Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
File: aPw7CfVvin8ea-PJTw8IikKiy1s.mft (raw, json)
Hash identifier: 4st62inQxlizg7BN+vHHN7YLQHw0NXNwNASLQ6JQOyw=
Subject key identifier: B9:F9:3C:09:03:0B:B9:31:37:23:09:83:02:28:E7:64:F3:CD:71:E3
Authority key identifier: 68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B
Certificate issuer: /CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b
Certificate serial: 0197B77C18DB97804FF3776B5DD7738594F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
Manifest number: 0773
Signing time: Sat 28 Jun 2025 17:00:52 +0000
Manifest this update: Sat 28 Jun 2025 17:00:52 +0000
Manifest next update: Sun 29 Jun 2025 17:00:52 +0000
Files and hashes: 1: aPw7CfVvin8ea-PJTw8IikKiy1s.crl (hash: 6WcxfBso6CriQeXYNKp8VA5MdmYPD5EUpcVdsXiZXHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:18:db:97:80:4f:f3:77:6b:5d:d7:73:85:94:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b
Validity
Not Before: Jun 28 17:00:52 2025 GMT
Not After : Jun 29 17:00:52 2025 GMT
Subject: CN=b9f93c09030bb931372309830228e764f3cd71e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c5:6e:ff:91:99:8b:43:82:9c:ac:27:c0:48:
14:af:73:f8:af:05:79:8c:03:ad:f2:51:29:87:5a:
41:bf:77:e0:5f:bf:48:1a:26:f3:03:71:ce:0f:45:
d7:0e:e4:22:b7:bf:10:63:34:bd:a4:16:ef:68:36:
2c:6e:44:d9:8c:43:28:a2:a7:ed:5a:ca:a9:28:08:
1a:da:ad:e7:9c:4c:df:26:bc:62:73:74:fe:bf:7e:
53:c6:9e:77:1f:d4:4e:35:f1:c6:83:0f:35:92:90:
9b:bd:e6:db:ad:cb:25:52:bc:06:90:86:a4:3a:66:
6d:df:4a:de:7b:c7:36:dc:ef:ab:5a:4a:0d:07:86:
38:ba:bb:1c:05:14:7b:75:d5:5c:03:b4:28:33:22:
47:bc:f3:0f:59:3a:11:50:88:ec:ca:f6:b3:54:7b:
92:4a:8f:ad:aa:7a:e4:1b:8a:cf:c1:cb:b9:6d:58:
68:63:79:43:79:99:60:e9:00:46:66:ec:88:13:a7:
83:ec:e5:76:db:00:fb:42:9a:aa:f2:e4:d7:c4:b7:
a8:b5:6e:ae:13:2a:b0:63:28:2a:ad:68:2c:aa:40:
d8:2f:12:5a:0e:0b:37:b1:7c:fb:ac:d0:d3:56:c7:
18:cb:e2:f6:19:ba:16:14:39:39:1c:b7:3a:f9:6c:
57:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F9:3C:09:03:0B:B9:31:37:23:09:83:02:28:E7:64:F3:CD:71:E3
X509v3 Authority Key Identifier:
keyid:68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:45:f2:58:85:4d:2e:5a:89:5f:42:d2:fc:3d:1a:d8:b0:53:
5b:df:a1:89:3c:8b:f7:71:fe:55:7a:df:b5:7f:a5:a4:1d:86:
32:5a:d7:29:0b:c3:a0:dd:f7:55:00:7e:08:f9:71:5a:76:13:
3e:bf:59:e1:2f:e4:f5:0e:c8:5f:48:90:23:59:bb:fa:41:d0:
ca:03:cb:5d:67:2f:a4:2b:2d:0f:2d:3c:07:04:07:ce:5c:83:
d2:a3:e1:ce:01:c7:0b:00:37:fc:3f:1c:4e:a3:af:5e:93:1f:
93:d9:2c:0c:25:e5:71:2e:8f:e1:91:de:0b:63:ef:a3:20:fb:
ce:4c:84:f4:96:ba:07:5f:df:d7:f1:42:22:07:2f:04:79:cd:
75:c1:3a:72:59:fe:37:f4:37:16:63:20:a3:23:74:0c:67:64:
20:62:b9:af:31:6d:7b:92:d2:8a:4f:d5:64:42:64:af:09:4f:
89:1b:d5:0f:03:82:43:52:51:4f:79:46:e5:5b:6f:45:0a:02:
b2:f9:ed:cf:f9:ea:6c:77:78:49:a0:d1:22:f2:82:10:31:b8:
aa:f1:24:21:27:37:1f:d8:3b:3a:ed:a4:c1:28:2b:cf:c4:85:
54:d6:0f:93:35:c4:b5:b8:f2:40:d1:ec:4a:d2:25:f1:04:c4:
eb:e3:2c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:27:44 2025 by rpki-client