Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: KkJ9J76B75xyyicRM87CF7O+c9K/1gtGKWl5LRsejzI=
Subject key identifier: 79:A6:2B:C7:43:22:AC:EB:F5:01:F2:5C:22:57:23:6F:5D:D3:DA:9D
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 0199FB7C90877EB3C02B88FDBFAE9DF80690
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 08:01:08 +0000
Manifest this update: Sun 19 Oct 2025 08:01:08 +0000
Manifest next update: Mon 20 Oct 2025 08:01:08 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: Pq6ZEp/HdPzebFeKUgTN4zrNRx/5gI8FtLcF+uGZ0Q4=)
2: nJZ2h-CE2RpObbNuUbuQAsAe9wo.roa (hash: XjXLrJ8ZAfMXOtdh84OSK02UeKqf16aa2sgmGiELBao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:90:87:7e:b3:c0:2b:88:fd:bf:ae:9d:f8:06:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: Oct 19 08:01:08 2025 GMT
Not After : Oct 20 08:01:08 2025 GMT
Subject: CN=79a62bc74322acebf501f25c2257236f5dd3da9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5a:44:f5:0c:1d:33:92:be:42:2e:57:dc:3b:
95:57:54:49:fa:e5:d5:d6:e7:10:bf:40:7e:f7:c5:
a5:23:ae:c7:71:e4:7b:e7:2e:26:ec:4c:66:7a:6f:
ae:e7:b4:90:17:fc:6b:88:51:41:ba:45:af:5f:89:
e1:f2:ab:00:f0:4e:59:ad:85:1d:de:d9:93:f2:fe:
73:eb:37:a0:fd:92:4c:38:c8:46:10:cf:2a:60:e7:
0a:b5:c6:2c:6a:cc:e5:46:e0:8d:7c:a2:5b:03:38:
8d:83:8c:af:a8:31:9c:6b:14:cc:a9:7e:bf:34:24:
91:0c:b2:a1:a0:15:37:15:44:f1:f2:f7:1b:86:76:
99:cd:90:3b:97:95:0a:cf:70:7c:27:2a:81:22:b1:
35:14:04:b0:c9:b1:59:b1:55:52:ac:78:9b:94:31:
ce:58:6b:f5:e8:40:5b:4c:c9:c2:33:b0:2e:7a:5e:
a9:a8:66:43:64:0d:4f:b3:69:e8:b1:7a:13:c2:bc:
b9:97:49:2d:b6:0d:d4:67:4b:ac:3e:7a:ba:d2:ad:
a7:26:04:b2:04:7c:5b:0a:f4:0e:b8:f5:8c:7c:23:
37:7d:1c:7e:30:20:09:e6:df:7b:c4:60:ed:73:1c:
22:87:53:b9:dc:ae:bc:d1:a3:4b:93:6d:9b:00:45:
9d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A6:2B:C7:43:22:AC:EB:F5:01:F2:5C:22:57:23:6F:5D:D3:DA:9D
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:9c:ea:8b:9b:60:a5:59:99:af:1d:52:ec:21:a4:f8:97:4e:
6e:57:39:9b:d4:17:ff:25:21:9f:02:4e:2f:d2:a4:d5:15:8f:
d8:1f:38:42:50:6d:99:d9:94:3f:a4:22:f5:d8:04:c3:19:12:
45:5a:ac:5a:1d:67:c2:85:8b:5b:ec:a8:9f:97:7f:88:c2:88:
c7:6b:85:14:99:b6:f5:5d:d9:58:4f:87:62:2c:07:95:d0:e0:
8e:31:41:56:05:02:6a:51:2a:d3:e9:e2:be:3a:46:86:63:ab:
a1:18:29:04:3e:64:07:d6:0e:fd:6c:5d:6d:67:b1:2e:07:fd:
8d:36:fe:32:e8:b8:da:f9:09:50:ea:54:b3:03:d8:1f:b4:bf:
35:78:cd:2a:4f:2b:f0:3f:eb:97:39:01:26:d2:a5:4c:ed:a2:
1e:ef:f4:e6:b8:e0:08:34:8e:fd:ae:cf:db:38:66:0f:5f:28:
dc:78:90:e9:e4:b0:d9:c4:df:64:ef:f5:c7:1c:87:82:f5:03:
f5:5c:6c:3a:12:48:23:2c:87:87:b5:5f:42:bc:8d:93:ba:04:
07:b6:69:bc:ac:d6:66:af:4f:df:f9:ca:ad:f6:c5:76:f9:09:
09:7d:9b:cb:15:f2:7e:b8:07:48:e5:34:46:d7:2d:57:a5:1d:
aa:13:c5:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:28:05 2025 by rpki-client