Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
File: aQqw79d1diHIbXtpx29gssP6w1Y.mft (raw, json)
Hash identifier: zs6hwab2jxGYD+IpCfIZBKA6VIwmu9v9giAfj5j9UAg=
Subject key identifier: C3:F6:4E:2E:79:55:F7:B2:7B:CC:ED:70:E3:9A:97:6A:F4:48:47:29
Authority key identifier: 69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
Certificate issuer: /CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Certificate serial: 0198D73AF49E418DFCABB2A97D442FF18F95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
Manifest number: 0399
Signing time: Sat 23 Aug 2025 14:00:21 +0000
Manifest this update: Sat 23 Aug 2025 14:00:21 +0000
Manifest next update: Sun 24 Aug 2025 14:00:21 +0000
Files and hashes: 1: aQqw79d1diHIbXtpx29gssP6w1Y.crl (hash: p0PfULZ8v/1H/gKaidSOZE5blR15Q59X8yff1JR/1zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3a:f4:9e:41:8d:fc:ab:b2:a9:7d:44:2f:f1:8f:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Validity
Not Before: Aug 23 14:00:21 2025 GMT
Not After : Aug 24 14:00:21 2025 GMT
Subject: CN=c3f64e2e7955f7b27bcced70e39a976af4484729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:49:be:6e:98:27:b7:5a:c5:ea:d2:c6:c9:09:
5f:cd:9b:72:55:e7:4f:7b:15:e0:30:9f:c4:5a:a2:
bb:08:e2:38:41:e4:0a:ed:09:97:d1:9b:ab:e2:4c:
68:9d:9e:4d:cf:4a:f3:c7:00:65:27:4b:dc:75:ca:
85:29:a7:bc:39:6f:62:94:f6:61:43:76:36:29:5f:
2d:21:30:36:8e:1e:81:41:17:70:a8:5d:3a:79:df:
5d:0f:86:48:b1:2c:fb:23:16:b1:0b:8c:1a:ea:b1:
3f:91:82:96:c7:a2:06:fc:59:e5:23:5c:dc:b5:15:
12:9f:c7:b7:17:ab:d1:00:50:46:d9:7e:d8:ef:c8:
19:ef:ca:b5:ba:9e:3e:b7:e8:9f:3b:c6:53:05:3b:
33:3c:ec:ca:91:af:b1:f0:de:93:34:77:42:7c:48:
cf:25:6c:e2:8e:28:1c:d9:13:35:63:e8:f1:6d:11:
3b:a7:e3:42:44:78:9e:ef:5b:12:34:1a:00:a2:57:
5a:db:fe:37:dd:73:2b:5a:b1:d4:1d:f4:a7:25:34:
03:d0:7e:0f:71:34:60:64:b3:5d:36:e6:af:4a:4c:
4a:39:ab:7e:51:9d:75:7c:35:46:3f:ec:e7:a8:d9:
13:6c:50:f1:9d:a5:48:d2:ca:ad:a5:8a:98:39:f2:
bb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:F6:4E:2E:79:55:F7:B2:7B:CC:ED:70:E3:9A:97:6A:F4:48:47:29
X509v3 Authority Key Identifier:
keyid:69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:66:7d:00:5e:b6:61:1a:17:f6:1a:96:c3:7d:70:60:2d:4d:
d2:c9:6b:a4:e5:a0:fa:63:b0:4f:5a:ce:37:ce:56:9c:31:e0:
fd:99:4d:68:1a:d2:21:17:f6:ec:59:c3:b4:4a:38:a1:2e:d9:
49:f6:4e:b7:a5:d7:d9:be:59:e7:f4:e8:db:a9:ed:10:d1:1d:
23:76:d2:86:1f:9b:03:26:18:7d:2b:09:59:aa:bf:0c:d2:6b:
cc:85:37:c9:27:0c:0a:be:77:08:41:db:98:6d:cf:e9:d5:12:
3a:b4:43:cb:43:48:ce:26:1d:89:d6:0d:34:96:64:4d:f1:0f:
37:2a:f0:04:70:b3:5a:0b:f9:34:07:d8:4f:08:a5:8c:7b:2a:
d9:d4:cd:5f:fb:6c:d7:a6:3d:6a:c6:77:e1:a6:3e:21:08:d4:
d0:ed:1e:9d:44:e7:47:40:de:b0:88:54:78:df:5c:0f:9e:59:
04:7b:dd:bb:13:ac:fc:3d:4c:7d:c1:ef:68:25:c4:43:90:b3:
1d:9d:89:bb:31:af:83:88:bd:31:83:31:78:21:f9:5b:47:5b:
2c:44:6b:0f:af:73:36:6d:eb:a6:ce:fb:3a:20:6a:64:1f:38:
c4:63:5f:4d:a8:1a:6d:b8:e3:82:0b:40:87:9a:1c:ee:7f:50:
6b:cd:f8:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:42:53 2025 by rpki-client