Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: k2nSUD69kPYNXexaonUllfH0VMRT8TrwNPJPOtSvHBM=
Subject key identifier: AC:C4:F9:44:98:8C:87:9B:BA:48:2B:86:9D:C7:6B:52:37:09:D6:13
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 0198D40460DE1A2AB07547DB0DB1FF1530AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 0AF0
Signing time: Fri 22 Aug 2025 23:01:53 +0000
Manifest this update: Fri 22 Aug 2025 23:01:53 +0000
Manifest next update: Sat 23 Aug 2025 23:01:53 +0000
Files and hashes: 1: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: 39noJ5reJjGP34ILNgi+0bTaJFTfXCrooE4wibuQRjM=)
2: tKwKl17jXwIeAtAZEyALLLwTexA.roa (hash: E9CmZ9NzF2HrbXjpDzFF0Gs0klh/PHaYx1PKsYvWrwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:60:de:1a:2a:b0:75:47:db:0d:b1:ff:15:30:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: Aug 22 23:01:53 2025 GMT
Not After : Aug 23 23:01:53 2025 GMT
Subject: CN=acc4f944988c879bba482b869dc76b523709d613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e8:f7:88:40:11:e4:46:47:76:4c:37:0f:97:
bb:92:54:a2:75:6b:6d:1c:33:66:74:2e:73:15:6d:
71:6c:87:63:61:67:d9:2e:e5:7c:d5:ca:90:65:b5:
0a:1a:bf:57:7c:29:5f:83:94:33:37:88:b3:78:69:
90:da:d0:ea:d2:2e:98:9c:d7:3c:3a:2c:6b:52:50:
d8:3a:6c:79:26:45:77:ee:1a:58:db:37:01:ac:8b:
ab:c7:9d:39:a2:5a:5e:37:b4:3b:81:88:ee:1e:f5:
71:dc:0a:0e:5c:33:a0:fb:c9:66:03:26:71:21:0a:
7a:1f:47:a7:af:50:a0:8d:12:d4:2f:0a:d8:33:54:
e4:68:81:bb:1e:45:13:7a:28:fa:83:ec:39:d8:ca:
d4:90:c2:b2:88:61:c1:15:0f:1e:ed:0d:9a:1f:3a:
cb:d4:9d:02:cd:fe:49:76:22:71:33:d7:f1:4d:3e:
55:52:cd:54:a0:26:45:13:6e:4d:30:00:51:40:10:
1c:a7:a9:df:96:eb:9f:4d:1c:00:57:b5:b0:11:e3:
94:e1:14:53:cc:7b:d8:78:a6:97:fd:2a:76:24:c9:
52:c4:69:6a:82:e9:de:06:9f:8b:30:19:d0:a3:84:
55:04:8b:9d:d3:6f:40:6a:05:ed:80:ab:9d:0d:ee:
ec:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:C4:F9:44:98:8C:87:9B:BA:48:2B:86:9D:C7:6B:52:37:09:D6:13
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:e4:2a:0b:d5:ab:63:a2:cf:1c:06:80:50:aa:4c:94:b1:2c:
71:b1:b6:3b:e4:12:e9:05:d0:d4:76:2b:99:a7:39:5f:19:d8:
5d:cd:01:e8:e9:93:aa:dc:9d:aa:08:c3:f3:35:52:dd:46:cc:
1d:86:12:60:9f:e3:9d:9d:42:81:0c:1f:6b:67:41:17:4a:73:
4f:33:14:f9:4d:db:80:0c:68:b8:aa:dc:1f:73:4b:4e:14:3e:
af:6b:a1:d1:da:e5:7e:b6:43:c1:0a:fa:0b:9c:c4:1f:6e:8c:
42:ce:48:f5:0e:06:28:55:85:c2:87:d8:37:23:90:fb:ca:69:
20:fb:ad:1f:73:ce:a9:73:4e:a3:2c:69:0a:83:20:da:98:4b:
19:1d:e4:76:a7:96:d7:6e:61:21:8f:96:47:bd:86:8b:a5:db:
98:51:f0:e4:3c:1b:03:a6:c2:45:d4:f1:89:e3:86:cc:c3:14:
fe:22:9c:a8:4b:0d:b8:16:d0:0e:e9:f5:ad:77:3d:82:b5:31:
9b:16:53:3b:10:61:c0:03:da:39:22:d2:d1:93:be:df:78:03:
fd:17:ec:ec:da:7d:b6:45:1b:c9:43:bd:41:3f:c4:f1:56:26:
fd:0e:3c:00:0c:2e:a5:f5:07:58:65:d5:4e:af:03:e6:69:6f:
29:5d:ff:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:22 2025 by rpki-client