Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.mft
File: APkIwDKKjpc_pArFL8M359PE_tA.mft (raw, json)
Hash identifier: 79yaT3AYU0WDkamaRq4DjewukbQvAm7lO9iwFiWIUMY=
Subject key identifier: 1C:3C:01:5A:E6:2C:06:F8:92:1C:67:F2:76:CC:3E:C8:8B:53:4A:AF
Authority key identifier: 00:F9:08:C0:32:8A:8E:97:3F:A4:0A:C5:2F:C3:37:E7:D3:C4:FE:D0
Certificate issuer: /CN=00f908c0328a8e973fa40ac52fc337e7d3c4fed0
Certificate serial: 0199FBEABE4FD760F20710226AB79ECCF02B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APkIwDKKjpc_pArFL8M359PE_tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.mft
Manifest number: 16DE
Signing time: Sun 19 Oct 2025 10:01:29 +0000
Manifest this update: Sun 19 Oct 2025 10:01:29 +0000
Manifest next update: Mon 20 Oct 2025 10:01:29 +0000
Files and hashes: 1: APkIwDKKjpc_pArFL8M359PE_tA.crl (hash: dJYATEqK020heS5EMpF1tsDw6An0B+4uB2dKtc8lc8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.mft
rsync://rpki.ripe.net/repository/DEFAULT/APkIwDKKjpc_pArFL8M359PE_tA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:be:4f:d7:60:f2:07:10:22:6a:b7:9e:cc:f0:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00f908c0328a8e973fa40ac52fc337e7d3c4fed0
Validity
Not Before: Oct 19 10:01:29 2025 GMT
Not After : Oct 20 10:01:29 2025 GMT
Subject: CN=1c3c015ae62c06f8921c67f276cc3ec88b534aaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a9:e1:a5:4f:8c:ce:5d:80:6a:a8:c9:68:e9:
78:82:e7:ec:e5:03:85:b9:11:d4:00:37:66:2c:52:
f8:95:f6:b6:75:7a:76:58:c4:09:f5:fa:d9:e9:0a:
84:95:f2:fc:34:8d:77:a1:a0:7d:3b:41:bb:9b:5b:
f2:95:81:30:40:a3:f2:fd:c9:8e:69:d5:15:60:ee:
f0:b0:cd:91:89:d0:97:3b:e0:08:ba:97:ba:4b:aa:
70:cf:bc:cb:8c:30:39:44:99:da:3e:c9:51:f7:3d:
98:ef:66:23:b6:0f:cb:d6:c1:86:70:9d:b7:e4:d0:
05:d0:44:ad:77:27:58:9a:fa:e1:65:ab:be:8c:f4:
6c:0b:8e:42:a9:47:16:46:fb:46:4a:dd:d5:79:cf:
4c:db:a4:9a:cd:01:9a:e7:61:ee:0a:b8:7e:a6:73:
43:a8:54:b0:39:1b:43:27:69:8d:84:22:93:4d:78:
11:32:f8:77:7b:4e:f5:46:c2:2c:77:db:d9:03:e1:
17:ce:55:65:6f:a4:89:48:8c:21:fa:60:15:59:bf:
f4:19:e4:e0:dc:c7:65:0c:28:f4:4b:67:88:91:0d:
bd:45:fb:34:91:f6:08:6c:c5:b2:27:71:5d:38:ea:
a6:87:7e:3a:d9:9d:c9:8b:d7:68:75:d8:f9:ce:bd:
72:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:3C:01:5A:E6:2C:06:F8:92:1C:67:F2:76:CC:3E:C8:8B:53:4A:AF
X509v3 Authority Key Identifier:
keyid:00:F9:08:C0:32:8A:8E:97:3F:A4:0A:C5:2F:C3:37:E7:D3:C4:FE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APkIwDKKjpc_pArFL8M359PE_tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:87:0c:50:d2:45:31:46:94:a5:aa:42:81:a5:f1:09:ff:ab:
c2:be:d8:c3:74:b1:16:dd:97:d4:26:78:3f:80:11:f5:4b:73:
d5:49:98:ad:7d:1a:31:9a:6e:2a:91:d8:03:bf:65:74:48:0b:
2a:98:f5:43:56:9b:3f:ee:54:1f:18:c7:ce:29:54:a8:a8:4c:
be:03:ba:f7:16:11:10:ff:fc:25:67:6f:ad:f4:4e:a8:1e:23:
9f:28:ea:cd:01:aa:3e:9c:95:99:df:a9:23:56:8f:37:5b:12:
07:e1:06:68:50:71:e7:00:c4:3d:64:c6:93:f4:bd:b4:28:53:
c0:dc:80:cb:9f:2a:69:cb:cd:62:7e:56:f7:43:a4:3b:48:e7:
9f:35:51:f9:5e:67:87:a1:58:11:de:62:ca:65:9d:9f:0b:4d:
78:0c:70:31:65:33:90:09:17:ac:23:70:29:d9:48:db:2e:ae:
54:59:b9:1f:24:ff:8c:3e:d2:3e:f9:ac:25:af:46:10:41:85:
27:16:5f:6d:92:3f:35:52:38:64:8e:07:b3:77:62:2d:b8:6a:
85:6a:d0:72:59:b4:12:ea:3b:81:53:1b:23:90:ff:b0:0a:c3:
39:c6:98:c1:c4:36:af:45:80:87:33:c8:4e:e0:da:4d:b2:39:
ef:1b:fc:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:03:05 2025 by rpki-client