Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
File: aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft (raw, json)
Hash identifier: DSGxM98wFdQpe035J80ALE9B6HCIyhzoPAGyQfaPvCc=
Subject key identifier: 44:5A:6F:C4:42:82:3E:A2:5D:7B:BB:B6:F2:13:0C:F5:3A:A5:50:7D
Authority key identifier: 68:F8:3E:2A:34:14:5A:D4:7E:0C:C2:B3:C7:9F:C6:31:2B:AE:2C:71
Certificate issuer: /CN=68f83e2a34145ad47e0cc2b3c79fc6312bae2c71
Certificate serial: 01988F900A85853E80B0F6F8212C80DCF62B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
Manifest number: 04E3
Signing time: Sat 09 Aug 2025 16:00:38 +0000
Manifest this update: Sat 09 Aug 2025 16:00:38 +0000
Manifest next update: Sun 10 Aug 2025 16:00:38 +0000
Files and hashes: 1: N-BSf874DQvK549b1pSEfsfJ-W8.roa (hash: bW40XSisvNpm05Mkk5fR9GiNdKpGc7uzNKkhrhBHqx4=)
2: aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl (hash: WWIJQV1VjrR8zSEknOnAU/Jb814/KOQ7BjKqXD8dI8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:90:0a:85:85:3e:80:b0:f6:f8:21:2c:80:dc:f6:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f83e2a34145ad47e0cc2b3c79fc6312bae2c71
Validity
Not Before: Aug 9 16:00:38 2025 GMT
Not After : Aug 10 16:00:38 2025 GMT
Subject: CN=445a6fc442823ea25d7bbbb6f2130cf53aa5507d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d3:73:7d:d7:b5:63:35:0e:88:3e:95:0e:01:
a2:4d:47:3f:7b:ac:31:89:11:ed:20:7e:a6:74:2a:
b2:78:46:82:de:0c:63:91:c4:5c:08:85:e6:46:3a:
f1:2e:05:20:a8:c1:a9:fa:17:34:1e:c2:27:9a:71:
4d:0c:3d:ce:4d:29:a1:9c:ae:9f:10:74:b5:2c:6e:
f7:80:24:df:72:3c:b1:a0:8b:4e:45:a3:82:b6:97:
9c:1b:ed:d4:e3:73:ad:c1:df:c2:5c:75:d3:eb:7c:
71:76:d5:95:56:b8:dc:34:80:64:e0:cd:be:64:ac:
f5:20:ed:29:a7:72:84:35:60:fb:e5:52:8b:21:c9:
f6:7b:0b:cf:7b:6f:70:cd:8d:60:5c:57:8c:cc:ad:
af:53:94:cb:a2:96:81:42:77:6d:90:2d:05:67:2c:
18:5f:a4:ac:5e:90:d4:a7:39:7b:4e:ba:e3:5b:21:
76:bd:6d:8f:05:e1:96:34:da:5e:5d:72:3a:bd:64:
d0:eb:dd:01:c4:f0:79:42:e6:38:61:87:82:b6:75:
56:8b:50:14:75:22:9f:f2:ad:80:47:5e:a8:b7:4f:
95:57:7a:66:ad:b9:15:3b:08:53:1a:0b:2f:f7:2b:
c1:68:4d:31:4b:b4:5f:09:c3:f7:e2:0f:35:bf:23:
a5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:5A:6F:C4:42:82:3E:A2:5D:7B:BB:B6:F2:13:0C:F5:3A:A5:50:7D
X509v3 Authority Key Identifier:
keyid:68:F8:3E:2A:34:14:5A:D4:7E:0C:C2:B3:C7:9F:C6:31:2B:AE:2C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:4e:22:86:35:4a:4f:ab:58:65:4d:66:3c:43:8e:1f:ca:36:
db:f9:44:dc:6f:83:e7:f3:69:ff:3a:a8:0e:11:97:63:26:0f:
7f:6e:a8:de:08:ae:c4:3a:9d:0b:8b:84:42:3d:88:1d:59:e1:
c4:ee:a0:97:33:98:64:94:60:da:45:0b:f2:68:da:b8:19:ff:
9a:2c:cd:57:ac:ae:01:e0:2a:72:a8:00:80:b7:73:71:47:47:
19:9e:3a:fd:61:ca:86:1c:1a:01:2f:65:d2:e9:06:2c:32:e4:
4d:ed:b0:73:a6:da:a3:87:b3:16:cc:af:34:c5:e6:bb:65:4d:
84:96:35:8a:80:b8:2c:f4:11:26:ec:89:c7:60:86:7b:5d:98:
5d:f9:8b:d9:d0:9c:2c:9f:68:3b:51:5e:1e:4c:cb:6d:b7:aa:
ff:a1:dc:f1:a5:72:6e:d8:c6:ca:7e:38:ac:42:b6:bb:e6:1f:
ec:56:5a:ee:19:85:ca:d8:85:18:71:38:a1:43:57:12:fe:b7:
09:5c:e4:85:12:b3:ff:48:f2:64:6d:96:b9:91:95:7a:14:b1:
24:f0:e5:72:7e:f1:78:a7:14:68:e1:c6:27:08:93:53:b5:88:
d6:80:6d:9d:38:3c:e6:da:ca:69:6e:87:74:b5:30:69:c7:8f:
85:1c:b4:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:48:09 2025 by rpki-client