Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
File: AhfGZs2iPpINFLkK6TY3EzUKrB4.mft (raw, json)
Hash identifier: +RdxHz2YJxE1cr/xgVJjHbVvF3Nl7t92wlhWy8lldEg=
Subject key identifier: D4:54:E4:E2:FB:73:45:6D:7E:CC:D0:14:5B:3E:39:28:15:4B:E8:9D
Authority key identifier: 02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
Certificate issuer: /CN=0217c666cda23e920d14b90ae9363713350aac1e
Certificate serial: 0198D54E950614A6C09C88B396AD87A48688
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 05:02:33 +0000
Manifest this update: Sat 23 Aug 2025 05:02:33 +0000
Manifest next update: Sun 24 Aug 2025 05:02:33 +0000
Files and hashes: 1: AhfGZs2iPpINFLkK6TY3EzUKrB4.crl (hash: RFV2ZcKLh5O1ZXQvhwSXvKeHmU0qrSwRT9lNyzdTITo=)
2: osyzbtU7GZmaeY_CNmdQy5Vz8jw.roa (hash: /Wf83f8E6EuxQUr3auZsag/VGfFdi1UD8Jonkresr4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:95:06:14:a6:c0:9c:88:b3:96:ad:87:a4:86:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0217c666cda23e920d14b90ae9363713350aac1e
Validity
Not Before: Aug 23 05:02:33 2025 GMT
Not After : Aug 24 05:02:33 2025 GMT
Subject: CN=d454e4e2fb73456d7eccd0145b3e3928154be89d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:62:a0:28:5d:5b:88:1a:b1:d0:7a:51:bd:c8:
e3:88:85:b8:00:2a:7c:36:12:d5:bb:05:68:a3:bd:
d6:cd:c6:40:9b:b3:e8:5d:6c:d8:d2:c5:fa:ef:22:
e3:63:3d:1b:e2:10:aa:e9:fb:ec:37:02:01:6f:c1:
54:b1:89:60:bb:40:4c:fb:46:94:7f:53:e4:2c:04:
75:50:2b:84:34:11:d8:06:98:f9:43:7e:64:49:ac:
41:c7:84:f2:ba:32:ea:10:32:0e:d9:a1:f9:e0:82:
19:23:c8:35:d9:6f:23:2c:50:69:b7:3d:35:cf:af:
87:b2:78:e2:38:e4:66:b9:c6:2d:f5:3d:e6:2b:06:
3e:33:2f:48:8f:c1:9f:ab:d0:e0:84:cc:45:c9:9c:
cb:30:fa:a8:d0:1f:1a:d1:b5:59:a1:86:a8:73:d4:
87:57:4b:1f:b0:84:03:28:f1:7b:12:23:1e:aa:6c:
fe:44:63:23:69:6c:14:f7:cd:3f:a8:73:94:f7:78:
c2:4b:72:61:d7:5f:37:d1:16:05:25:84:75:26:23:
b7:4f:fd:aa:f8:62:ce:f5:73:ab:9a:c3:06:71:eb:
6a:d6:9c:9e:9b:28:91:4d:ba:6c:b3:af:34:bd:fc:
04:d6:ac:3d:da:eb:44:11:d6:70:c1:b8:34:84:d1:
d2:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:54:E4:E2:FB:73:45:6D:7E:CC:D0:14:5B:3E:39:28:15:4B:E8:9D
X509v3 Authority Key Identifier:
keyid:02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:51:b9:7d:8e:d6:7f:cb:7b:69:97:46:54:cf:4e:a3:33:da:
5c:b9:99:4d:9c:66:4d:c7:bc:78:27:2e:97:78:72:c6:96:a7:
17:fb:8d:57:83:ce:6e:ec:63:fb:04:75:ab:99:2f:fe:d3:f5:
a1:11:fb:7d:bb:7d:3a:ae:01:2b:0d:6e:5f:32:99:56:50:ca:
53:64:36:85:cb:a4:34:e9:fe:f1:98:d8:8a:79:46:94:40:77:
d9:65:5d:3a:85:b1:b0:87:68:0b:b9:7e:6c:75:5d:0f:e9:1c:
20:cb:3d:2f:fb:ec:79:b1:0e:d1:da:1e:7a:4f:5a:f4:55:fd:
1b:37:c9:de:a0:b9:64:e6:ea:ab:f0:34:51:80:27:87:af:7a:
2d:5e:0e:3a:88:ee:d1:70:4f:b7:38:e7:3b:44:8c:b3:52:4b:
40:8b:e1:41:49:ff:e6:cb:99:56:1f:98:5a:b0:c4:34:ef:ab:
ee:b1:67:a0:16:21:c7:ff:34:cf:af:2e:31:4c:8e:fe:40:d3:
ea:d1:26:1a:5d:cd:70:21:62:96:4a:05:15:d8:37:41:43:43:
67:15:35:dd:af:de:f3:1a:a9:53:12:3c:7f:95:5b:e3:78:e5:
a8:78:f1:79:66:a6:c8:eb:41:ff:07:cd:d1:2a:5b:2b:ff:fd:
80:a9:96:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:23 2025 by rpki-client