Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
File: rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft (raw, json)
Hash identifier: ev0oJKZwAOUswRgVoRzeQDDyxHTq9/m239eKb7nGn7k=
Subject key identifier: 56:31:6D:D7:FD:B4:9D:EF:75:6C:47:B5:D9:DD:20:0F:BB:28:BD:EB
Authority key identifier: AC:08:81:5E:8C:65:03:60:1F:25:4C:AB:37:1B:EC:47:1B:D7:EA:A6
Certificate issuer: /CN=ac08815e8c6503601f254cab371bec471bd7eaa6
Certificate serial: 0197D217A70AD2ADDA28E8C11E156C44211E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
Manifest number: 09D2
Signing time: Thu 03 Jul 2025 21:00:54 +0000
Manifest this update: Thu 03 Jul 2025 21:00:54 +0000
Manifest next update: Fri 04 Jul 2025 21:00:54 +0000
Files and hashes: 1: QsrgGtjjVfYUdnjVBy3FKVxOReM.roa (hash: /bct/glFTr5+fLpXRU1WLa/LnjLyQigL1zGVjyxrPQI=)
2: rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl (hash: juFpXCK2+dSTnySSTxB4Lg44dPo3rTqqOAws1JOM/1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 21:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d2:17:a7:0a:d2:ad:da:28:e8:c1:1e:15:6c:44:21:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac08815e8c6503601f254cab371bec471bd7eaa6
Validity
Not Before: Jul 3 21:00:54 2025 GMT
Not After : Jul 4 21:00:54 2025 GMT
Subject: CN=56316dd7fdb49def756c47b5d9dd200fbb28bdeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:02:76:7e:17:13:bb:59:e0:33:81:09:e2:20:
cb:56:b5:66:4c:e2:68:ad:cc:53:62:0f:8d:4b:0a:
00:2e:31:42:43:91:c0:d4:f1:34:e9:23:ad:6c:b1:
1c:e7:7c:15:80:9b:50:d2:2e:56:ac:1a:99:48:2b:
2d:d4:a0:12:e1:8e:39:d8:64:da:4b:c5:a6:56:fb:
e1:c3:7c:90:0e:cd:88:0a:ae:89:3c:51:4a:04:05:
ed:38:86:a3:58:7e:8f:c1:9c:71:c5:b7:82:4c:be:
74:21:88:81:ac:05:72:d7:26:cc:84:50:c7:8a:cc:
c9:32:fc:c1:72:4c:1e:6d:53:4e:32:ee:74:9f:4c:
44:6f:0c:2f:d2:39:d3:a7:a3:ca:68:a8:16:59:01:
6c:c0:fc:b1:d7:c8:51:26:6d:58:fd:c1:c9:7a:72:
20:e7:df:9b:79:24:fb:c2:ba:92:3a:f6:6b:43:d7:
a6:0e:f1:90:02:57:1a:18:f2:78:eb:c0:c6:ff:d0:
45:04:be:ad:34:fb:1b:be:f7:aa:63:5b:83:39:b9:
96:55:34:cd:f9:60:7f:1e:2f:48:20:45:be:a6:bf:
a2:53:76:4d:61:4b:d6:c9:7b:2e:7d:c0:1d:e2:e3:
5b:8c:fc:03:8f:22:1b:cd:96:b9:70:aa:7e:e5:61:
40:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:31:6D:D7:FD:B4:9D:EF:75:6C:47:B5:D9:DD:20:0F:BB:28:BD:EB
X509v3 Authority Key Identifier:
keyid:AC:08:81:5E:8C:65:03:60:1F:25:4C:AB:37:1B:EC:47:1B:D7:EA:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:ca:d4:dc:f7:a0:04:55:59:df:90:f5:37:b1:64:16:c4:18:
b6:0e:3b:32:72:c1:93:12:91:34:0d:2c:c9:97:3d:8b:8c:8e:
e2:a4:e0:d3:9d:f0:a4:d0:01:1c:ef:5f:20:07:aa:fc:05:63:
11:d2:a6:89:ae:1e:6c:b5:0a:81:2a:98:65:76:7b:d8:af:15:
cd:6d:a5:b6:42:84:2d:81:6e:ab:ef:3f:3b:f9:6c:5e:9f:a2:
60:ce:c4:ca:86:e1:77:f0:d4:f7:97:59:98:40:67:b8:09:22:
e7:83:11:f1:c6:56:d3:e2:cb:4b:f8:36:aa:2d:42:5c:12:6a:
ca:a6:37:ed:1c:4b:2e:3f:bf:5a:b0:13:45:6e:4e:57:f3:08:
51:93:c1:ca:ee:39:d9:e7:c1:55:34:1b:8b:a3:1f:1c:e2:96:
4f:78:68:2b:e9:8f:83:9f:c9:00:33:bd:71:fb:4d:98:49:b6:
71:31:5d:e7:bc:1e:8d:2a:76:a1:f9:9b:5c:41:df:46:94:be:
b3:57:59:75:a6:a9:7a:1a:fa:1c:f0:14:62:e0:f9:22:95:c8:
4d:76:be:40:f9:64:67:cd:8c:83:79:cc:7e:73:03:c4:03:35:
6e:e8:fc:d6:ac:74:2f:8c:45:68:87:c2:10:38:9a:0f:3a:5d:
3d:f6:6e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 06:47:59 2025 by rpki-client