Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
File: aBHhJcs1cHby-jE4yT6aJoGxeJM.mft (raw, json)
Hash identifier: 1+n4cbLLO2N51P3SXjcDKbBHPwtprMDdDUa9xYOarJs=
Subject key identifier: 4A:BB:AF:77:5F:37:D8:37:3D:C8:E0:D7:87:44:97:5C:B7:7D:8C:47
Authority key identifier: 68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93
Certificate issuer: /CN=6811e125cb357076f2fa3138c93e9a2681b17893
Certificate serial: 0198D4736A94B424261B646F91FA376CC0C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 01:03:10 +0000
Manifest this update: Sat 23 Aug 2025 01:03:10 +0000
Manifest next update: Sun 24 Aug 2025 01:03:10 +0000
Files and hashes: 1: aBHhJcs1cHby-jE4yT6aJoGxeJM.crl (hash: bHlbxYrx53FiYJO/0spzqIo7HI9hBiAcAXkJJ1Ys+mo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:6a:94:b4:24:26:1b:64:6f:91:fa:37:6c:c0:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6811e125cb357076f2fa3138c93e9a2681b17893
Validity
Not Before: Aug 23 01:03:10 2025 GMT
Not After : Aug 24 01:03:10 2025 GMT
Subject: CN=4abbaf775f37d8373dc8e0d78744975cb77d8c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:18:a8:78:38:5e:55:14:cb:3b:38:d6:b4:b3:
8c:4a:4f:72:19:7c:68:44:fe:18:0b:f5:38:dc:3a:
20:ad:f8:3c:3c:b4:3f:e9:b8:85:15:95:89:86:0b:
01:fa:7b:76:8b:02:bd:28:0d:a9:d5:ab:62:fc:a6:
85:ba:a5:0d:1d:a5:b0:fe:0a:bc:d9:ab:69:80:7f:
d8:0f:84:1f:41:e6:c1:44:5c:ac:b0:2d:c7:82:2b:
a4:21:21:7c:fb:e0:f2:d3:9d:c8:a3:17:47:26:37:
a2:c3:0f:30:e8:ba:b0:b9:90:d6:c2:bf:36:b4:51:
95:a9:5d:6f:01:4c:22:d3:5f:e7:b7:4f:f2:54:5a:
a4:e3:c4:c6:ce:6a:d4:54:86:ba:63:cc:29:5d:ab:
08:46:89:9f:52:7d:68:3d:fb:c4:93:97:06:ac:da:
57:4f:2a:89:f6:92:f0:8c:c6:af:d1:c1:f2:17:40:
ea:a0:64:79:81:07:d6:a0:8d:b7:c0:e1:d4:57:15:
aa:0c:12:9a:62:6b:2f:2c:0f:88:1a:99:b8:40:b8:
0b:a8:6f:43:ae:74:69:73:21:85:4f:ce:73:f9:71:
99:c3:26:51:f0:95:5e:85:39:ea:94:3a:2f:4d:e4:
1f:9d:7b:6e:9d:4f:de:9d:5b:cd:eb:74:ce:d3:72:
ed:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:BB:AF:77:5F:37:D8:37:3D:C8:E0:D7:87:44:97:5C:B7:7D:8C:47
X509v3 Authority Key Identifier:
keyid:68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:4d:89:f2:88:f9:b0:89:4c:49:df:55:7e:39:97:bf:91:09:
e7:f4:61:ed:5f:88:d0:21:cf:a5:97:d5:29:ce:6b:bb:97:c1:
ab:6d:eb:8f:0d:5c:f6:35:20:1d:1f:ea:eb:ff:08:0e:a8:5a:
93:c8:c3:19:02:2a:ed:bf:3c:5a:dc:b6:4f:71:22:e6:0d:47:
f3:0f:8c:fc:cd:9f:04:43:fe:70:ed:12:c4:e2:70:4c:e2:55:
4b:01:52:b2:dd:53:d0:e1:72:dd:60:21:7e:c2:8f:f2:9f:85:
54:4d:48:76:06:c9:6c:c5:57:fe:6d:d1:74:f5:aa:82:c2:20:
3c:f3:e6:ed:36:00:13:f6:b5:a7:0f:a0:ab:a4:c1:e7:04:49:
58:36:55:fc:ea:5e:44:cd:27:15:ef:66:52:dc:8c:df:dc:74:
67:29:fe:a2:75:17:64:7b:df:2e:37:00:e4:b6:39:98:24:95:
9c:c5:c1:e4:46:34:ab:84:a7:52:a7:75:c7:30:72:e0:9a:87:
ec:74:34:b4:28:22:b5:12:90:89:e7:7f:68:3a:51:f2:b5:8e:
76:d1:ce:75:0c:02:ab:1b:c4:38:1f:d4:2e:cd:04:39:54:c7:
41:92:44:64:a9:8a:85:54:8f:c2:78:47:86:29:9d:15:71:72:
d5:5b:bb:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUc2qUtCQmG2Rvkfo3bMDEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MTFlMTI1Y2IzNTcwNzZmMmZhMzEzOGM5M2U5YTI2ODFi
MTc4OTMwHhcNMjUwODIzMDEwMzEwWhcNMjUwODI0MDEwMzEwWjAzMTEwLwYDVQQD
Eyg0YWJiYWY3NzVmMzdkODM3M2RjOGUwZDc4NzQ0OTc1Y2I3N2Q4YzQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7BioeDheVRTLOzjWtLOMSk9yGXxo
RP4YC/U43Dogrfg8PLQ/6biFFZWJhgsB+nt2iwK9KA2p1ati/KaFuqUNHaWw/gq8
2atpgH/YD4QfQebBRFyssC3HgiukISF8++Dy053IoxdHJjeiww8w6LqwuZDWwr82
tFGVqV1vAUwi01/nt0/yVFqk48TGzmrUVIa6Y8wpXasIRomfUn1oPfvEk5cGrNpX
TyqJ9pLwjMav0cHyF0DqoGR5gQfWoI23wOHUVxWqDBKaYmsvLA+IGpm4QLgLqG9D
rnRpcyGFT85z+XGZwyZR8JVehTnqlDovTeQfnXtunU/enVvN63TO03LtHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEq7r3dfN9g3Pcjg14dEl1y3fYxHMB8GA1UdIwQY
MBaAFGgR4SXLNXB28voxOMk+miaBsXiTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUJIaEpjczFjSGJ5LWpFNHlUNmFKb0d4ZUpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9lYmFjYmQtODE5MC00ZTVhLWEwM2Et
Y2Q0Mzk0OTJiN2FlLzEvYUJIaEpjczFjSGJ5LWpFNHlUNmFKb0d4ZUpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9lYmFjYmQtODE5MC00ZTVhLWEwM2EtY2Q0Mzk0OTJiN2Fl
LzEvYUJIaEpjczFjSGJ5LWpFNHlUNmFKb0d4ZUpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAE2J8oj5
sIlMSd9VfjmXv5EJ5/Rh7V+I0CHPpZfVKc5ru5fBq23rjw1c9jUgHR/q6/8IDqha
k8jDGQIq7b88Wty2T3Ei5g1H8w+M/M2fBEP+cO0SxOJwTOJVSwFSst1T0OFy3WAh
fsKP8p+FVE1IdgbJbMVX/m3RdPWqgsIgPPPm7TYAE/a1pw+gq6TB5wRJWDZV/Ope
RM0nFe9mUtyM39x0Zyn+onUXZHvfLjcA5LY5mCSVnMXB5EY0q4SnUqd1xzBy4JqH
7HQ0tCgitRKQied/aDpR8rWOdtHOdQwCqxvEOB/ULs0EOVTHQZJEZKmKhVSPwnhH
himdFXFy1Vu7YA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 09:47:51 2025 by rpki-client