Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
File: AvxcBk9RWcih-kBmyMuP9wFnHdI.mft (raw, json)
Hash identifier: CpwZGZg514bCDKGK+lkObJb3I3smWNR1kzywrgEZRzY=
Subject key identifier: D4:BE:B8:14:9F:7D:CA:4E:48:5B:8A:BA:44:70:AA:73:74:6E:BF:B4
Authority key identifier: 02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2
Certificate issuer: /CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2
Certificate serial: 0198D58391DC8B6FA14DE43B58E1E76510C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
Manifest number: 0B6A
Signing time: Sat 23 Aug 2025 06:00:26 +0000
Manifest this update: Sat 23 Aug 2025 06:00:26 +0000
Manifest next update: Sun 24 Aug 2025 06:00:26 +0000
Files and hashes: 1: 5d3BkT4g6BSm4A2tPk7SLnm-a2o.roa (hash: r7O0hom8hw87s+SCAknwxnQSAbbhz820jIMuUD9IwqI=)
2: AvxcBk9RWcih-kBmyMuP9wFnHdI.crl (hash: YdteHhYH6tRre54PNSRC5iCtUctclUTsXA4zZwCfufk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:91:dc:8b:6f:a1:4d:e4:3b:58:e1:e7:65:10:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2
Validity
Not Before: Aug 23 06:00:26 2025 GMT
Not After : Aug 24 06:00:26 2025 GMT
Subject: CN=d4beb8149f7dca4e485b8aba4470aa73746ebfb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:98:46:86:cc:15:b3:01:49:23:1b:50:9d:0e:
e5:9d:e2:5e:a4:55:5f:71:a6:c0:0b:0e:de:fa:4f:
7d:c3:f5:e5:d7:85:3b:bd:23:50:af:1d:9c:4d:32:
ba:46:47:07:50:87:c9:c2:bc:3c:e2:41:6d:43:02:
1e:1e:e8:b5:96:95:9f:86:21:a0:60:10:b7:73:8f:
d9:63:5f:b9:01:6c:01:05:6d:c1:95:c6:43:e4:84:
1d:f1:bc:77:77:4a:91:e5:59:f0:00:18:86:ed:e6:
79:fb:2f:0d:05:0f:28:c1:d9:f9:d6:f0:cb:f3:65:
df:7b:8c:c4:ec:e7:8c:fe:9e:44:42:79:dc:b2:10:
1b:ab:68:d3:bb:a7:b4:e0:6c:ef:70:4f:79:e8:0b:
76:40:83:7d:c9:95:dc:b5:72:20:7e:7b:54:e8:e3:
d9:42:aa:1a:17:d9:7c:b9:c9:4c:ba:40:70:a0:78:
32:84:06:2b:96:a1:7d:81:0e:51:27:2c:25:9b:86:
36:b3:dd:27:64:47:31:ee:57:dd:ce:54:b1:c3:94:
b5:2c:85:fd:38:c4:70:48:fe:49:15:47:01:4b:98:
60:ae:5a:01:60:e7:4c:f7:3c:5d:39:2f:bc:60:eb:
24:e5:ed:f9:f9:8c:d5:02:56:72:15:2f:2e:53:9d:
3e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:BE:B8:14:9F:7D:CA:4E:48:5B:8A:BA:44:70:AA:73:74:6E:BF:B4
X509v3 Authority Key Identifier:
keyid:02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:f8:d4:d7:b7:6d:2b:e0:83:80:ea:28:99:16:89:75:ca:ed:
c2:a5:71:51:70:06:54:29:0d:ed:bf:64:3b:8a:ee:c4:64:e3:
d9:3f:fe:18:2d:99:1c:3c:ed:87:83:ff:56:1c:cb:e5:f2:e6:
04:4e:b1:0c:17:5e:d4:49:7f:59:28:5c:78:0e:12:22:92:0e:
71:5a:c0:cb:e6:28:b7:67:bb:b3:2e:3c:3e:c6:d1:f6:b1:83:
5c:4d:84:e6:d5:51:2e:cc:90:04:f3:62:53:67:76:84:cb:58:
8c:75:7a:45:53:8a:22:c3:b4:a7:16:15:d5:10:ea:6f:e6:e9:
ae:e5:0d:42:f2:fb:e2:84:f7:f0:8c:fe:85:d5:d2:50:52:98:
3b:8d:d2:2e:70:9e:87:07:98:02:21:c9:3c:66:3a:9c:2e:4f:
1f:2e:44:5a:85:a0:69:57:c7:a4:ba:cd:55:9e:33:c5:c8:0f:
d4:b6:3b:34:e8:8b:dc:ad:d1:6c:76:31:f8:46:01:74:fb:66:
46:ab:c5:04:8a:8e:45:b5:c7:1c:17:c6:21:6b:bd:fb:f6:4e:
51:8a:52:21:b3:6e:d2:31:d6:c6:89:6c:fd:23:66:9e:ec:e9:
91:65:28:cc:ac:cf:e8:36:e4:d8:a3:e3:27:f5:f4:41:9e:de:
45:ad:1b:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:13:16 2025 by rpki-client