Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft
File: AKTVv_pzY0hD6QPjexj97g2sWFs.mft (raw, json)
Hash identifier: bNNjtmaOwpRqgUCOC+S/QHhJ8q1hqrpS8HncTuJPPoE=
Subject key identifier: B6:BC:26:8C:62:DD:14:2B:05:4A:B2:73:9B:67:4C:27:66:C7:14:0D
Authority key identifier: 00:A4:D5:BF:FA:73:63:48:43:E9:03:E3:7B:18:FD:EE:0D:AC:58:5B
Certificate issuer: /CN=00a4d5bffa73634843e903e37b18fdee0dac585b
Certificate serial: 0199FDD8C2D1BAAC4FAA6BE57C33499FD05E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AKTVv_pzY0hD6QPjexj97g2sWFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft
Manifest number: 0207
Signing time: Sun 19 Oct 2025 19:01:05 +0000
Manifest this update: Sun 19 Oct 2025 19:01:05 +0000
Manifest next update: Mon 20 Oct 2025 19:01:05 +0000
Files and hashes: 1: AKTVv_pzY0hD6QPjexj97g2sWFs.crl (hash: i616cN+n1yO4Oiv3sMpS8o/+XHScK6NEh/DkflW9eKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/AKTVv_pzY0hD6QPjexj97g2sWFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:c2:d1:ba:ac:4f:aa:6b:e5:7c:33:49:9f:d0:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00a4d5bffa73634843e903e37b18fdee0dac585b
Validity
Not Before: Oct 19 19:01:05 2025 GMT
Not After : Oct 20 19:01:05 2025 GMT
Subject: CN=b6bc268c62dd142b054ab2739b674c2766c7140d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:06:66:65:3d:f4:9e:ad:a3:e6:f0:00:13:0e:
f6:18:72:cc:87:f4:f7:9e:83:8d:08:9f:1e:71:0e:
8c:0a:1f:7d:77:8a:73:46:05:23:c0:73:59:69:6c:
30:cd:4d:61:ee:28:6a:de:11:b3:ce:10:95:01:e5:
2b:fc:fc:d8:c0:98:a3:74:e0:6b:28:17:d9:63:c8:
01:69:b1:fb:a5:03:d6:b2:31:41:3d:92:a3:e1:0f:
72:68:99:74:a1:c2:36:47:ee:f6:a0:b4:cf:c3:64:
4d:40:b4:c1:ca:03:e0:65:1e:6d:43:8b:fd:8e:cd:
fb:8d:b4:65:db:12:e5:c4:65:c3:9c:5b:df:b9:56:
42:e3:13:7a:a0:ad:97:89:90:cb:57:fb:32:2e:6c:
2f:0a:40:4f:80:00:5b:b6:16:58:71:65:bf:65:ef:
53:23:2b:9c:1b:0c:52:ea:9e:a9:94:47:35:10:8e:
69:58:32:c5:9b:44:38:45:cd:23:bb:be:c0:74:43:
cd:8d:a4:63:2d:7f:40:39:f9:3c:99:06:99:9d:13:
e1:55:7c:7c:d2:4b:93:3f:2b:ef:e0:53:7e:bc:99:
ae:2a:f7:f5:de:05:13:fd:4c:0c:28:04:b7:21:c3:
cd:64:52:7f:9c:66:a9:a2:3e:11:1b:bd:86:d9:3f:
6e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:BC:26:8C:62:DD:14:2B:05:4A:B2:73:9B:67:4C:27:66:C7:14:0D
X509v3 Authority Key Identifier:
keyid:00:A4:D5:BF:FA:73:63:48:43:E9:03:E3:7B:18:FD:EE:0D:AC:58:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AKTVv_pzY0hD6QPjexj97g2sWFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:d9:c9:8d:6d:93:ef:77:f8:ba:d8:01:48:f7:91:e4:72:7e:
42:d5:b3:11:78:0f:6c:49:d7:d1:1d:3d:97:ec:3a:c2:24:9d:
09:53:4b:2f:ab:87:09:e9:ee:9c:4b:b2:8c:fe:06:68:91:17:
bd:31:97:5c:6e:c7:1e:3a:a4:01:e5:23:3e:8a:00:99:7b:0d:
1f:ae:3d:73:01:fc:02:a7:f4:9f:79:81:40:5e:d2:7e:73:b9:
a0:7e:38:9c:71:97:8f:8b:f5:d5:3d:e6:ec:5f:5a:fb:c5:48:
ff:bb:06:60:f7:eb:f2:54:db:1c:03:87:c8:06:02:b2:aa:5f:
8f:a5:7c:7c:dd:fd:c4:c1:9a:df:da:71:41:c2:49:85:ae:01:
47:ac:21:68:83:ce:79:68:84:d6:8c:a0:65:5a:be:10:cd:3c:
fd:b4:13:ae:f5:6c:e9:02:8c:61:b8:f3:36:de:5c:aa:55:08:
72:97:d6:e0:d0:14:6a:1e:5d:82:60:9d:8d:ab:03:67:74:7e:
b7:70:e3:43:0b:b6:2f:7d:c7:b2:dc:f3:e9:49:7b:63:97:ee:
63:30:ef:76:1d:39:2c:dd:69:5a:e1:08:92:32:a4:2c:cd:17:
60:eb:f6:12:8c:5c:59:e1:91:ec:88:eb:d2:bb:08:ba:ff:21:
67:67:86:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:11:38 2025 by rpki-client