Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: Zn0HmdIRGtA0PRE2eu9OGetSwaDPL58aTIaMv+kbK8U=
Subject key identifier: 87:C6:26:AF:E3:B6:F8:D9:6D:A1:52:68:A1:89:15:FB:F8:34:5C:56
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 019890DAB62B077604DAF4833D266699206C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 1625
Signing time: Sat 09 Aug 2025 22:01:49 +0000
Manifest this update: Sat 09 Aug 2025 22:01:49 +0000
Manifest next update: Sun 10 Aug 2025 22:01:49 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: FimoHsj3iQQjFpIjTfQn6MRZU6EiXdid1nt48Jp80n0=)
2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 22:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:da:b6:2b:07:76:04:da:f4:83:3d:26:66:99:20:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Aug 9 22:01:49 2025 GMT
Not After : Aug 10 22:01:49 2025 GMT
Subject: CN=87c626afe3b6f8d96da15268a18915fbf8345c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:15:30:c6:eb:cb:5f:a6:66:03:58:d0:e1:6b:
12:0e:10:b1:e1:58:59:58:d4:e8:a4:f6:04:df:71:
da:0e:c6:17:28:ba:dd:97:5e:96:be:67:1b:98:65:
b7:4a:1a:6d:61:cb:3d:22:80:b2:11:7d:c7:7c:72:
51:47:67:45:8b:98:73:c5:18:66:c3:6b:7f:f8:f3:
6f:c4:a7:63:e1:92:7d:09:22:08:d4:de:53:34:8c:
2b:0a:6b:bb:17:39:18:ef:cd:bc:47:74:a1:d7:d1:
2a:92:16:c7:59:83:0f:a3:93:14:16:b0:c6:36:00:
01:99:da:90:ba:f4:ac:59:a5:c7:e4:44:8d:68:2a:
45:97:3c:5e:42:c5:dd:19:63:aa:e5:31:53:ae:a9:
1e:72:0d:66:6f:6e:04:98:54:8e:a0:9d:99:7a:6a:
59:81:b7:ff:f0:72:d1:c7:75:12:5f:a0:0c:ea:9f:
76:3f:44:f2:da:1b:c9:38:9d:1d:42:d2:77:2f:f0:
3e:ba:97:99:a7:95:e3:eb:9f:2d:c0:78:20:b7:4e:
38:83:11:a2:a7:d5:05:2e:cb:d4:ce:ff:aa:15:28:
a1:16:ec:2c:6b:43:7d:3f:7b:7f:95:45:92:c2:cc:
c1:f9:3b:d5:bf:e7:d0:94:0d:27:9a:de:8a:c1:94:
34:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C6:26:AF:E3:B6:F8:D9:6D:A1:52:68:A1:89:15:FB:F8:34:5C:56
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:5b:15:47:02:ed:12:f5:01:44:a0:0b:97:ce:f6:ff:79:41:
d9:14:15:80:a3:8a:d0:ef:d3:3a:3d:2d:43:50:f9:85:d6:cc:
53:64:bf:db:69:e1:be:d2:f0:e3:77:ad:33:e3:9f:c1:9a:13:
83:54:8f:76:2b:0d:02:96:34:88:4c:45:62:29:22:f0:29:b3:
09:46:29:d1:c9:68:1c:7e:c2:43:bf:cc:fa:aa:29:b9:43:49:
76:81:c0:98:f1:d2:09:15:a1:9a:9c:99:5b:2e:9d:9b:40:c8:
3f:88:ae:b5:e5:e6:77:c6:df:99:4d:85:79:be:d6:a9:8b:5d:
a1:11:61:1b:ea:41:25:e8:91:e9:3e:77:1b:a5:b5:52:09:00:
87:03:01:47:8f:00:d2:0e:d4:36:5e:7c:93:c1:8f:c6:62:05:
28:d8:d6:de:b6:f6:14:e9:27:07:ba:32:9d:c7:af:ea:ec:a4:
17:4a:d4:1e:a9:6a:2b:1b:ed:ea:95:35:80:3c:a6:67:86:e2:
7f:79:bd:9a:28:55:77:fa:ac:82:3e:6a:bd:02:85:e9:c6:43:
e2:f1:aa:61:e5:24:aa:1f:25:d6:1d:fb:57:2a:2f:e4:58:21:
ab:2c:0d:e1:a1:2f:44:09:dd:9d:da:87:18:27:f7:a6:18:ff:
0f:e8:ff:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 05:00:52 2025 by rpki-client