Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: 0U4ibl1Lx6Igav78RqtRa1p8L/2zqccp43h2jCdp4ls=
Subject key identifier: C7:06:63:51:6E:E7:28:C2:F3:16:06:EB:79:03:FF:2E:35:59:A5:4E
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 019875626A883153D86EB88C1BB0020FC6BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 1618
Signing time: Mon 04 Aug 2025 14:00:40 +0000
Manifest this update: Mon 04 Aug 2025 14:00:40 +0000
Manifest next update: Tue 05 Aug 2025 14:00:40 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: bV1Xws07XFQEIK7qnK8i5AoBugXRaV6EfB7Ed0MX5X0=)
2: nJZ2h-CE2RpObbNuUbuQAsAe9wo.roa (hash: XjXLrJ8ZAfMXOtdh84OSK02UeKqf16aa2sgmGiELBao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:62:6a:88:31:53:d8:6e:b8:8c:1b:b0:02:0f:c6:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: Aug 4 14:00:40 2025 GMT
Not After : Aug 5 14:00:40 2025 GMT
Subject: CN=c70663516ee728c2f31606eb7903ff2e3559a54e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:8c:e2:53:c5:c3:61:40:57:91:74:a8:4a:9a:
bf:fd:db:1d:92:45:62:4c:b8:af:00:1f:de:3e:ba:
4f:59:01:f9:ac:e1:60:a5:7b:bb:ee:cd:18:dc:ac:
1f:8b:4e:19:00:df:86:32:80:3c:38:46:58:bb:64:
89:8a:82:c1:f8:17:ed:31:b5:5a:5d:8c:ae:2c:f3:
9d:c0:d5:55:72:c0:0f:7c:73:a1:f1:4c:81:6e:ec:
96:51:64:b0:d8:ad:ed:8a:98:d3:d5:bc:d9:8c:c6:
0e:fe:16:e0:aa:45:35:5c:0b:66:d1:65:7c:8d:62:
46:e1:e8:c1:99:bb:e3:47:61:10:ab:ef:d0:83:a7:
8b:e7:fc:55:08:fc:b1:9d:cb:64:84:4a:d9:44:d1:
62:94:6f:b7:82:7e:bc:1a:ee:24:26:38:91:63:c5:
18:8f:87:3e:be:68:02:48:71:58:d9:29:58:41:61:
66:ea:82:47:b6:6d:77:20:34:6a:19:8d:ad:da:d6:
7a:c8:1a:3a:85:5c:17:68:c4:fa:37:8f:09:5e:c6:
35:20:49:07:86:2e:ff:6a:d4:ae:8a:71:43:65:af:
0f:dd:b9:87:74:64:71:30:c3:89:c3:91:8f:7b:6e:
b7:9b:49:1f:12:dd:4e:4e:7f:13:b5:2b:9e:45:22:
dd:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:06:63:51:6E:E7:28:C2:F3:16:06:EB:79:03:FF:2E:35:59:A5:4E
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:10:2e:69:18:73:4d:31:b4:a0:8e:5e:5f:f4:8b:e7:19:22:
47:b8:2b:cf:5a:cd:95:cb:c9:d0:87:98:88:89:ec:b7:ac:68:
ca:40:7e:4a:b3:73:7b:26:0a:0f:fb:16:5b:ca:a4:86:d1:9e:
80:9f:4c:99:c9:21:36:74:83:44:b7:75:dd:55:66:da:df:9e:
1b:98:8f:5d:f8:a3:c8:ed:a7:8d:10:96:55:16:92:f3:5d:3a:
60:24:f0:4b:91:1e:5a:e1:30:55:b7:2c:1d:6d:70:4e:39:66:
ad:34:3b:e9:8e:81:d0:4e:f2:03:9b:2a:10:58:6b:f1:a2:04:
6c:80:2a:c6:5c:2a:fb:c1:c8:6c:92:48:4c:5e:c6:84:91:63:
4d:60:a5:5b:30:db:70:29:b9:f8:2e:24:85:08:e7:da:39:aa:
8c:91:77:cd:b7:d2:3c:9f:ce:95:3c:ba:6b:6c:8b:a2:7f:1d:
f5:37:25:09:a9:3f:27:14:f2:be:76:eb:65:69:7c:14:47:ac:
d1:89:ef:30:d6:f2:06:b1:8a:4c:d6:56:66:ad:64:c9:e4:43:
5c:02:6e:77:f2:63:15:c3:88:14:95:a5:a1:84:f3:ff:14:f7:
31:3c:ab:1e:4e:ed:de:fb:32:92:60:51:1e:1e:b6:a9:fb:f0:
d5:18:ce:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 19:08:47 2025 by rpki-client