Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft
File: AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft (raw, json)
Hash identifier: oZ0+nzWWjrFj+kp69ATtmrspBVl3pGWiCJZOs7X3WwM=
Subject key identifier: 9B:D0:54:45:9A:E3:75:B9:FB:0D:07:C8:A2:C7:F6:E7:D5:B5:D9:0D
Authority key identifier: 01:53:88:51:16:7B:4E:3D:6F:64:D5:37:97:B0:8C:B4:13:71:87:0F
Certificate issuer: /CN=01538851167b4e3d6f64d53797b08cb41371870f
Certificate serial: 0198D54EB213F5C524203C5A8F4B2F1742D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 05:02:41 +0000
Manifest this update: Sat 23 Aug 2025 05:02:41 +0000
Manifest next update: Sun 24 Aug 2025 05:02:41 +0000
Files and hashes: 1: AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl (hash: iAOzwzC6F+yT9+/EoHMvefRoStvMAhYkO1mDQAyAIYg=)
2: voTBQK08ae5dJLLPC_WLTf299J4.roa (hash: IJFytwQyok533gq1H2eNYMHcRnLoiQur1Z7mEoU5py4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:b2:13:f5:c5:24:20:3c:5a:8f:4b:2f:17:42:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01538851167b4e3d6f64d53797b08cb41371870f
Validity
Not Before: Aug 23 05:02:41 2025 GMT
Not After : Aug 24 05:02:41 2025 GMT
Subject: CN=9bd054459ae375b9fb0d07c8a2c7f6e7d5b5d90d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ae:d8:83:b8:02:dc:d9:1c:e6:60:e0:dd:ef:
07:0b:91:49:5a:cf:9c:6d:a1:03:81:5a:9d:d3:55:
e0:61:ce:98:f0:f1:70:c2:15:63:86:cb:a4:bd:c4:
d6:bf:c7:c0:bc:31:2d:3e:fe:25:af:53:4d:0e:3b:
91:5c:38:47:a7:5a:6e:b6:e4:7c:a3:93:6a:4f:4d:
6b:9a:22:ae:5d:ca:3d:a5:91:8a:b3:93:99:82:95:
c9:dd:0e:91:b2:c1:00:80:9c:ca:60:b9:63:b3:d0:
4e:d4:9c:b9:98:ad:7a:85:00:5f:cc:8d:d6:ec:99:
b3:76:27:0d:02:a3:da:e0:0f:a7:d0:b4:dc:48:9e:
dc:a1:eb:04:44:fb:13:27:2e:3e:aa:c3:9e:b4:96:
c7:ea:4b:bf:d6:70:c5:3d:3a:e1:34:8a:d4:bb:84:
44:d3:f0:e8:bc:e7:33:ac:31:7e:5a:12:fd:23:62:
b5:e6:56:5a:9e:af:e5:04:ab:fc:20:ad:5a:b5:a5:
82:f4:db:43:85:ca:01:2b:04:75:21:c7:d8:78:7d:
26:c7:2e:f7:18:85:de:81:07:10:14:56:37:c9:fc:
2d:26:22:a0:7a:fc:a0:77:32:38:a1:7d:05:2f:fc:
fb:51:2a:84:ae:99:b2:81:98:39:15:38:65:31:a9:
17:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:D0:54:45:9A:E3:75:B9:FB:0D:07:C8:A2:C7:F6:E7:D5:B5:D9:0D
X509v3 Authority Key Identifier:
keyid:01:53:88:51:16:7B:4E:3D:6F:64:D5:37:97:B0:8C:B4:13:71:87:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:d9:e0:90:e0:29:79:90:b4:30:72:14:92:28:20:80:42:b9:
45:d6:ee:38:31:b5:ab:42:b6:f7:7a:59:1d:05:09:a1:7d:fd:
e1:e5:e3:b1:ab:b5:23:4e:bb:dd:a3:f0:c4:59:12:71:92:4d:
72:06:da:52:34:58:6b:58:08:31:14:b8:e5:ca:6d:a5:30:bd:
0f:6d:5b:89:b5:0c:4d:f0:fe:5d:9e:87:6c:09:73:d0:64:ec:
16:06:4b:04:43:ac:07:90:b0:58:31:54:cc:a9:9e:8d:a4:a0:
cd:e6:fc:cf:7a:c0:d6:94:9f:69:e6:ac:f3:6c:5c:6a:a8:38:
f8:33:0d:4f:0d:78:3a:61:9d:dd:53:00:e9:af:58:cc:c9:02:
d2:f6:f9:f0:33:db:f3:d5:38:6d:6c:a5:f1:9f:6f:5f:0c:61:
16:4c:f4:66:ee:8e:ba:a4:56:36:6d:41:9f:a5:4a:0e:8a:cf:
f5:5b:5c:5e:e1:37:e2:9f:c4:92:6c:77:2d:bc:db:ef:98:83:
6a:bf:e3:3d:f3:df:2c:1c:99:47:85:39:a4:cf:0c:66:34:1f:
d0:22:5a:2d:d1:31:67:3a:da:e0:f5:53:c2:8b:5c:61:8d:9b:
1f:48:18:8c:1c:d1:93:59:e4:96:df:72:7b:61:cb:4f:cf:35:
8b:b4:1a:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:47:01 2025 by rpki-client