Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
File: avL7pFrWUxpj0XNQFPaZgH9H-9w.mft (raw, json)
Hash identifier: oIltZDEsyuo0AkYBTGzGrlZn9u2ADZOiLwf3OuMx2Uo=
Subject key identifier: DD:CF:BE:0D:54:78:C9:FD:70:78:2F:FE:4B:4E:E9:FA:B2:20:A0:E1
Authority key identifier: 6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC
Certificate issuer: /CN=6af2fba45ad6531a63d1735014f699807f47fbdc
Certificate serial: 0198D54E838622B84DB4A254A0C4AFA291FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
Manifest number: 0673
Signing time: Sat 23 Aug 2025 05:02:29 +0000
Manifest this update: Sat 23 Aug 2025 05:02:29 +0000
Manifest next update: Sun 24 Aug 2025 05:02:29 +0000
Files and hashes: 1: avL7pFrWUxpj0XNQFPaZgH9H-9w.crl (hash: 23y4EODLKwk/XQxXrMerbZ0c6gtK8m9dP2zCWDBXolc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:83:86:22:b8:4d:b4:a2:54:a0:c4:af:a2:91:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6af2fba45ad6531a63d1735014f699807f47fbdc
Validity
Not Before: Aug 23 05:02:29 2025 GMT
Not After : Aug 24 05:02:29 2025 GMT
Subject: CN=ddcfbe0d5478c9fd70782ffe4b4ee9fab220a0e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c7:03:fe:05:a7:eb:a8:1b:f1:b4:63:40:91:
c7:a0:d7:2a:d5:8f:ee:d8:81:97:e4:bb:88:e2:7e:
6c:08:2a:dd:0e:dc:ad:b7:59:38:c4:3b:83:27:cc:
67:fd:35:11:c4:0f:bf:c9:a2:73:2a:88:31:3f:42:
42:24:c4:28:29:a5:0a:29:86:80:0a:ce:de:bb:88:
de:15:3b:87:e7:aa:39:af:89:8f:19:50:a3:e8:73:
7d:63:25:eb:c4:b7:8b:4f:bf:56:e0:a3:38:54:d1:
a2:54:5b:46:17:2b:d1:59:c4:67:5a:29:e5:ea:3a:
ae:aa:21:97:6d:6c:fd:1f:4b:06:ea:46:06:ba:d1:
f7:7a:7b:15:5e:25:7e:ae:80:07:04:22:d5:98:ec:
c7:67:a1:ad:58:14:a8:a8:b7:b9:13:2a:0f:25:d6:
fd:1c:ea:f9:5a:1f:ea:33:6e:54:85:8e:e4:51:10:
38:b0:a7:83:e2:a8:01:a1:ad:d6:d6:87:42:67:92:
2c:69:6b:ae:43:9b:71:77:63:bd:d9:ac:0a:9c:8b:
36:4f:34:38:81:da:6e:6c:7c:ba:fc:db:d4:99:d5:
0d:c4:a5:d1:aa:33:11:85:39:42:02:7d:73:09:2c:
9b:f8:76:a4:d1:43:e5:0b:20:3f:09:3c:85:28:e8:
59:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:CF:BE:0D:54:78:C9:FD:70:78:2F:FE:4B:4E:E9:FA:B2:20:A0:E1
X509v3 Authority Key Identifier:
keyid:6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:d5:9e:93:11:90:1b:e1:68:0e:9e:73:3a:d2:cf:06:dc:fb:
55:14:67:48:33:db:78:06:39:4a:f3:12:f4:9d:66:ab:f1:72:
0a:e0:9f:c5:54:02:0b:7a:87:2c:41:5b:d6:94:d1:06:c8:0f:
84:a3:f6:34:58:2b:13:4d:cd:0f:6e:25:04:43:c7:d2:34:80:
69:52:81:1b:b6:d4:94:54:72:26:7a:07:02:fc:47:6d:f7:0f:
41:cd:0e:eb:63:ea:4a:30:eb:6d:5e:f6:ea:fd:43:1a:9b:39:
1b:f8:a7:62:cc:d1:dd:6f:f6:eb:40:bd:be:fb:71:f7:08:49:
ea:ea:e4:40:b9:e2:74:ef:8a:f5:af:71:20:47:c7:d2:26:73:
43:3c:e5:19:62:a6:37:cb:4d:9e:d1:79:80:f4:bb:b4:5d:e6:
52:cc:3a:b9:76:2b:0a:c3:c9:c9:fb:19:a6:4a:8a:a8:1e:e8:
a4:2b:2a:91:4b:10:fd:cb:d4:b0:6b:7c:c1:ee:e2:53:b6:17:
6b:60:09:03:7d:95:45:51:67:3c:bc:8b:57:32:e4:51:2f:02:
6c:a2:a4:49:4f:46:cd:e3:d2:95:b0:0e:c4:d8:56:90:29:5d:
5b:37:7a:3f:6b:b3:19:64:de:e3:b5:de:4f:e5:60:89:6e:9b:
4d:30:4e:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:27 2025 by rpki-client