Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
File: AaVsQu18uWPyhVA87AYG1g0Ks4c.mft (raw, json)
Hash identifier: quao/fM6h/Mlx3CLzFgXxPAuG6qnLs9C6jK1/d6nUUM=
Subject key identifier: 44:7D:85:85:8C:7F:76:92:42:55:AF:8A:3E:DD:94:FD:C0:5F:AF:C5
Authority key identifier: 01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
Certificate issuer: /CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Certificate serial: 019873E37352C2BD94321FD4578D394623FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
Manifest number: 0ED8
Signing time: Mon 04 Aug 2025 07:02:22 +0000
Manifest this update: Mon 04 Aug 2025 07:02:22 +0000
Manifest next update: Tue 05 Aug 2025 07:02:22 +0000
Files and hashes: 1: AaVsQu18uWPyhVA87AYG1g0Ks4c.crl (hash: 5y67DdYja8ASMa0ZQ29UnA/F6Tu8RSa60TkJhurFEws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:73:52:c2:bd:94:32:1f:d4:57:8d:39:46:23:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Validity
Not Before: Aug 4 07:02:22 2025 GMT
Not After : Aug 5 07:02:22 2025 GMT
Subject: CN=447d85858c7f76924255af8a3edd94fdc05fafc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c3:af:23:b7:51:e7:50:50:3e:83:20:9c:db:
db:3e:e2:76:4a:b9:cf:87:f0:83:17:35:49:22:03:
c8:18:66:ef:9a:6f:78:76:35:72:dd:d6:af:c8:2a:
77:4e:28:06:8f:0a:8d:77:ad:11:d7:d6:91:a5:54:
91:6d:18:ba:28:5a:c4:3a:a9:46:fc:f6:97:0a:8a:
8f:73:25:80:ce:e6:a8:49:12:38:a4:b3:ce:8b:6b:
c0:6a:6a:79:a6:61:f5:4d:03:7d:39:c8:15:69:46:
c0:c8:54:8e:36:25:da:cb:4f:b8:d0:7b:18:3b:0e:
2f:72:97:0c:2a:5b:2d:fd:3c:7f:07:a0:81:74:30:
65:a7:3c:9e:f0:c1:fe:df:12:0c:33:e7:9a:93:6a:
1f:04:5f:88:b6:6c:50:ca:0f:bc:7b:99:fd:80:dd:
3c:b5:29:db:f7:19:8b:eb:1d:ac:18:41:0a:45:64:
a5:fc:8c:56:ee:75:a1:77:2f:f3:d4:36:06:b4:a9:
35:41:75:4b:7f:f0:26:57:4c:b3:c4:30:ae:d7:fa:
bc:90:bd:9c:e1:74:25:84:49:b0:bc:4e:44:25:dd:
d5:24:79:7f:17:12:6f:1c:84:f0:6d:f5:42:f6:23:
e5:24:e8:64:af:a6:b7:1f:cd:b1:28:79:05:e1:fc:
07:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7D:85:85:8C:7F:76:92:42:55:AF:8A:3E:DD:94:FD:C0:5F:AF:C5
X509v3 Authority Key Identifier:
keyid:01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:0e:71:35:d3:37:82:fa:aa:ed:07:11:4f:11:11:01:01:dd:
53:c5:06:4d:3b:b2:ff:42:34:be:9c:48:c1:b7:6b:14:25:b5:
97:62:8a:11:c6:02:00:bd:87:6e:89:86:66:08:67:d6:8f:71:
b1:fb:d3:35:a1:6a:cc:a9:89:8a:54:e7:89:58:68:b1:b4:90:
db:cf:59:74:4a:e3:cf:2a:48:a4:3e:93:32:b5:6a:6a:07:2f:
a8:f7:7c:e2:1c:7c:50:99:eb:ab:ee:ed:08:c3:3e:7e:43:38:
67:ce:85:cd:9f:f6:d1:ef:ec:2c:ec:ac:7f:53:c7:a8:17:d7:
ba:5b:20:f0:55:25:38:2b:f8:b2:4c:0f:89:39:dd:f0:52:9a:
72:40:3d:2b:95:30:4a:46:14:a8:ad:4b:e3:4d:c3:bf:a0:85:
a4:ee:0a:6a:36:4f:4a:90:19:a0:d9:43:37:55:22:5b:0d:c3:
b4:7d:bb:13:ab:76:fb:bc:b4:83:05:6e:8c:63:e0:6d:55:c1:
7b:ae:75:44:40:f2:c7:89:25:d3:c7:ac:50:0a:95:e1:61:ba:
83:ba:11:11:36:fa:1c:c9:f7:84:2d:e1:c7:35:44:da:18:ea:
7e:b7:01:45:94:f2:f6:9e:41:a0:bf:98:07:b1:d5:41:e3:80:
9e:f1:80:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:00:07 2025 by rpki-client