Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft
File: AVgEEYI7SHN2g27WavP4qrsgEZw.mft (raw, json)
Hash identifier: 2E+BIhpgSnM+lu5jOR68CiA/bOL2McOKhKGH5hmYNbU=
Subject key identifier: 13:61:8F:8B:D9:EC:23:F7:7E:1B:DE:F9:57:17:F3:53:0E:3B:7D:20
Authority key identifier: 01:58:04:11:82:3B:48:73:76:83:6E:D6:6A:F3:F8:AA:BB:20:11:9C
Certificate issuer: /CN=01580411823b487376836ed66af3f8aabb20119c
Certificate serial: 0199FDD957AAA012CA297CF2482B40045CBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVgEEYI7SHN2g27WavP4qrsgEZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 19:01:43 +0000
Manifest this update: Sun 19 Oct 2025 19:01:43 +0000
Manifest next update: Mon 20 Oct 2025 19:01:43 +0000
Files and hashes: 1: AVgEEYI7SHN2g27WavP4qrsgEZw.crl (hash: 2SD8k34M5uF2Ru2EynKQpP/BSSCPeWvZB2ogx5HuJf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/AVgEEYI7SHN2g27WavP4qrsgEZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:57:aa:a0:12:ca:29:7c:f2:48:2b:40:04:5c:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01580411823b487376836ed66af3f8aabb20119c
Validity
Not Before: Oct 19 19:01:43 2025 GMT
Not After : Oct 20 19:01:43 2025 GMT
Subject: CN=13618f8bd9ec23f77e1bdef95717f3530e3b7d20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:98:8e:85:5d:2d:9b:db:5b:eb:d5:d1:63:5d:
74:9c:0a:0d:8e:3d:c2:60:73:a8:00:c1:87:43:0e:
16:b5:0a:ee:84:e8:4a:89:b5:b4:49:fd:aa:73:48:
3b:45:21:cb:ee:ac:0b:b7:f4:a1:83:29:36:67:bf:
b1:60:b5:eb:87:80:7c:c1:18:5c:60:39:bd:b1:01:
3d:e2:50:8b:36:88:78:eb:4f:b4:7f:1f:c3:c0:92:
98:a4:44:11:f6:a5:d9:11:e2:7d:35:56:94:30:89:
a5:34:76:f1:01:6b:d2:93:3e:cb:39:95:93:4b:8e:
85:e3:3b:11:64:55:b0:a3:4f:fd:63:d5:63:fc:ef:
dd:c3:53:4c:78:05:ed:22:86:5b:75:52:ab:67:6a:
fa:7d:12:18:68:14:68:3a:2f:eb:44:64:ac:a0:be:
ed:18:f7:88:0a:55:b8:8e:9f:58:51:5a:5f:88:65:
70:45:72:30:0e:86:67:de:11:23:3e:d1:45:ca:b4:
8e:76:23:fc:92:7d:59:fd:08:1d:23:45:8a:28:c9:
c2:24:54:3d:2a:0c:56:0b:bc:fd:c5:8d:b8:fe:c6:
86:10:99:15:bc:24:21:66:6b:47:47:42:6c:28:b9:
ee:14:3a:c4:b4:e6:29:ca:d2:89:3c:3a:c5:4e:39:
3f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:61:8F:8B:D9:EC:23:F7:7E:1B:DE:F9:57:17:F3:53:0E:3B:7D:20
X509v3 Authority Key Identifier:
keyid:01:58:04:11:82:3B:48:73:76:83:6E:D6:6A:F3:F8:AA:BB:20:11:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVgEEYI7SHN2g27WavP4qrsgEZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:89:a1:a7:b0:63:1b:12:f6:12:d0:64:8d:f4:83:f5:9e:85:
dd:8e:ae:ae:0e:b0:11:08:1e:e0:29:c7:72:dd:1b:13:34:61:
41:8d:ab:78:c3:02:40:04:cf:c0:83:ae:7a:32:11:ab:de:49:
2c:b2:cb:52:8b:23:01:d1:f8:23:40:d5:7f:dc:9c:56:dd:39:
d8:13:58:bb:43:ab:25:76:07:56:48:3a:47:d1:1e:e9:48:ee:
a5:d4:aa:1c:12:df:97:cc:31:4e:5a:19:93:5b:e0:34:a3:cd:
8d:3b:2a:3f:e6:dc:18:bb:62:fc:cd:52:ce:c3:9c:d1:b3:b2:
63:5f:6a:81:a4:41:e2:86:0d:d5:e7:9a:f4:3f:89:c4:bf:57:
12:6e:6e:dd:11:90:af:46:37:10:fa:c0:93:2c:9d:87:ce:4a:
07:e1:16:65:d0:47:86:d1:d9:f0:2a:06:d6:1c:fb:a2:c8:b3:
b3:90:32:47:da:d9:4e:57:a4:5d:5b:f8:3e:29:cc:41:55:95:
55:7b:95:fe:55:f6:5d:e8:61:ca:f0:eb:a3:94:b7:dc:ce:f5:
66:ac:8c:01:82:d8:f1:11:79:8d:d7:76:9f:6f:96:29:d5:e6:
03:6d:8e:03:a4:ca:4e:82:12:32:3c:1f:0b:1b:45:bf:b1:ae:
ad:d0:d6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:50:48 2025 by rpki-client