Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
File: A_P-YHUIK-jliDKbQ9dhv257AdA.mft (raw, json)
Hash identifier: U7RM2MJqrep3JwoMycl1XLWz6OGA29M8SklPRwgiBSE=
Subject key identifier: AF:B9:DB:52:21:16:95:8D:1D:4A:00:D8:A6:77:34:BE:2C:A8:5F:F8
Authority key identifier: 03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
Certificate issuer: /CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Certificate serial: 0199FF22B88A54B22F4F31261EE048179526
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
Manifest number: 0917
Signing time: Mon 20 Oct 2025 01:01:29 +0000
Manifest this update: Mon 20 Oct 2025 01:01:29 +0000
Manifest next update: Tue 21 Oct 2025 01:01:29 +0000
Files and hashes: 1: A_P-YHUIK-jliDKbQ9dhv257AdA.crl (hash: v54VcNeN2/PoIITY3YA+RAbFi3WwXXW5uTkfKDcCjyY=)
2: GMddGlwOUgIDge3f8eQvwQ1gYQ0.roa (hash: QAV4lTR4VFMsoAaetMGZqb1bPsXXa7Ze2H+bxF4CIzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:b8:8a:54:b2:2f:4f:31:26:1e:e0:48:17:95:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Validity
Not Before: Oct 20 01:01:29 2025 GMT
Not After : Oct 21 01:01:29 2025 GMT
Subject: CN=afb9db522116958d1d4a00d8a67734be2ca85ff8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f4:f9:fa:25:20:ad:72:e5:0a:70:87:00:bc:
ce:0d:f7:db:bf:9f:76:7d:a9:1b:b3:a8:24:14:ed:
16:a0:f2:a7:7b:d7:45:c1:7c:16:52:a4:a9:2d:0c:
68:8d:8a:b0:32:b5:9e:62:9c:a2:db:7a:6f:18:74:
e9:aa:e2:c1:ec:ea:56:98:05:eb:fe:42:f7:e6:a4:
e5:b0:a8:7e:86:09:82:93:9f:e4:0c:f6:45:fb:25:
8e:12:6a:43:fc:bb:be:13:c4:fe:f6:c6:a6:3b:91:
08:b3:34:bf:5f:58:96:96:32:68:ca:0d:49:07:89:
88:c2:ae:37:89:04:8b:38:8e:4d:08:d5:4c:5f:f0:
7f:bb:60:cc:ff:27:92:1d:c2:76:d4:b6:19:61:6f:
1c:b7:46:ec:da:0a:5c:c8:31:e7:79:a2:b9:00:52:
b6:4c:03:f6:76:35:1e:d3:0d:58:be:2b:4a:11:a6:
93:af:95:a8:7b:38:ad:d3:99:16:6f:2c:2e:7a:e1:
b9:84:35:f6:47:b5:b0:ae:52:39:c3:5c:94:8d:65:
f7:e1:9d:a6:ca:19:87:e5:6f:5f:d0:da:11:c6:6a:
d8:9f:82:98:76:0e:18:01:a3:db:1c:64:a0:11:d6:
3c:b4:80:e6:f6:fc:c1:e3:75:87:f2:30:98:40:18:
97:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B9:DB:52:21:16:95:8D:1D:4A:00:D8:A6:77:34:BE:2C:A8:5F:F8
X509v3 Authority Key Identifier:
keyid:03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:a3:c6:c9:3e:b0:31:5d:80:8d:59:24:60:67:32:2b:36:c0:
ac:20:e4:88:eb:f4:71:96:20:84:39:7b:8d:6b:28:b8:d1:32:
ff:f2:1c:25:8e:9f:87:6c:f1:0b:21:db:5d:f3:66:9d:d9:8a:
6f:6a:60:54:16:b7:fb:ad:71:8b:0a:77:f0:d1:52:f1:69:5c:
c5:b5:2f:97:d1:ba:c7:ea:bc:78:a2:f0:6e:4a:66:86:09:49:
12:85:1b:d2:a0:4b:9a:69:f5:73:6c:00:4d:5c:f7:ca:5d:67:
a0:dd:e1:22:3e:87:19:c1:14:a2:ec:84:54:d6:be:f3:4f:65:
5b:13:a0:50:de:2f:d3:1b:70:80:36:ed:3c:4b:fb:14:86:bc:
80:f8:56:93:ba:dc:42:80:6d:42:9b:e7:fc:70:9e:d1:1c:c4:
82:53:89:da:37:80:59:a6:45:ef:16:62:ff:a8:2b:47:02:de:
18:aa:1d:8e:c6:57:e8:9f:14:d2:20:31:52:cf:e9:4e:ad:53:
00:e7:b3:7e:08:c1:7d:38:b1:26:6a:fe:e7:62:b7:18:9f:dd:
5d:70:d4:bc:7c:b9:7b:c6:69:6d:a5:17:06:7c:93:a0:74:ea:
f7:6e:6c:f2:f3:ec:18:09:53:e1:ec:e3:10:43:75:64:a4:d4:
eb:99:a5:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 07:10:40 2025 by rpki-client