Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft
File: ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft (raw, json)
Hash identifier: Rs3+s0gOvt4+AFdFpPqXQVYA9mgPmQbo7YA5XzDuhGw=
Subject key identifier: 3F:E6:E8:8A:72:E3:E7:B7:24:C1:C9:1A:A4:5E:90:87:39:DA:ED:62
Authority key identifier: 01:14:63:FF:99:C2:4C:09:37:A4:06:5D:1F:CC:FE:B9:08:FC:3A:D2
Certificate issuer: /CN=011463ff99c24c0937a4065d1fccfeb908fc3ad2
Certificate serial: 0197B6A1E123E86F187B300B17E250DF199A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ARRj_5nCTAk3pAZdH8z-uQj8OtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft
Manifest number: 11EC
Signing time: Sat 28 Jun 2025 13:02:31 +0000
Manifest this update: Sat 28 Jun 2025 13:02:31 +0000
Manifest next update: Sun 29 Jun 2025 13:02:31 +0000
Files and hashes: 1: ARRj_5nCTAk3pAZdH8z-uQj8OtI.crl (hash: iT08z32g1LOG75QqJ69aSYVIfNE39TasTPiMZJAQcEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ARRj_5nCTAk3pAZdH8z-uQj8OtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:e1:23:e8:6f:18:7b:30:0b:17:e2:50:df:19:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=011463ff99c24c0937a4065d1fccfeb908fc3ad2
Validity
Not Before: Jun 28 13:02:31 2025 GMT
Not After : Jun 29 13:02:31 2025 GMT
Subject: CN=3fe6e88a72e3e7b724c1c91aa45e908739daed62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:77:10:e4:0e:4d:03:59:a7:65:d4:33:01:f2:
84:dd:b1:a6:07:37:07:81:3b:2d:b9:55:d8:36:82:
db:04:01:5c:d6:dd:e1:61:05:21:a3:31:61:37:d6:
73:84:e4:56:22:c3:f9:0a:f1:b9:d9:97:5e:3f:46:
db:c9:21:6e:ab:6b:f6:9c:ec:bb:fe:48:79:b2:1b:
22:c1:e4:e9:2f:50:d4:9e:02:3a:ec:2f:9a:83:11:
9c:8f:4f:44:25:8f:7a:d5:69:07:08:03:ec:52:68:
96:ef:21:e0:8e:c8:03:88:fb:83:4e:c5:af:13:52:
b7:e0:40:93:9f:c3:e7:5c:80:45:68:0f:17:e6:90:
1a:d3:6c:9d:44:92:1c:f6:d9:9e:64:54:45:2d:f1:
24:79:b0:e4:77:f4:bd:25:97:39:5f:51:31:19:4d:
4c:71:75:39:cf:d8:1c:d0:78:fb:41:95:98:63:82:
e4:42:0b:dd:91:33:d7:04:0c:62:39:15:e6:de:32:
0c:ce:94:8b:53:e6:ff:c6:7a:d3:e0:fd:6f:df:68:
3c:f4:82:cd:4c:17:2b:4c:bf:99:68:11:97:48:93:
50:df:d9:02:78:01:5b:06:09:10:ce:62:97:95:40:
1d:e4:02:cc:33:5a:f9:18:da:23:93:a8:8c:9f:b6:
35:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:E6:E8:8A:72:E3:E7:B7:24:C1:C9:1A:A4:5E:90:87:39:DA:ED:62
X509v3 Authority Key Identifier:
keyid:01:14:63:FF:99:C2:4C:09:37:A4:06:5D:1F:CC:FE:B9:08:FC:3A:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ARRj_5nCTAk3pAZdH8z-uQj8OtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:95:d6:39:31:4e:5e:8c:e4:f7:8d:41:46:da:66:88:07:02:
47:1a:25:a8:9a:fa:b1:ca:17:41:8d:4f:b6:3e:bb:9d:cf:8f:
cb:3c:76:f9:39:3c:4a:7d:bd:b2:8a:3a:8e:b4:ff:7d:b6:5f:
4a:9f:51:cc:f4:2c:2f:de:ab:6b:30:19:a8:70:8a:4a:11:b9:
2c:4c:9d:89:1c:62:e4:01:35:e2:25:6c:d7:ab:c2:8b:0a:fe:
6d:31:00:11:4b:5c:de:28:39:0e:5e:ec:2c:45:f9:98:aa:0e:
61:42:f9:c3:d4:55:0c:c0:98:fd:ae:2d:1b:3b:fb:ec:16:c6:
f7:80:7e:a2:91:0d:ee:04:20:20:49:00:43:f3:9b:87:aa:f3:
8a:15:fb:36:42:1c:7b:e2:9d:e3:3b:ad:4f:1c:ce:7f:d7:73:
3b:52:16:e3:08:78:b4:56:6a:b8:67:9a:1c:6d:89:74:3d:fd:
ee:bb:d0:61:8f:d2:3b:41:6d:7b:60:46:03:ab:77:90:c0:d4:
e1:35:d7:5a:92:69:e5:f5:c2:32:00:7a:9f:71:23:99:10:ae:
aa:1e:41:2a:fe:29:4a:6f:ee:aa:1f:08:af:d9:8c:51:9f:ea:
9e:a3:84:da:f4:e0:2f:6e:29:9c:4a:76:98:f7:b3:e3:e9:c0:
65:b7:62:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:27:35 2025 by rpki-client