Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
File: AhfGZs2iPpINFLkK6TY3EzUKrB4.mft (raw, json)
Hash identifier: QbFq9vygIxDRK6sk3WWM9sW8KxqQtRyMP5mmfXZ2FaA=
Subject key identifier: 7C:A1:58:0D:AA:44:9B:87:FD:1C:57:80:1E:47:20:5D:C7:C8:1D:44
Authority key identifier: 02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
Certificate issuer: /CN=0217c666cda23e920d14b90ae9363713350aac1e
Certificate serial: 0199228CFAD34BCC65538243A3420DC27CB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 05:01:28 +0000
Manifest this update: Sun 07 Sep 2025 05:01:28 +0000
Manifest next update: Mon 08 Sep 2025 05:01:28 +0000
Files and hashes: 1: AhfGZs2iPpINFLkK6TY3EzUKrB4.crl (hash: veNkqKSe1cKp534EuxmSC3aaknfawHCz2FklarNCNhI=)
2: osyzbtU7GZmaeY_CNmdQy5Vz8jw.roa (hash: /Wf83f8E6EuxQUr3auZsag/VGfFdi1UD8Jonkresr4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:fa:d3:4b:cc:65:53:82:43:a3:42:0d:c2:7c:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0217c666cda23e920d14b90ae9363713350aac1e
Validity
Not Before: Sep 7 05:01:28 2025 GMT
Not After : Sep 8 05:01:28 2025 GMT
Subject: CN=7ca1580daa449b87fd1c57801e47205dc7c81d44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:55:50:67:8f:f4:9a:18:f4:f2:2b:5f:43:a4:
88:8b:b8:15:1f:05:af:08:9f:54:04:de:98:4c:99:
73:d0:ef:22:97:bf:52:32:c6:45:14:e6:69:80:7f:
b3:53:f3:64:50:7e:65:77:da:52:c0:e0:c7:92:bb:
db:93:d5:f9:a1:35:38:02:00:43:d4:b9:53:66:9b:
d6:f2:30:b4:b3:ca:56:01:cc:ab:db:37:15:ab:a8:
77:cf:2f:dc:80:67:24:b3:12:2a:40:58:34:d9:d8:
19:01:be:e3:57:f7:44:1d:60:d4:c2:3e:b7:9f:32:
e3:1b:16:1c:6e:e0:4b:98:4f:cb:83:0b:0d:5a:85:
fd:04:85:76:7c:ca:65:7d:d1:80:7c:c2:f1:16:ff:
23:77:48:bb:61:e5:f5:a2:ce:5d:99:e3:9c:86:84:
dd:72:a2:f7:a9:06:bf:2c:1e:72:be:2c:1e:ad:14:
e5:8d:8f:7f:e6:46:c6:5d:c7:d2:08:b4:61:d2:a4:
0a:01:cc:1c:97:dd:40:85:8e:37:fb:db:44:f3:4f:
2f:75:5a:67:4c:2e:b3:7e:3d:5a:8e:a1:38:9c:87:
85:05:58:85:c8:e4:b6:5a:7d:74:0d:83:89:b9:ec:
3c:85:b4:28:49:5d:1a:7d:51:a1:5a:4a:99:c4:b6:
f7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A1:58:0D:AA:44:9B:87:FD:1C:57:80:1E:47:20:5D:C7:C8:1D:44
X509v3 Authority Key Identifier:
keyid:02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:cc:82:b2:6c:36:8e:6a:1b:77:a7:28:24:be:06:c9:7e:5d:
80:47:49:b6:56:58:5f:6a:2a:75:81:b9:b2:7f:04:e5:99:52:
c1:57:ad:06:62:73:4f:40:ff:76:06:23:2a:c8:d4:73:3f:d6:
64:7a:fd:50:72:df:ec:0f:e7:ec:3a:e0:b3:5c:fb:bc:7a:72:
c5:1f:21:16:b1:53:64:48:7c:71:19:70:e0:de:2b:a3:ee:b7:
3e:d3:f8:f8:fc:29:09:07:4a:f7:05:36:f5:12:47:e6:5b:4a:
89:62:31:3d:a0:19:13:2f:b5:0c:e5:57:12:99:27:26:e0:91:
0c:0a:f2:db:ef:e6:91:fc:8b:1a:38:a7:7e:bc:b4:c5:b3:18:
22:3f:05:a4:90:4b:60:5a:00:cc:1d:5a:b7:6f:ab:b8:e0:b6:
39:25:bf:80:e4:b7:d1:80:2b:97:e6:de:d7:4c:6d:cf:0d:ff:
d0:5a:ad:83:8d:a2:e0:49:77:ed:45:41:70:59:14:9c:ed:a2:
a0:2b:99:a9:30:c4:ee:e2:60:8a:d8:9d:2e:db:01:60:fb:b9:
36:90:3a:fa:3c:09:20:2e:6f:30:66:20:d7:4d:79:8e:c8:17:
80:d9:2b:8e:73:41:87:98:2d:27:84:cd:60:25:2a:7c:b7:8f:
b4:88:cd:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:44 2025 by rpki-client