Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json)
Hash identifier: ItwS/P3zvryRhC8syHMq+6KyXurH3rZneFjNjiDXong=
Subject key identifier: D1:BE:BF:57:68:65:4B:55:17:F2:61:4F:5A:D1:6D:B7:1E:A6:0A:B1
Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69
Certificate serial: 0198D5F1805CFB70233E308060CD796EA17B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
Manifest number: 0687
Signing time: Sat 23 Aug 2025 08:00:30 +0000
Manifest this update: Sat 23 Aug 2025 08:00:30 +0000
Manifest next update: Sun 24 Aug 2025 08:00:30 +0000
Files and hashes: 1: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: 9fNVN4rvOpiIBL4sxjGKYOCoTxXDYwpSQYBptBCH9+I=)
2: hnTM8e9DDp88O_jCAHz8InVW_vE.roa (hash: 8skhoEZiI2jfYQ4DDQgvqEaBRoMspiQzmuxF61YcMEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:80:5c:fb:70:23:3e:30:80:60:cd:79:6e:a1:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69
Validity
Not Before: Aug 23 08:00:30 2025 GMT
Not After : Aug 24 08:00:30 2025 GMT
Subject: CN=d1bebf5768654b5517f2614f5ad16db71ea60ab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d9:75:45:6a:c5:02:7c:ed:37:88:0c:72:90:
4c:6c:84:47:65:67:99:22:9f:ab:87:42:89:1a:63:
cf:72:a5:41:38:43:d9:af:b9:6c:02:47:69:1f:91:
52:67:fb:a0:5a:4f:eb:67:a7:7d:d8:74:e0:6c:dc:
3d:7a:cf:3b:56:7b:80:69:36:6a:19:e6:e9:ed:00:
52:b4:a3:aa:bd:8b:1d:22:c8:83:32:02:95:66:fc:
a2:6f:34:7f:d4:52:f7:0e:e4:1b:ec:6e:89:12:92:
33:e0:48:05:40:72:32:96:f5:e1:75:52:63:ce:e5:
b6:75:5d:a6:e9:a7:2a:c2:44:08:03:32:f2:a8:a5:
36:a4:56:94:5c:54:65:9d:e1:6c:cf:bf:51:ce:c8:
24:a8:e2:78:41:15:53:7b:cc:8e:de:cb:bc:a7:c9:
96:80:32:36:95:d2:de:26:6e:7d:5a:10:08:45:7d:
9d:7e:dd:66:ce:16:7e:29:c1:b9:39:fc:06:ad:95:
c7:74:ae:da:1f:87:fc:bc:02:d8:60:e3:41:43:33:
81:96:98:28:bb:92:f1:83:06:73:ea:33:b6:50:60:
b4:7e:d4:10:78:08:cf:f8:68:84:eb:59:8d:83:1e:
25:16:42:7a:61:70:9c:65:20:27:18:68:9a:dd:f1:
e3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:BE:BF:57:68:65:4B:55:17:F2:61:4F:5A:D1:6D:B7:1E:A6:0A:B1
X509v3 Authority Key Identifier:
keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:25:7c:40:83:d5:58:76:0b:c8:64:70:44:29:76:0b:a0:38:
18:31:24:66:09:f6:0b:14:92:b1:b9:93:4b:ae:6b:f5:93:fe:
95:de:7e:a8:44:0d:1f:92:b0:fd:25:89:de:55:6f:61:96:23:
99:ad:f8:65:73:a0:41:d6:44:1c:e8:34:8a:86:11:f1:0d:5b:
1d:c0:4c:6a:9e:2b:be:23:67:8e:5f:eb:8a:61:08:d1:d3:82:
75:77:ef:0e:5e:dc:1f:c7:a4:95:2d:1a:1a:60:22:f9:65:53:
09:0a:5a:40:b9:85:3a:53:77:31:c7:21:64:df:74:12:2a:66:
37:67:bb:07:33:cc:e9:16:99:2b:2e:2a:e3:a2:24:87:59:8d:
a1:7a:60:8b:5e:48:8d:1d:65:21:0f:b4:b3:cb:89:36:77:18:
5b:06:eb:bb:96:66:b9:49:b7:80:3a:e5:56:fb:7c:c1:54:65:
54:66:ce:4e:9b:15:42:c3:38:c6:ff:99:3b:16:9c:2b:57:34:
fb:6e:1f:c9:aa:50:03:e7:21:fc:9b:b4:0f:42:04:79:dc:c4:
fd:d5:4b:ef:e0:69:f5:a4:53:f2:c3:3f:01:3d:4b:81:50:eb:
85:9c:c6:4d:c5:13:c1:17:4c:f9:8a:2e:e5:36:27:46:49:1d:
b1:24:ed:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:33:38 2025 by rpki-client