Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
File: aQqw79d1diHIbXtpx29gssP6w1Y.mft (raw, json)
Hash identifier: TiecgNALypS8sZMyG9dFn9c5ltP7fy5Yikm3d6+t5Og=
Subject key identifier: 24:D4:8F:0C:A2:45:9A:7F:6C:E5:5B:97:8B:5F:2A:1E:3E:38:36:96
Authority key identifier: 69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
Certificate issuer: /CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Certificate serial: 01987C77ADAF2E7F979F007013AC3DA06F8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
Manifest number: 036A
Signing time: Tue 05 Aug 2025 23:01:14 +0000
Manifest this update: Tue 05 Aug 2025 23:01:14 +0000
Manifest next update: Wed 06 Aug 2025 23:01:14 +0000
Files and hashes: 1: aQqw79d1diHIbXtpx29gssP6w1Y.crl (hash: MbAe1LDCF/Ecj7bmwcLdW94IiDGnIGJJ79S49VLTiAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:ad:af:2e:7f:97:9f:00:70:13:ac:3d:a0:6f:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Validity
Not Before: Aug 5 23:01:14 2025 GMT
Not After : Aug 6 23:01:14 2025 GMT
Subject: CN=24d48f0ca2459a7f6ce55b978b5f2a1e3e383696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:da:a1:b4:b3:85:d9:fd:04:f9:cd:ea:5a:3b:
12:9c:60:8e:e1:17:2d:21:04:c6:6e:a0:06:d7:16:
a4:66:57:85:2c:7c:48:14:7c:f1:78:c0:5e:2a:e1:
50:34:56:3f:69:59:4c:d0:43:99:10:2a:0b:99:6b:
f6:a0:16:f5:e9:7c:a9:2f:7f:51:bf:72:e5:b5:3a:
c3:ae:54:5a:d1:b5:cc:b0:65:08:cd:53:c4:58:95:
da:10:02:51:f8:34:a8:13:fd:12:bd:7d:2d:b2:29:
c5:d6:6b:26:6d:29:c5:ca:0a:16:33:30:70:fb:d9:
05:51:e5:2c:6a:04:3c:b3:77:2b:c0:ec:fe:85:ad:
e0:97:06:8a:83:47:07:72:c6:26:a5:30:c4:19:9c:
bc:8c:57:90:10:44:b5:5b:0b:9e:7a:e1:b4:59:de:
aa:87:94:a4:a4:39:ae:1f:42:b1:f6:51:b3:2e:5e:
1b:b6:4f:98:21:67:b4:f6:c4:e0:51:d8:8c:b0:83:
f2:ea:5f:96:06:a3:a0:3d:94:14:c5:70:bb:8d:47:
bb:83:99:d5:03:ba:65:da:5a:fb:36:79:e4:ba:96:
16:59:2c:cb:89:67:e7:18:73:11:e4:9a:e7:08:ad:
a9:86:50:93:99:eb:78:d0:97:b2:0e:64:e6:5b:a9:
90:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D4:8F:0C:A2:45:9A:7F:6C:E5:5B:97:8B:5F:2A:1E:3E:38:36:96
X509v3 Authority Key Identifier:
keyid:69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:a5:96:ec:18:62:64:8d:7b:dc:5c:a0:a6:28:6a:fc:8b:f1:
48:76:ce:f7:9c:e4:d2:2d:30:4b:6e:ac:92:e9:1d:d9:c1:3c:
d4:11:ed:81:62:87:06:ea:d7:f9:c0:bd:1f:11:51:5c:51:cd:
35:8b:50:ad:c5:31:20:c0:8e:76:4a:9a:e5:e7:77:9b:c0:90:
2a:40:3b:78:23:d6:6f:0f:82:ec:af:4c:d0:37:ad:1a:4d:cf:
15:90:70:73:55:42:67:99:4f:21:5a:67:a0:f5:fa:b8:d0:9a:
a6:18:cf:48:0e:26:a4:b2:5c:6b:5d:01:14:83:e8:52:28:e9:
28:20:7c:83:de:2d:09:57:57:0f:bb:c2:55:ce:52:4c:86:c1:
d6:ff:61:42:77:b6:34:45:59:12:fc:ba:36:78:8a:66:f4:d9:
13:b5:09:56:ff:79:00:ed:60:15:65:83:92:f2:15:8d:ae:7c:
81:2f:59:25:36:d6:71:a2:5b:12:07:b5:c9:cb:d0:08:fb:47:
13:01:33:26:bd:fa:ec:b7:b8:9c:ce:52:b4:f2:7e:77:23:dd:
54:2b:1f:95:74:4e:8c:f8:7b:5e:9c:fc:20:4c:30:58:f5:64:
46:58:92:a1:4b:21:89:c4:b2:95:ee:07:7e:09:6a:ec:38:fd:
00:0d:c8:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:28:52 2025 by rpki-client