Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft
File: AguJY5thIAOqgSvktlIbVnhFao4.mft (raw, json)
Hash identifier: U+rD1kH+7PhGCISfJ29MjJQRZLb/OF8jJvDhYLMPTIg=
Subject key identifier: 06:1B:45:C8:D3:7F:B6:E8:90:85:BA:32:27:DD:C0:B5:8E:8F:6B:E5
Authority key identifier: 02:0B:89:63:9B:61:20:03:AA:81:2B:E4:B6:52:1B:56:78:45:6A:8E
Certificate issuer: /CN=020b89639b612003aa812be4b6521b5678456a8e
Certificate serial: 0198D404A6110FC90B9AAC3C36AF134EE024
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft
Manifest number: 03AA
Signing time: Fri 22 Aug 2025 23:02:11 +0000
Manifest this update: Fri 22 Aug 2025 23:02:11 +0000
Manifest next update: Sat 23 Aug 2025 23:02:11 +0000
Files and hashes: 1: AguJY5thIAOqgSvktlIbVnhFao4.crl (hash: UQUsl1cvRs3OioJ2Zc8Jf+8JCgbQhYPhcDVx3YkwU3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:a6:11:0f:c9:0b:9a:ac:3c:36:af:13:4e:e0:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=020b89639b612003aa812be4b6521b5678456a8e
Validity
Not Before: Aug 22 23:02:11 2025 GMT
Not After : Aug 23 23:02:11 2025 GMT
Subject: CN=061b45c8d37fb6e89085ba3227ddc0b58e8f6be5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a1:8c:1d:8a:92:15:b9:ef:46:d6:94:c1:46:
12:fd:6d:7d:85:08:80:a0:a7:20:21:b9:2e:f0:a2:
92:f1:c7:36:f4:6a:75:98:6e:b7:68:c0:96:d9:47:
4f:d5:0a:c3:88:68:98:f8:36:c5:ad:00:85:46:e7:
2b:35:1e:56:6f:5d:45:01:c5:5f:c2:df:ad:77:69:
4f:6b:34:13:bb:7f:00:90:fb:79:45:11:9e:4c:07:
10:35:ec:f8:40:8d:b4:4b:6f:80:ad:50:6c:e0:21:
17:c0:68:e5:91:e0:4d:45:ab:c3:7d:9f:66:60:69:
f5:ac:83:47:fc:c1:62:da:41:35:37:a1:bd:bf:cf:
c1:90:10:29:ba:d8:35:55:f0:a5:e8:30:3a:46:9f:
ec:7e:59:1a:1e:0d:2c:fe:7c:26:84:0c:9e:39:4b:
5a:c6:a5:49:f0:81:db:53:96:ce:6a:64:25:6d:a0:
ef:6a:91:c0:82:cf:78:fe:6c:1a:05:70:e1:d2:cc:
94:a8:95:de:49:de:ea:2b:54:21:6a:19:6a:0b:a8:
e8:a1:27:94:55:f7:a4:68:87:53:ac:95:b7:86:f5:
dc:b6:eb:a6:21:cb:ca:41:de:79:35:e2:36:39:22:
69:e4:e0:ec:61:ec:71:74:66:47:cf:4f:de:d7:67:
54:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:1B:45:C8:D3:7F:B6:E8:90:85:BA:32:27:DD:C0:B5:8E:8F:6B:E5
X509v3 Authority Key Identifier:
keyid:02:0B:89:63:9B:61:20:03:AA:81:2B:E4:B6:52:1B:56:78:45:6A:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:78:94:cd:06:ed:3c:f9:b7:79:b0:f0:f7:14:81:cb:03:d5:
9d:7c:d0:51:a5:81:b2:ca:c1:f0:dd:df:ad:41:2e:af:e8:1d:
42:53:84:9a:ed:f7:ac:6f:cc:1b:7a:04:36:25:3f:f4:23:65:
d2:06:bf:bf:d9:71:93:4b:fc:0a:4e:47:b3:ef:c0:76:7f:3f:
bd:c3:a5:e0:be:82:a6:d0:32:90:1f:30:bf:bf:99:ec:c7:42:
ca:df:ba:13:d0:c3:df:2f:28:fa:ca:34:14:c9:16:04:9b:83:
02:f5:3b:26:69:9b:8d:2b:a5:d9:4b:73:78:7d:e2:5f:df:04:
ca:6c:b0:03:7f:d0:56:17:9e:a0:36:39:a1:d4:39:5a:e3:66:
6e:a3:18:b8:63:f7:2a:3c:41:2e:93:48:3c:1a:76:8c:a7:df:
86:1d:45:9f:d4:fb:da:df:f4:e9:c3:c0:80:71:bf:31:2b:0a:
38:21:dd:6d:ed:74:67:85:f1:6e:06:ea:7e:21:eb:bf:6b:57:
18:cb:98:bc:4b:bd:a3:1d:72:dd:d1:70:37:2d:85:2a:98:5e:
22:3f:0e:f2:e6:52:b6:d6:ac:95:34:b0:21:56:bd:be:86:63:
8b:29:d5:56:f3:2a:6f:b8:5c:34:49:8f:ba:95:b8:35:c9:60:
6c:08:3f:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:31:47 2025 by rpki-client