Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft
File: AYGCKpyioAj1zRG5-duhbuLGFFk.mft (raw, json)
Hash identifier: S9SWkNE8MEw3zJ5PSC/UWvM0wxnAk7wz6otK/eGVP/U=
Subject key identifier: 48:FB:C8:0B:F5:6C:26:C1:39:70:D2:A1:09:09:37:17:95:DE:35:C4
Authority key identifier: 01:81:82:2A:9C:A2:A0:08:F5:CD:11:B9:F9:DB:A1:6E:E2:C6:14:59
Certificate issuer: /CN=0181822a9ca2a008f5cd11b9f9dba16ee2c61459
Certificate serial: 0198D583475655EBEB8470200767E5C2AC75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYGCKpyioAj1zRG5-duhbuLGFFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft
Manifest number: 018F
Signing time: Sat 23 Aug 2025 06:00:06 +0000
Manifest this update: Sat 23 Aug 2025 06:00:06 +0000
Manifest next update: Sun 24 Aug 2025 06:00:06 +0000
Files and hashes: 1: AYGCKpyioAj1zRG5-duhbuLGFFk.crl (hash: FJLzUIg5ziWKgxI4D1hLxQYpa/EGZDrPo8f7Xf2dmAQ=)
2: g2CXKA0Q172jL1FvPLyV_ep5ju0.roa (hash: 11gRkpCQE+58w0mcA/1mDxt2mYAAWr8ch94H20jZvcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYGCKpyioAj1zRG5-duhbuLGFFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:47:56:55:eb:eb:84:70:20:07:67:e5:c2:ac:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0181822a9ca2a008f5cd11b9f9dba16ee2c61459
Validity
Not Before: Aug 23 06:00:06 2025 GMT
Not After : Aug 24 06:00:06 2025 GMT
Subject: CN=48fbc80bf56c26c13970d2a10909371795de35c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ef:b4:12:92:91:a4:9b:13:a4:1a:bf:1d:88:
bb:cc:f0:b7:48:6b:4d:c1:fb:3e:e6:20:a2:c1:57:
71:57:79:ae:4b:8d:4e:30:6e:f1:38:10:fe:58:4b:
6c:95:0e:a8:ab:48:e3:33:4f:eb:c1:4e:d7:b2:38:
36:4b:9e:e0:f6:15:33:83:dd:e8:fb:d4:79:86:f3:
a1:73:7a:25:cd:37:bb:64:ec:50:6a:4d:00:2c:05:
0f:1d:61:b3:d1:fb:6c:c2:94:59:8f:5d:a1:77:71:
01:ca:b1:0a:ea:52:f9:1f:bf:2b:55:c4:d4:1b:29:
b6:82:40:23:3c:80:48:a4:c4:2a:f3:62:07:19:70:
2d:88:7e:02:de:66:e1:c4:fa:51:45:95:9b:3b:87:
5e:71:58:d8:10:06:e5:c5:b3:59:a5:31:4a:c1:6e:
64:b5:a2:e9:44:1d:62:b5:a9:6c:d8:a1:88:eb:6b:
42:c2:73:5d:d1:5e:f8:5d:76:ef:3d:17:ac:b6:35:
6f:4d:d4:a8:64:b7:00:5e:9f:ac:fa:66:36:5e:99:
ad:16:4c:84:7c:28:ee:3a:ff:f4:2a:0b:e4:be:44:
2e:4b:a0:3e:0a:2a:ef:ff:53:96:b3:d0:b7:5f:14:
cc:88:87:57:23:3c:bf:8f:db:58:23:bb:14:ae:86:
85:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:FB:C8:0B:F5:6C:26:C1:39:70:D2:A1:09:09:37:17:95:DE:35:C4
X509v3 Authority Key Identifier:
keyid:01:81:82:2A:9C:A2:A0:08:F5:CD:11:B9:F9:DB:A1:6E:E2:C6:14:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYGCKpyioAj1zRG5-duhbuLGFFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:c4:e7:4e:c6:30:1f:09:72:b1:35:1f:87:37:cc:db:fa:d5:
9d:f4:c2:4f:f3:39:49:49:45:25:10:27:68:9e:a8:99:cb:36:
1c:a2:07:91:38:59:bd:6a:2b:07:7f:aa:20:0e:36:6c:d1:ee:
0e:ef:27:87:c9:75:0e:cb:42:d9:77:0d:d1:8f:28:97:20:aa:
6a:e2:2c:07:3a:eb:31:72:14:f4:4d:a7:08:61:b4:cd:8e:16:
d5:5f:88:84:20:05:60:77:07:aa:b6:76:40:49:a3:c0:c6:23:
a2:6d:ca:d3:a1:fd:a2:34:c2:7b:d9:0a:1a:16:d9:18:21:f7:
19:b3:65:12:1e:14:7f:ae:07:46:9f:87:bb:29:09:d9:e9:a3:
16:24:77:0f:53:c5:0f:42:75:a2:5f:95:95:6d:91:78:31:5f:
94:f5:3f:f8:db:26:b3:7f:76:7f:cb:58:62:3e:58:ec:da:62:
a7:5d:be:6a:ec:41:d2:48:26:0f:f8:d0:e9:f3:45:d0:e5:5a:
e0:a6:cd:23:2b:3c:3a:cc:4f:47:01:10:9c:ef:f0:d9:a3:21:
39:79:12:a0:6e:67:ad:0a:38:82:dc:1b:f9:2d:30:57:4e:12:
b0:79:0c:19:fb:04:1f:d8:ee:44:b8:74:31:26:57:f4:81:b7:
a5:da:3c:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:42:39 2025 by rpki-client