Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
File: AFA0jPYGQvVOyQck3niqoD3NOOE.mft (raw, json)
Hash identifier: n3R39BWctWpw8dadimS7uOTy8d+yUnHWlSNY/n/ZQik=
Subject key identifier: 14:F8:BE:FC:D6:BC:48:DB:4B:D8:E9:51:A2:E8:C6:EA:CF:EF:29:98
Authority key identifier: 00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
Certificate issuer: /CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Certificate serial: 0198D65F8115F4B870A1185037A86DEE2D1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
Manifest number: 0DF5
Signing time: Sat 23 Aug 2025 10:00:39 +0000
Manifest this update: Sat 23 Aug 2025 10:00:39 +0000
Manifest next update: Sun 24 Aug 2025 10:00:39 +0000
Files and hashes: 1: AFA0jPYGQvVOyQck3niqoD3NOOE.crl (hash: LVuKVu7M9HLcdSYeN+ppr62mF6rltu2TpEJGc1xiUKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:81:15:f4:b8:70:a1:18:50:37:a8:6d:ee:2d:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Validity
Not Before: Aug 23 10:00:39 2025 GMT
Not After : Aug 24 10:00:39 2025 GMT
Subject: CN=14f8befcd6bc48db4bd8e951a2e8c6eacfef2998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:01:f9:93:e7:68:9a:60:7f:2e:16:75:cc:05:
68:98:c7:52:a7:42:45:67:5d:0b:d6:b2:82:fd:51:
68:14:1a:be:4e:1a:50:70:6d:65:03:14:0e:5b:f2:
06:a7:89:ee:6f:ef:58:14:22:88:dd:bf:51:07:b0:
41:e2:0e:b8:7e:69:da:15:6d:c4:fd:a1:23:d7:d3:
89:cb:58:4a:f2:bb:11:f8:20:3e:ad:fc:24:05:49:
3a:30:0e:8c:c0:2a:93:02:6a:a2:32:9e:8c:3c:06:
40:23:4f:f7:8b:e7:12:2f:a1:9e:ed:19:1c:3b:43:
3d:da:80:0b:d0:8d:d4:a8:73:a1:91:24:7c:ce:cd:
9f:d5:a3:11:48:81:d6:97:e3:b3:24:4e:8e:0b:f3:
53:de:87:eb:ad:48:6e:a0:3c:62:1a:4c:dc:6e:59:
21:62:1e:bf:2b:75:de:fe:1c:9e:74:82:5e:de:72:
ff:83:b5:71:4f:f5:b5:d2:3f:a2:27:ab:1b:8e:fc:
3a:66:29:63:ed:9f:7d:43:95:bc:a8:f1:ca:97:f2:
e2:a2:04:f3:4b:86:71:46:da:f7:92:fe:81:c4:6e:
b7:27:75:f6:4c:63:59:bc:54:8e:8e:4b:db:d4:53:
32:4f:aa:ee:c9:80:c1:e7:32:fe:93:79:11:0b:05:
b3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F8:BE:FC:D6:BC:48:DB:4B:D8:E9:51:A2:E8:C6:EA:CF:EF:29:98
X509v3 Authority Key Identifier:
keyid:00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:05:57:e3:5c:b0:25:8c:97:50:ff:73:0e:ef:ca:85:4c:39:
f1:eb:1c:d9:28:3e:7a:f6:4e:3e:37:0c:c1:af:13:f6:94:bf:
d9:20:1a:a3:55:a5:6d:c3:b7:33:e7:f6:98:e7:b2:db:03:77:
39:43:ae:74:02:14:15:a2:a0:ba:95:2d:49:a1:54:aa:82:76:
a6:e8:0f:48:8c:fb:92:6e:d7:92:f0:b6:2c:44:10:1f:a1:f8:
05:44:b7:50:08:0f:63:2f:f4:83:4d:65:2b:c6:2e:80:e8:8d:
e1:48:94:4e:f3:13:50:d9:d5:80:76:ec:3d:d5:1d:08:64:15:
26:97:41:88:61:3e:59:32:f8:cc:42:2a:d9:9d:8d:dc:2a:e9:
bd:f2:e8:4f:da:60:67:9a:cb:7c:b4:d3:27:00:07:a9:0b:95:
93:10:d2:c6:f0:ac:0a:a1:58:b1:13:5e:5d:30:d7:0d:d3:01:
b1:46:4a:e2:31:5c:4f:7d:81:b6:c3:97:5c:52:4d:72:9b:b8:
28:10:37:1f:20:c3:49:60:e5:08:0a:46:51:03:89:52:e8:52:
ab:fd:62:d6:f3:1c:d7:2c:58:c1:ac:60:4f:5f:6d:36:48:4a:
71:12:39:78:d8:71:78:de:a1:c6:fd:01:cf:96:3c:1a:64:46:
9d:ea:6e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:30:49 2025 by rpki-client