Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
File: AaVsQu18uWPyhVA87AYG1g0Ks4c.mft (raw, json)
Hash identifier: oOQgtuRNiWyCyTu0cYA+TRgyg93Yt1pb0a08AQoq1Hw=
Subject key identifier: D5:35:DD:F1:A1:9E:DD:58:2A:17:B1:0D:11:9D:36:2E:14:E9:86:C3
Authority key identifier: 01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
Certificate issuer: /CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Certificate serial: 0198D65F367CDC0BA4AB1C8FC60E82302472
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
Manifest number: 0F0B
Signing time: Sat 23 Aug 2025 10:00:20 +0000
Manifest this update: Sat 23 Aug 2025 10:00:20 +0000
Manifest next update: Sun 24 Aug 2025 10:00:20 +0000
Files and hashes: 1: AaVsQu18uWPyhVA87AYG1g0Ks4c.crl (hash: bTJwuMJj3E9ZUzOMKNeGDYEGcMWUJUJ99mLJjiSkbQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:36:7c:dc:0b:a4:ab:1c:8f:c6:0e:82:30:24:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Validity
Not Before: Aug 23 10:00:20 2025 GMT
Not After : Aug 24 10:00:20 2025 GMT
Subject: CN=d535ddf1a19edd582a17b10d119d362e14e986c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b0:8b:a0:62:18:b5:e7:80:9d:85:f9:25:a5:
81:97:50:62:45:b6:92:48:da:17:11:e3:1b:77:59:
f2:4f:b6:f3:2a:01:a3:0a:9d:03:c0:64:95:43:de:
7a:eb:e3:a8:4f:20:25:ec:c4:01:c6:14:86:0a:67:
b5:5c:55:3c:a3:91:51:88:5b:d8:3e:2e:1d:10:95:
ca:06:64:d5:4c:a1:98:85:4e:ad:ff:63:76:26:1e:
6a:24:c5:6b:cb:4d:9e:66:43:59:c1:f9:9b:7a:54:
aa:06:8e:39:a4:2f:86:1c:d9:fb:95:4b:03:81:aa:
e9:f5:1f:f8:6d:2b:9a:07:bc:de:b3:49:8d:d5:d6:
27:5a:42:cf:16:c5:22:b5:0e:cf:8c:b1:44:7c:b6:
00:2d:be:73:f0:84:4a:79:84:d4:e0:78:ee:40:a8:
d9:40:10:a2:50:8d:e9:51:97:2a:2e:47:23:ed:fe:
26:6e:5f:13:ae:9e:ab:68:96:38:8f:cf:ae:9e:5a:
0c:b4:78:19:ab:d3:ce:f2:da:4b:9a:54:18:b0:b8:
90:b2:12:3a:74:60:cf:44:92:68:fd:9b:68:68:92:
87:97:3d:cc:9d:5d:1b:0d:84:2c:cf:15:98:88:8c:
80:c3:81:e7:4b:e8:13:a8:6d:3d:88:39:94:ac:dd:
2c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:35:DD:F1:A1:9E:DD:58:2A:17:B1:0D:11:9D:36:2E:14:E9:86:C3
X509v3 Authority Key Identifier:
keyid:01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:e3:b1:be:5a:43:c9:34:15:5b:f8:5e:b7:0a:e9:97:4c:22:
73:e5:6e:87:5b:14:52:6f:33:fb:b9:8b:21:e4:db:f6:ff:de:
c1:dd:b4:d0:c0:b4:a4:db:38:6d:9a:2a:8c:27:7d:49:b8:9b:
34:a1:86:6d:87:cb:af:a7:dd:05:47:a5:56:7c:aa:77:6b:37:
a5:31:5a:f0:7d:aa:ec:dc:d9:f3:4c:08:d2:b2:b4:76:66:3d:
f9:9f:77:1d:de:a1:1e:66:06:6c:02:9f:13:36:67:2a:25:8b:
ab:76:82:ac:a5:a3:c4:03:8c:74:a9:39:c7:a9:00:e4:ca:8e:
7d:1c:59:37:52:77:fb:1a:a4:ca:cf:3a:80:c3:91:5d:93:f0:
00:a6:4f:7e:2b:47:a0:70:ef:2b:b9:ad:f0:d2:72:95:50:b4:
65:b3:be:ca:5c:56:d6:ae:52:2f:46:5e:d0:0e:59:dc:a2:e6:
6a:bd:98:c1:42:79:cf:c1:36:ab:aa:c7:17:51:fe:5b:a1:df:
4d:f5:b1:67:d8:85:4c:41:a5:7c:07:ae:6b:10:d3:78:c3:9f:
3e:fd:64:ac:57:32:d3:5c:e2:a6:ad:85:0c:21:93:cd:ca:93:
06:fc:a3:1c:87:a8:eb:8c:70:0f:e6:7e:07:ae:57:c1:c9:83:
18:6e:18:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:23:13 2025 by rpki-client