Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: NzC4Z+3Vs5QwY5FhyKCWAj8msDbb8cBO125sD9ZRCyE=
Subject key identifier: 04:6A:E6:F1:B2:7F:23:C4:35:DC:37:38:E6:4D:AA:C7:8E:D3:D0:46
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 0198D4046182FD125038D2DECB19C050ECB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 1649
Signing time: Fri 22 Aug 2025 23:01:53 +0000
Manifest this update: Fri 22 Aug 2025 23:01:53 +0000
Manifest next update: Sat 23 Aug 2025 23:01:53 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: M53AYaO+Ac6RlnlLumKTaCvEDXc966qvP7jTgxhSPZE=)
2: nJZ2h-CE2RpObbNuUbuQAsAe9wo.roa (hash: XjXLrJ8ZAfMXOtdh84OSK02UeKqf16aa2sgmGiELBao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:61:82:fd:12:50:38:d2:de:cb:19:c0:50:ec:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: Aug 22 23:01:53 2025 GMT
Not After : Aug 23 23:01:53 2025 GMT
Subject: CN=046ae6f1b27f23c435dc3738e64daac78ed3d046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:10:95:8c:d1:cc:4c:9c:0d:3d:f2:62:a2:64:
0a:7f:9a:c9:ef:2d:4d:9a:2f:14:b1:a0:87:26:ae:
00:48:22:9d:c6:7e:11:02:20:78:90:44:97:6f:35:
43:b9:f4:ab:a0:5b:bb:8d:e9:ae:51:10:3c:3c:50:
dd:f8:ca:90:55:81:21:2a:df:79:0f:6b:4b:7e:ea:
1f:23:a4:56:bf:63:8c:e0:1c:fe:e8:e2:50:3f:5f:
73:51:f7:0d:73:9c:86:62:2b:24:1b:84:03:31:f3:
82:2c:b6:71:be:f2:53:65:cf:5e:9a:b9:72:1d:2f:
cf:e0:e1:5a:ba:cc:2c:40:8d:83:7f:9d:38:1c:10:
21:34:3d:91:7e:42:18:77:0a:d7:2b:97:ed:11:d4:
5c:67:64:1d:4a:a8:f5:e8:07:53:cb:c9:43:38:de:
3f:aa:a9:6c:82:7d:94:02:2a:f1:d1:26:05:0c:7f:
c7:59:8c:a9:e1:6d:d7:01:c6:3e:cf:3d:b2:67:c5:
7a:4a:31:0f:e4:76:b8:bb:f3:2a:e0:6f:41:2d:ec:
d4:1b:da:b0:b6:44:1f:85:f9:48:b8:4d:83:51:19:
a4:dd:cd:d3:f7:ae:10:1a:5b:97:ad:1f:0e:bf:70:
56:6b:30:29:a7:86:3c:03:21:8d:e3:fa:f6:8e:59:
eb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:6A:E6:F1:B2:7F:23:C4:35:DC:37:38:E6:4D:AA:C7:8E:D3:D0:46
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:59:84:c2:0c:d6:99:b0:76:d8:b6:bb:d1:f5:d6:d6:c6:05:
37:4f:9f:2b:07:47:18:d8:d1:d3:8b:2b:a6:05:4d:25:6a:62:
4a:51:83:b9:6e:e3:02:d5:72:f7:dc:a5:54:90:81:0f:a4:9b:
55:19:73:18:62:c4:a3:19:a4:f8:6a:13:e7:10:ee:c8:2a:fa:
fe:29:19:55:ed:02:c5:2e:b8:ed:a2:14:05:8d:09:bc:8f:19:
ea:61:e3:10:5c:b1:29:48:b9:dd:9a:9e:2b:c2:f8:da:cc:22:
fd:6d:70:93:66:f7:5e:c8:1b:31:f6:7e:4c:dc:aa:9b:3f:ae:
d4:fc:3c:7a:4a:8c:cc:c9:50:dc:9c:04:c0:37:cb:27:fd:cf:
54:fc:77:84:9f:2c:01:1b:a8:11:99:25:54:be:c1:a8:a8:68:
45:e5:0f:b4:d5:24:5a:5f:24:92:6f:cc:52:88:4b:5f:f3:16:
f4:7d:26:3a:7f:c8:c5:c0:2c:be:e3:b5:b4:cf:95:82:7f:28:
b6:ae:6d:39:2d:c4:58:91:ba:e6:ab:78:9b:5f:81:e1:d6:87:
41:ca:bb:b3:ab:0d:12:04:ea:3d:8e:16:bb:62:c1:8e:c1:a2:
13:48:e3:1f:66:6a:7f:ab:01:d4:c4:4c:a4:0e:70:41:31:ff:
75:6f:5e:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:40:11 2025 by rpki-client