
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
File: APfVbNN-MeClJfW7GluvX0meQG0.mft (raw, json)
Hash identifier: cSKlMS/5+HMoZUcz4JBZS9eG81aNxQJLbMaSLydw1bs=
Subject key identifier: E2:32:D0:3C:1F:97:76:E3:88:59:A9:24:53:A0:1C:67:B9:DA:F8:63
Authority key identifier: 00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D
Certificate issuer: /CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
Certificate serial: 0199FAA0C20ABF8D7299581AFF47532585E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
Manifest number: 1636
Signing time: Sun 19 Oct 2025 04:01:03 +0000
Manifest this update: Sun 19 Oct 2025 04:01:03 +0000
Manifest next update: Mon 20 Oct 2025 04:01:03 +0000
Files and hashes: 1: APfVbNN-MeClJfW7GluvX0meQG0.crl (hash: tahvC/20PY9KL1jZOdKqHeBkW8oBEZ8Hw1XoaQCtLGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a0:c2:0a:bf:8d:72:99:58:1a:ff:47:53:25:85:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
Validity
Not Before: Oct 19 04:01:03 2025 GMT
Not After : Oct 20 04:01:03 2025 GMT
Subject: CN=e232d03c1f9776e38859a92453a01c67b9daf863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:48:8d:e6:c9:90:6d:50:ce:0e:47:91:a1:7c:
0e:e4:cb:84:37:6f:31:94:93:82:ae:c7:fd:37:b7:
e2:11:ba:b7:fe:53:b8:88:01:d8:6b:46:cd:03:06:
f9:32:14:61:1d:aa:75:f4:49:e7:24:c6:4e:c4:46:
64:2b:29:e6:72:aa:8e:f9:64:e4:8f:d9:9a:5b:fb:
89:e0:7d:40:a4:43:ae:cf:94:26:ea:93:d7:bf:37:
f1:41:6a:26:38:e5:ff:22:7e:95:10:8a:4a:bd:42:
eb:6f:b2:e1:22:06:a7:9b:47:78:8c:92:ec:26:24:
dd:58:f0:39:78:9a:75:c7:4d:d5:47:e9:a1:0a:cb:
5b:00:7c:81:94:cb:a6:1d:0a:6e:81:66:46:4e:65:
b5:2c:84:56:48:bd:04:3c:85:3e:00:94:37:e6:2e:
f5:53:0c:43:f2:13:e8:f0:f8:5a:b2:f7:50:bf:85:
39:34:db:d9:2d:ad:63:d3:e6:9a:5d:ab:37:5c:c1:
b4:e6:92:6d:57:11:ad:2d:dc:63:f4:a4:ba:93:a7:
3b:99:6c:bf:6c:0c:d4:45:81:77:30:19:2a:a5:07:
34:c4:a0:1c:9f:ed:ca:7f:76:5e:93:0a:52:38:d2:
1c:55:1c:d5:2a:e8:d0:f8:85:e2:0b:15:94:24:19:
e2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:32:D0:3C:1F:97:76:E3:88:59:A9:24:53:A0:1C:67:B9:DA:F8:63
X509v3 Authority Key Identifier:
keyid:00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:ff:a8:59:0e:3c:92:41:5c:82:9e:be:4d:77:ff:0a:cc:bb:
28:e8:78:13:2e:3a:e6:39:06:ca:37:3f:20:3f:48:56:23:ad:
42:fc:74:82:2e:e7:35:f2:9d:88:5f:4b:53:76:9f:18:01:64:
08:95:17:1a:9d:7e:16:2f:09:21:59:36:fb:54:6a:2b:c4:fa:
d0:44:a5:fd:9e:eb:1c:89:4a:f0:e9:b7:c2:43:14:dd:74:33:
a2:0f:76:dc:4f:2c:89:8d:53:11:b8:91:19:31:dd:16:b4:b6:
11:ec:f5:46:aa:c1:d7:0c:70:53:bd:fe:21:e8:f7:e6:75:6c:
02:1e:32:62:a1:34:f9:6b:26:28:80:8b:5d:8f:61:1c:64:38:
e7:b7:b2:38:e4:48:13:71:73:ce:ad:61:45:5c:b0:3e:8e:b2:
dd:88:8f:c4:e3:3e:8c:15:41:e3:d6:09:f5:8c:31:b4:4c:05:
3d:bb:d8:2a:bd:1a:d2:4d:7d:99:e5:8a:a8:e3:79:70:8d:4a:
ca:ba:bd:48:17:db:52:1d:63:8b:20:f1:31:b6:18:91:62:fb:
13:23:fb:3c:70:a5:09:88:7f:28:cb:21:ea:ef:ff:a1:b4:a9:
64:73:5b:85:65:80:43:a3:51:8f:8d:3c:26:be:57:f5:97:34:
d8:aa:ef:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:05:46 2025 by rpki-client