Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: TdC17QegvRrGt6GpqnjOjNIX28rZjF/jZcFsaBhtpo0=
Subject key identifier: 22:BC:C9:4D:F0:1C:7A:37:A9:63:8A:7E:F0:CC:DC:09:4B:EA:FA:5F
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 0198D65F60AB1BB559BA93BF62498D904330
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 10:00:31 +0000
Manifest this update: Sat 23 Aug 2025 10:00:31 +0000
Manifest next update: Sun 24 Aug 2025 10:00:31 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: fo9ltcNt06t+M4OqS8dvMmaEWLN1zLnGKApVYfmWJ7c=)
2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:60:ab:1b:b5:59:ba:93:bf:62:49:8d:90:43:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Aug 23 10:00:31 2025 GMT
Not After : Aug 24 10:00:31 2025 GMT
Subject: CN=22bcc94df01c7a37a9638a7ef0ccdc094beafa5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:65:a5:cf:3d:97:66:22:93:c2:00:e1:25:67:
d4:21:85:44:e3:c9:a1:db:c3:18:dc:89:2f:e3:42:
14:0a:66:b6:c0:ff:ec:83:a1:66:7e:97:b3:8a:9d:
11:a0:f8:44:d2:1a:a8:d5:88:76:3c:e5:59:84:63:
e6:e0:31:fd:ac:b9:70:54:ae:49:fb:9f:bf:11:5f:
d7:4e:3a:f0:7b:79:98:7a:2c:98:00:cd:2f:e7:36:
6f:37:d5:49:b7:38:96:fd:5c:95:1e:46:22:7d:71:
e8:4c:0d:f2:f3:f9:75:b9:1c:cb:82:d8:29:86:58:
41:29:ca:d5:05:b0:4c:81:53:0a:e7:d1:a8:7c:a9:
a2:8a:aa:7c:d9:82:92:d9:f8:2f:4b:23:c2:a6:7f:
08:b8:43:3e:6c:22:2c:94:c6:a5:31:25:85:eb:a8:
21:a4:fe:27:28:ae:d4:c3:6f:b6:7d:80:23:ee:fc:
06:a6:9e:c2:f0:99:4c:8b:94:6d:72:0f:d7:af:6e:
f4:12:32:2b:45:37:98:cb:73:0e:43:84:8e:bb:55:
c3:2f:b7:5b:ae:1b:b4:07:cb:08:85:7c:7b:77:be:
1c:6f:eb:3a:2f:c7:a4:e1:86:4c:25:fa:cf:dc:df:
9f:52:1e:df:b9:e6:29:53:25:5a:13:2b:bf:dc:e5:
41:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:BC:C9:4D:F0:1C:7A:37:A9:63:8A:7E:F0:CC:DC:09:4B:EA:FA:5F
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:8b:06:6f:dd:b4:6d:e1:98:01:3c:01:3d:31:5e:e0:a2:e4:
4f:e8:18:f6:54:3b:a8:c5:e0:16:47:1b:64:cd:e0:93:de:08:
68:b3:66:fc:a6:2c:67:f4:b9:e2:c7:3c:c2:08:db:33:5e:4e:
6a:90:11:4f:ed:27:6a:b1:6b:a2:c9:5e:5b:01:52:e9:09:23:
23:e1:b4:e7:ca:fe:0f:a2:c6:2c:e0:af:90:fe:fa:0c:50:9d:
36:4d:5f:00:4e:98:4e:cd:a0:ea:1c:3b:40:f8:d7:be:94:91:
45:96:d3:45:8b:b1:2b:99:c1:d7:c9:c1:21:44:fe:3d:31:78:
67:28:fd:db:11:3c:66:17:37:eb:e7:c3:d5:07:02:a3:cf:e7:
08:c6:62:77:63:d4:dd:98:d5:e4:17:a6:bd:3b:c2:c7:78:59:
2f:f8:89:37:0d:a1:30:e7:52:b3:28:3b:0e:b3:ee:e5:aa:10:
65:58:41:2a:08:45:2f:19:ff:f3:45:0c:4f:66:f6:33:ab:b4:
2b:0c:5e:9a:65:2e:02:3b:c5:0d:68:e7:c9:c3:bb:79:e7:4f:
97:c3:8c:d4:af:b7:fa:66:ee:27:2e:a4:68:0f:2d:06:ae:11:
59:79:ec:9c:b2:ee:e7:bc:94:3f:a0:7d:28:6f:4b:73:86:6e:
94:a1:e6:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:38:53 2025 by rpki-client