Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
File: afAHCvh31rmGswe5vATvGcRAQz0.mft (raw, json)
Hash identifier: /xbXxIlWzEB6PqgKTruLodsdcfhtJhdBpYR4G5dZ1Iw=
Subject key identifier: 33:F7:54:7C:06:BB:41:87:48:9C:51:E8:C4:AB:25:22:EB:24:AB:AF
Authority key identifier: 69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
Certificate issuer: /CN=69f0070af877d6b986b307b9bc04ef19c440433d
Certificate serial: 0198D4723B4F09A23A2105542ECE88F7CDC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
Manifest number: 087D
Signing time: Sat 23 Aug 2025 01:01:52 +0000
Manifest this update: Sat 23 Aug 2025 01:01:52 +0000
Manifest next update: Sun 24 Aug 2025 01:01:52 +0000
Files and hashes: 1: 5m0E4hrlymj_oPq4RutDZTBvpFc.roa (hash: D3u2GpmWvvHTn4HOSLwFPi92ntWCyeD4rYP1qp5He0g=)
2: afAHCvh31rmGswe5vATvGcRAQz0.crl (hash: zxHF0i3vYun/3D7nVt6L006PUHwEUvWy18lQtVAXaos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:3b:4f:09:a2:3a:21:05:54:2e:ce:88:f7:cd:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f0070af877d6b986b307b9bc04ef19c440433d
Validity
Not Before: Aug 23 01:01:52 2025 GMT
Not After : Aug 24 01:01:52 2025 GMT
Subject: CN=33f7547c06bb4187489c51e8c4ab2522eb24abaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:40:f8:73:ab:b4:5c:5b:1d:65:77:d5:ff:49:
b1:00:2c:2a:a1:d5:18:24:b6:4f:da:d6:e8:0f:83:
a8:19:47:cd:35:e5:ba:25:a8:de:e1:51:23:15:d2:
8d:45:d0:2a:99:60:a2:83:78:7f:c0:88:05:6d:6b:
6d:b4:0d:fa:08:cc:64:d0:51:6b:55:1c:e0:be:1f:
68:e6:41:6f:a9:27:6d:b0:71:6d:26:9b:07:0b:1b:
00:04:44:cd:ec:5b:f9:8a:f9:23:dc:cc:d7:ad:16:
fc:a1:9d:1d:97:c8:ef:d9:b7:5c:6b:f3:4e:3f:9c:
36:ad:9c:8a:17:cb:8f:0c:d9:19:a1:5e:0d:65:91:
42:fd:46:97:50:ab:23:64:12:63:e2:27:ed:c9:1e:
69:4b:a0:15:07:00:f5:23:7e:d8:02:cb:05:2d:ad:
6a:8b:dc:88:12:6f:26:61:0e:d7:52:c6:25:0e:2e:
58:bb:0f:24:85:5f:ee:d4:0a:12:27:79:49:de:18:
68:a3:00:10:4e:b3:03:23:0c:bb:c6:45:d5:ca:69:
ba:1e:94:5f:37:c4:4d:52:23:84:4e:d2:9d:c2:e6:
50:2f:c3:32:e8:b2:6c:f7:59:5c:4e:f2:b3:ea:5b:
ed:f0:e8:30:ec:6a:4e:b0:7e:5c:26:79:fc:5a:09:
85:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F7:54:7C:06:BB:41:87:48:9C:51:E8:C4:AB:25:22:EB:24:AB:AF
X509v3 Authority Key Identifier:
keyid:69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:58:18:c7:19:7a:5f:6f:99:69:81:a3:4d:5a:1e:de:90:bb:
59:13:82:0c:cb:a0:12:75:34:2e:58:06:18:f9:4d:f4:84:e9:
f7:b6:8d:ef:7b:55:15:c5:9a:96:18:bd:ed:7f:06:c3:9c:f7:
ab:cc:9b:7e:93:85:ca:59:a9:2d:56:d8:a4:99:ad:95:ff:40:
3f:f1:c3:7b:dc:52:c8:25:9c:16:77:24:95:99:2c:ed:a1:f4:
b8:53:4d:34:77:70:44:3f:4e:71:b6:98:55:54:2b:4d:17:56:
07:35:12:e7:e9:35:9e:f8:f4:e9:21:7d:97:37:23:91:e6:94:
53:c0:64:de:e7:00:c9:c6:95:ee:36:9f:74:9b:3f:9a:ce:0a:
5e:2b:c1:28:b7:9e:fb:50:e2:c3:66:ad:5b:1c:fc:01:c0:d1:
46:71:0e:d9:55:5a:3f:4f:3c:88:82:19:e2:22:fd:78:d1:80:
16:fd:e8:ba:62:3f:8f:ed:87:f7:0d:a6:66:f0:bb:1e:31:bc:
cf:37:2d:7d:b2:72:c4:14:1b:2d:c4:a2:89:5e:96:a1:8c:9d:
fb:39:39:43:3c:6d:a5:e1:b5:c9:dc:18:b7:24:e9:8d:49:7f:
f9:62:c0:1a:a2:95:60:bb:57:95:33:33:ed:d6:af:30:d7:9c:
03:0e:a0:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:44:26 2025 by rpki-client