Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
File: aPw7CfVvin8ea-PJTw8IikKiy1s.mft (raw, json)
Hash identifier: A6zDb9sQHkNIjfJ1xhvKRmfx+XLwEu6VOJpgLk4//SU=
Subject key identifier: 12:21:62:2E:AB:21:B7:B7:E8:D5:FD:86:CA:11:9E:2F:09:D9:97:48
Authority key identifier: 68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B
Certificate issuer: /CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b
Certificate serial: 0198D92B4C80AD6661D55463F3527497346A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
Manifest number: 0809
Signing time: Sat 23 Aug 2025 23:02:30 +0000
Manifest this update: Sat 23 Aug 2025 23:02:30 +0000
Manifest next update: Sun 24 Aug 2025 23:02:30 +0000
Files and hashes: 1: aPw7CfVvin8ea-PJTw8IikKiy1s.crl (hash: /h8vF6sHbRGAAnvZK2Tlv+2HoNhVzWBiClsCB9XwrSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:2b:4c:80:ad:66:61:d5:54:63:f3:52:74:97:34:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b
Validity
Not Before: Aug 23 23:02:30 2025 GMT
Not After : Aug 24 23:02:30 2025 GMT
Subject: CN=1221622eab21b7b7e8d5fd86ca119e2f09d99748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fc:ef:8b:1f:4a:89:22:62:73:58:09:97:f2:
16:5a:37:7a:4f:d6:07:24:81:f0:3c:bc:a4:0f:70:
80:92:e0:52:29:88:0a:19:eb:27:22:7c:e7:50:9e:
44:59:5b:3c:0b:f6:d5:bc:c8:94:42:a6:0c:b9:fd:
58:3a:8a:1a:7c:f5:2e:72:3b:4f:0a:29:34:5c:55:
99:16:f2:46:b0:2c:16:05:3e:b0:d3:1c:38:31:82:
e5:bc:4b:6f:be:f9:4a:91:1a:dc:00:06:27:60:55:
45:e9:d6:ee:39:7d:9b:b7:49:e6:1d:fd:97:87:52:
10:eb:d4:4c:8f:ce:38:09:b1:b3:20:df:a3:50:13:
72:d4:48:c6:9d:f1:ce:aa:9c:79:30:d7:8e:73:c8:
51:b1:7d:bb:5b:9e:9c:16:b1:19:d0:90:ac:25:20:
77:ef:d4:aa:a1:42:24:6f:8f:01:de:ee:50:41:19:
7c:51:da:91:95:ea:18:cc:02:7d:26:0e:4f:30:3a:
93:fb:36:d3:ba:8c:b1:e6:ba:9e:d8:4b:5d:c1:51:
24:2b:e3:83:8c:67:dc:6e:bd:9c:57:fe:66:97:e9:
7e:0d:04:ef:9f:ac:6b:10:3c:2c:23:ee:63:e5:b3:
c4:fd:33:1f:68:89:f2:09:29:8c:0b:31:fd:53:27:
d1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:21:62:2E:AB:21:B7:B7:E8:D5:FD:86:CA:11:9E:2F:09:D9:97:48
X509v3 Authority Key Identifier:
keyid:68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:20:c9:d3:17:ff:43:28:c9:ac:16:85:6d:f4:bf:87:84:47:
bb:48:d9:24:28:4d:14:e0:1f:08:6b:fc:4f:20:b7:a1:4c:84:
fa:6f:f6:3a:a9:34:5c:0a:ff:e6:a7:79:51:da:52:38:c8:1b:
1d:56:1d:4a:98:8a:6e:c4:37:fa:5b:ee:c0:4e:4c:ab:fe:93:
a6:f5:08:3a:73:53:75:35:8f:2d:f6:97:f8:0d:b8:8c:11:69:
f0:d1:ab:8a:a1:e8:8b:f7:3e:06:f7:9c:10:58:c2:2e:49:b0:
9e:85:bf:f9:59:c8:47:ca:0b:0a:ff:f1:e9:2c:29:e2:52:21:
2c:4a:a3:ea:21:bb:ff:9c:7c:72:cd:78:f8:fd:85:0c:75:76:
d8:ce:19:f6:d0:b9:c0:a0:1f:3a:e6:7f:1f:5c:e6:46:38:3b:
d7:99:59:e7:9c:28:2a:39:91:80:37:3e:59:e7:f1:9c:af:c0:
d9:39:a5:4d:ef:79:29:a3:fd:4c:b3:2f:c7:a4:ee:58:72:8a:
4d:9a:39:85:a2:47:40:0c:7a:de:cb:6d:cb:f4:2e:eb:51:bb:
8e:5f:b6:65:20:41:f7:00:16:d5:a2:e0:e7:cd:4e:5e:eb:6c:
55:96:51:b8:cb:9f:f4:bd:39:9d:d2:13:f9:2a:57:12:ed:93:
b2:a0:ca:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 02:31:44 2025 by rpki-client