Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
File: Afp6rPiShM693j1MEkYvxE3rw4Q.mft (raw, json)
Hash identifier: sU7GExI5yLOxyMIBo8McN5k9A+7ZCmwblxkgDSv4A30=
Subject key identifier: 92:7A:5B:AA:CC:E4:3E:8A:F5:8F:D2:8B:59:2E:EB:77:41:4D:6A:CB
Authority key identifier: 01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84
Certificate issuer: /CN=01fa7aacf89284cebdde3d4c12462fc44debc384
Certificate serial: 0199228D1FD487E79491CECF31EA81E4B4F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
Manifest number: 0C0D
Signing time: Sun 07 Sep 2025 05:01:38 +0000
Manifest this update: Sun 07 Sep 2025 05:01:38 +0000
Manifest next update: Mon 08 Sep 2025 05:01:38 +0000
Files and hashes: 1: Afp6rPiShM693j1MEkYvxE3rw4Q.crl (hash: gNkdBWHOXiMjdTLN0mX01qBd8AX8jM43e+W6Cbv3KJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:1f:d4:87:e7:94:91:ce:cf:31:ea:81:e4:b4:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01fa7aacf89284cebdde3d4c12462fc44debc384
Validity
Not Before: Sep 7 05:01:38 2025 GMT
Not After : Sep 8 05:01:38 2025 GMT
Subject: CN=927a5baacce43e8af58fd28b592eeb77414d6acb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:26:b4:a8:ed:2c:34:78:18:02:f8:a8:70:62:
4a:91:b7:28:0c:e8:77:0d:6a:ab:e4:bd:17:3c:c9:
e0:1d:81:c2:6f:15:d7:c2:51:09:ea:90:21:56:4e:
0f:aa:d1:70:ff:11:86:d0:e5:c6:c4:83:65:91:ae:
d8:9b:ba:06:64:b9:cb:17:d4:54:75:83:1a:d8:cc:
e0:e7:8c:f3:ef:08:77:37:36:e5:bb:59:74:74:06:
04:1e:ff:46:bc:cf:52:47:31:59:2d:69:06:0b:8f:
11:49:29:33:fe:4c:f2:02:0f:42:39:19:ea:8b:d9:
16:a9:a4:3b:35:f4:bd:8c:ac:3d:4a:9a:36:eb:5a:
e9:1a:91:8e:3b:27:35:23:c7:d2:f1:91:38:6b:97:
86:e1:16:34:45:7d:af:58:07:c4:2c:9e:0e:72:9d:
ee:01:17:d0:37:23:8e:65:88:7a:b2:db:a2:b1:d0:
66:03:3d:f4:f9:b9:e9:72:16:bf:bc:b2:26:fc:0a:
39:9c:b4:64:40:6f:48:31:14:a5:64:d4:e7:6d:cf:
b3:c1:36:23:ac:c8:ba:f6:71:f5:0e:8f:fa:02:6f:
bf:20:c7:d4:db:9a:7e:0d:fc:34:de:fd:61:89:1f:
45:76:f7:34:03:ec:e1:01:26:52:8c:c5:30:ad:4d:
f3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:7A:5B:AA:CC:E4:3E:8A:F5:8F:D2:8B:59:2E:EB:77:41:4D:6A:CB
X509v3 Authority Key Identifier:
keyid:01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:c5:ea:82:18:5a:61:2d:e3:96:77:5a:08:8a:20:27:b1:72:
0d:87:38:06:2e:ff:5c:53:20:e9:c8:22:64:84:d9:98:a5:cd:
9a:3e:dc:19:5c:7d:4c:33:b5:81:a2:2e:e0:34:e9:50:cc:a1:
35:e8:16:b1:c8:64:8d:db:44:5a:da:31:90:bb:d8:79:92:d5:
c8:d3:9d:56:01:a1:5d:da:15:de:08:bb:74:9a:dd:3e:18:9c:
be:d6:4f:78:f3:48:e0:e1:be:6e:e2:d3:d8:31:9d:c2:82:d2:
fa:c0:e2:42:b5:9a:0b:e8:21:73:32:15:b0:9b:c8:fc:ab:c6:
39:79:a0:38:53:61:af:cf:92:9d:97:80:64:5e:5f:52:1d:98:
8a:40:0b:3f:8b:58:14:99:f1:a2:22:ab:75:01:8b:8d:98:cf:
06:22:94:a0:ce:fd:06:3e:d8:12:27:50:a6:ae:3d:b4:81:9b:
8c:2f:04:d1:34:80:fe:69:d0:17:f7:43:27:e2:f3:42:73:95:
ab:50:b2:07:37:ef:a5:f7:8e:60:c9:6a:dd:1d:72:50:75:e3:
bd:6e:d5:06:82:3c:c4:d5:fc:03:42:8d:6a:32:f2:ce:11:0a:
47:0d:bb:2d:d8:ba:ac:52:08:6b:6f:ab:10:b2:e2:d6:71:88:
62:4a:b8:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:29:29 2025 by rpki-client