9:73:13:CB:87:25:53:E1:6B:4C
Authority key identifier: 6A:FA:B0:91:68:E7:CC:66:B6:63:C6:16:2D:5C:8D:45:49:65:CC:E2
Certificate issuer: /CN=6afab09168e7cc66b663c6162d5c8d454965cce2
Certificate serial: 0199240DB7687A279A1F206E96E849FBB1EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avqwkWjnzGa2Y8YWLVyNRUllzOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 12:01:42 +0000
Manifest this update: Sun 07 Sep 2025 12:01:42 +0000
Manifest next update: Mon 08 Sep 2025 12:01:42 +0000
Files and hashes: 1: 5xRTqzcHFHVQo8fAk9jdOEDWcNo.roa (hash: o6t7ExGzOX2KWBxMdFDPPoJaZWdADyyPaXoKd8DGN1w=)
2: avqwkWjnzGa2Y8YWLVyNRUllzOI.crl (hash: 8cttFDhWqRoD3u7C12jXTJiCCb5Ac43V/9cZO+glYL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/avqwkWjnzGa2Y8YWLVyNRUllzOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:b7:68:7a:27:9a:1f:20:6e:96:e8:49:fb:b1:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6afab09168e7cc66b663c6162d5c8d454965cce2
Validity
Not Before: Sep 7 12:01:42 2025 GMT
Not After : Sep 8 12:01:42 2025 GMT
Subject: CN=b8e60f1d1e4e0d3e9831e97313cb872553e16b4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0c:30:36:b7:d6:b8:37:8d:7f:19:78:3e:45:
99:f9:24:e8:30:e1:68:ac:80:79:40:22:34:98:1c:
aa:01:18:75:f6:79:02:18:e0:cd:9a:df:29:cc:2a:
88:5b:7c:85:92:44:be:80:01:fe:6c:25:0e:97:d7:
e3:b4:b1:40:3e:e6:9f:df:f7:c2:6e:de:a9:9c:e4:
90:05:0c:69:84:90:4b:0d:b0:a6:8a:d5:ef:87:57:
85:0f:97:17:18:39:80:01:9c:ce:f5:40:73:90:46:
28:b9:86:ac:c4:00:92:0b:79:d6:5d:f1:70:97:58:
61:a0:51:27:be:79:59:6f:03:fb:92:cf:a5:06:58:
dd:f8:ed:c4:f0:94:64:59:50:f4:ad:ee:32:72:d5:
05:f1:cb:65:c4:cf:97:12:95:f0:71:9c:10:37:ed:
5f:b1:e8:26:53:dd:21:57:f3:37:1d:32:c2:86:73:
78:63:f9:04:d3:f6:81:33:92:63:98:3f:95:06:a4:
cc:45:fe:86:73:c3:30:d5:27:f9:b2:8b:fa:58:32:
c6:e1:fc:c1:d4:1a:7c:40:9c:fb:75:08:a1:52:57:
5d:43:d1:6f:94:10:9e:d2:50:1a:cb:5f:22:1f:9e:
80:4b:c7:77:72:4a:c6:65:59:0a:cc:e2:09:6e:bc:
0e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E6:0F:1D:1E:4E:0D:3E:98:31:E9:73:13:CB:87:25:53:E1:6B:4C
X509v3 Authority Key Identifier:
keyid:6A:FA:B0:91:68:E7:CC:66:B6:63:C6:16:2D:5C:8D:45:49:65:CC:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avqwkWjnzGa2Y8YWLVyNRUllzOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/aafcb2-491d-4b80-9168-5f3381b071da/1/avqwkWjnzGa2Y8YWLVyNRUllzOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:89:c5:ab:04:8a:0f:55:c4:a7:15:dc:43:02:cb:8b:2c:e9:
df:f4:64:3f:04:df:5f:65:df:ca:48:3f:85:18:4f:73:72:af:
dc:63:a6:89:90:c0:d9:46:30:c3:9a:46:88:9c:df:4e:23:a8:
d6:14:11:c6:74:f8:f1:f8:06:dd:68:45:7b:a1:26:5b:15:7d:
ea:ee:64:3b:14:75:23:20:7d:42:38:c9:95:72:79:0f:e6:e3:
0c:66:b1:57:f3:82:c6:b9:36:dd:d6:ce:f4:ac:34:7e:a7:b9:
2b:a8:52:8e:bc:45:8e:2f:be:d2:e7:86:50:6a:81:f5:25:5b:
e2:ac:d9:4b:5e:73:15:b9:1f:a2:33:74:cb:c1:7b:ce:f0:16:
7f:61:0e:cb:07:af:12:78:64:e8:13:a9:36:d5:7a:65:54:dc:
87:d7:e5:d6:ec:7a:67:7d:0b:55:41:4d:b0:e7:a7:9f:4f:d1:
0f:36:c9:af:bc:d9:63:5b:ae:f2:33:9e:cf:90:32:6b:e1:a0:
78:57:17:71:7d:b5:a5:4b:32:17:ec:77:7d:02:c4:30:e1:06:
ee:1a:91:a4:4d:f8:59:42:1f:40:b2:e1:64:b6:1c:ec:b7:c8:
85:46:5f:07:41:34:3c:7a:a8:9e:8d:9b:2d:46:b8:2a:60:a6:
34:10:1c:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:53:35 2025 by rpki-client