Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft
File: ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft (raw, json)
Hash identifier: SLC96qBaqvQwZ3oBXQcdeEWWzldN1zQ4S1CFrgzXXcQ=
Subject key identifier: 71:82:7B:AE:D5:BD:75:AB:38:FC:65:EF:4E:11:DF:35:92:4C:F6:0F
Authority key identifier: 01:14:63:FF:99:C2:4C:09:37:A4:06:5D:1F:CC:FE:B9:08:FC:3A:D2
Certificate issuer: /CN=011463ff99c24c0937a4065d1fccfeb908fc3ad2
Certificate serial: 0198D47309E3FB962A7BEEEDEF30DF8EBE04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ARRj_5nCTAk3pAZdH8z-uQj8OtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft
Manifest number: 1280
Signing time: Sat 23 Aug 2025 01:02:45 +0000
Manifest this update: Sat 23 Aug 2025 01:02:45 +0000
Manifest next update: Sun 24 Aug 2025 01:02:45 +0000
Files and hashes: 1: ARRj_5nCTAk3pAZdH8z-uQj8OtI.crl (hash: Yd1XLjbQ4PVzJmJZEBsIfN4Ud06gWbnEgxTpxXDWwfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ARRj_5nCTAk3pAZdH8z-uQj8OtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:09:e3:fb:96:2a:7b:ee:ed:ef:30:df:8e:be:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=011463ff99c24c0937a4065d1fccfeb908fc3ad2
Validity
Not Before: Aug 23 01:02:45 2025 GMT
Not After : Aug 24 01:02:45 2025 GMT
Subject: CN=71827baed5bd75ab38fc65ef4e11df35924cf60f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ae:78:36:97:95:b0:6e:0d:01:d1:12:6a:27:
d3:18:10:ae:bd:59:1f:2c:98:3a:50:db:2f:70:f5:
cf:fb:6d:7d:66:21:6a:ae:9e:cb:9b:cd:1b:2a:3c:
5d:8c:eb:20:e2:14:5a:df:d8:df:30:e8:94:f0:5a:
73:cf:a8:1c:8e:e7:2c:0d:24:44:ed:48:43:49:b6:
10:76:c5:79:d1:a7:60:c5:3e:6c:df:da:de:e6:06:
ce:7d:69:54:14:82:15:09:87:7b:dc:cc:bc:f2:f5:
37:fb:21:0d:b8:7e:f5:0b:50:2a:88:cd:12:3c:11:
07:1a:c9:95:46:df:c1:f5:22:ef:93:6a:7a:33:51:
52:f2:e2:ca:98:a3:a7:37:7f:51:70:40:e0:93:3a:
7b:a5:6e:17:72:57:37:1f:8c:2e:a2:94:f3:cb:d7:
11:1c:6f:59:25:f3:3a:eb:f3:c7:3b:04:93:09:e1:
ba:f6:fd:c8:7d:27:86:55:1b:e9:f6:e7:76:21:aa:
4f:af:99:a8:90:24:08:26:06:94:9d:4e:b0:7c:45:
d0:40:f5:24:35:4c:2f:a3:3f:fe:3b:5c:51:98:84:
dc:5c:0b:d2:1c:0c:c1:a8:ea:7b:5d:c8:dd:e3:7d:
1d:e7:59:c5:72:1a:11:76:70:02:2a:dd:77:d6:7c:
52:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:82:7B:AE:D5:BD:75:AB:38:FC:65:EF:4E:11:DF:35:92:4C:F6:0F
X509v3 Authority Key Identifier:
keyid:01:14:63:FF:99:C2:4C:09:37:A4:06:5D:1F:CC:FE:B9:08:FC:3A:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ARRj_5nCTAk3pAZdH8z-uQj8OtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:6f:30:a6:e7:e5:e4:75:34:6c:e3:66:e2:89:1b:8f:a5:00:
f1:24:e5:83:30:0e:19:95:aa:39:be:5e:a8:7b:97:7b:24:c5:
6e:83:2a:4f:0e:1a:99:7e:5d:81:85:8a:df:c0:96:c2:19:6e:
80:84:af:5e:7c:f9:82:2d:e6:64:86:2b:4a:c1:9a:8a:f9:88:
73:65:6d:21:1b:85:93:60:b1:c4:b1:81:88:77:33:70:c6:1b:
0d:8d:b5:b9:7f:e2:0d:ae:f0:58:2e:ce:52:b6:94:a5:3a:87:
b4:44:37:ad:3a:cf:b0:6d:f2:0e:ec:ba:25:a7:8f:fc:c6:d7:
99:83:8f:42:30:e3:ee:3b:3f:c1:5f:dd:25:08:55:a3:12:9f:
fc:9a:63:64:60:ab:b0:7a:ce:70:b7:ab:38:1d:ea:f8:55:ae:
5c:82:21:0e:c4:fc:a3:7d:62:2c:78:76:90:6d:c0:5c:3d:43:
b6:75:af:b9:ec:59:84:67:cc:f7:0e:df:d3:9c:a1:d7:a0:d3:
b2:c9:cc:09:d1:8a:92:e7:1a:6d:c5:5d:c0:45:dc:f4:16:34:
3e:46:3f:2f:63:05:15:a2:f1:a5:d3:e0:fe:3f:f5:a2:c9:96:
36:e8:3d:31:3d:26:26:85:f4:7d:06:91:34:0b:5a:f9:c7:65:
a4:d9:d4:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:34:52 2025 by rpki-client