Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
File: Afp6rPiShM693j1MEkYvxE3rw4Q.mft (raw, json)
Hash identifier: vpKflHUamglwFe8yF6VraYMoVxkrZNAwDfz+FayLSFs=
Subject key identifier: E5:50:23:13:11:96:6E:7A:E1:BE:95:0F:FE:2E:0A:A3:E2:DC:5A:B4
Authority key identifier: 01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84
Certificate issuer: /CN=01fa7aacf89284cebdde3d4c12462fc44debc384
Certificate serial: 0198D92BE041AD6161570F59A7C2E8E29483
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
Manifest number: 0BE7
Signing time: Sat 23 Aug 2025 23:03:07 +0000
Manifest this update: Sat 23 Aug 2025 23:03:07 +0000
Manifest next update: Sun 24 Aug 2025 23:03:07 +0000
Files and hashes: 1: Afp6rPiShM693j1MEkYvxE3rw4Q.crl (hash: CXkVB6ERV3aX0kCfa3h+85tx4b7T/6qG0pHnhMsd43M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 23:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:2b:e0:41:ad:61:61:57:0f:59:a7:c2:e8:e2:94:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01fa7aacf89284cebdde3d4c12462fc44debc384
Validity
Not Before: Aug 23 23:03:07 2025 GMT
Not After : Aug 24 23:03:07 2025 GMT
Subject: CN=e550231311966e7ae1be950ffe2e0aa3e2dc5ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a9:e4:97:e8:2b:43:a1:96:e5:4a:f7:c8:f9:
09:cd:2b:75:a3:76:63:ac:a3:61:36:b6:02:5c:95:
d3:19:29:ea:33:57:37:46:cf:00:e7:76:8b:38:8e:
f6:c0:8e:89:1f:d9:d8:55:d0:26:df:d5:15:15:c3:
5d:1b:94:6e:f7:14:89:ad:26:39:7b:82:4e:15:93:
49:b2:5e:96:c9:85:d1:b1:a7:0a:d1:fd:dc:0b:68:
fb:6f:aa:d2:a6:8b:80:2b:93:a7:54:58:32:36:79:
fd:64:e6:f3:0e:72:8e:51:32:01:5c:2d:ad:e1:dc:
fe:a7:79:a2:7c:81:d3:c6:a6:dd:4e:cc:ca:f0:21:
be:f3:bc:be:5a:0e:32:40:c9:bf:e1:e5:d0:af:b7:
ba:43:69:fa:c5:cb:28:2c:22:2f:bf:1c:dc:3e:7b:
98:23:c4:bf:14:1d:9c:78:f3:66:22:3d:ec:bf:ee:
67:70:09:2b:df:e1:18:dc:c4:42:c5:e1:4e:bf:f6:
2e:8c:34:b8:58:f2:e2:0c:1c:e6:6b:b6:5c:d3:df:
ec:0e:97:ba:53:48:e8:d4:51:60:79:64:22:07:1c:
ac:e9:c7:b2:d1:02:f6:a8:ee:f6:10:18:7a:78:84:
5f:b1:15:ce:b4:b3:01:4b:cc:7a:43:b2:4b:67:47:
33:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:50:23:13:11:96:6E:7A:E1:BE:95:0F:FE:2E:0A:A3:E2:DC:5A:B4
X509v3 Authority Key Identifier:
keyid:01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:94:fc:7c:76:87:1e:92:d4:be:e5:69:e0:4a:31:3e:7f:b7:
d0:d3:85:ee:8c:1e:c6:bf:c2:05:bd:8d:8f:93:e2:56:0a:b0:
0a:ea:61:b5:9a:ea:ac:05:95:8f:bc:50:f0:2e:16:1e:74:30:
90:1b:72:d0:13:73:de:34:e0:1f:51:de:6e:cd:7a:2b:4b:a7:
25:34:44:54:16:a9:c1:87:ee:f9:32:e3:48:4d:77:d8:db:2e:
9d:32:ec:82:e2:67:f8:cc:3d:99:f5:bd:a0:c7:4f:d5:52:90:
54:85:fb:8d:aa:79:b2:f1:c2:e3:68:0b:4e:7b:18:a6:3f:4a:
7c:c5:93:d9:40:ce:a1:ed:41:9b:19:60:b2:53:81:49:04:ba:
bd:c3:c8:1f:05:e6:a9:ce:11:6c:c9:01:cf:ac:92:d5:82:12:
a3:01:d2:c7:ba:05:49:60:50:18:49:36:8d:1b:57:15:6b:e0:
f9:ec:c5:75:e0:b0:7f:60:3f:8e:79:ad:7e:fc:cf:cd:c0:63:
fd:ce:37:40:e6:fe:d3:74:41:9e:08:71:35:01:89:fe:9f:f7:
b5:4e:9e:b5:45:1a:93:f5:ed:92:b2:7e:e5:34:05:0d:06:0f:
63:ea:93:d9:6c:33:70:2a:a6:fc:b3:ae:3b:fd:5e:e1:3c:79:
7a:46:5c:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 05:01:49 2025 by rpki-client