Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
File: RKqBMTnAax3PG_6DMrm4Aas-swI.mft (raw, json)
Hash identifier: 45xkMXV+AO6nstJOhUb3I/t551IeIqrSYRx20Du99UY=
Subject key identifier: 77:AA:AE:1C:CA:67:FD:2C:F0:96:7E:00:67:B0:09:CE:1B:BB:00:F5
Authority key identifier: 44:AA:81:31:39:C0:6B:1D:CF:1B:FE:83:32:B9:B8:01:AB:3E:B3:02
Certificate issuer: /CN=44aa813139c06b1dcf1bfe8332b9b801ab3eb302
Certificate serial: 0198D5833E180E7E7DC4F1C27D201F5367F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
Manifest number: 0661
Signing time: Sat 23 Aug 2025 06:00:04 +0000
Manifest this update: Sat 23 Aug 2025 06:00:04 +0000
Manifest next update: Sun 24 Aug 2025 06:00:04 +0000
Files and hashes: 1: RKqBMTnAax3PG_6DMrm4Aas-swI.crl (hash: EchIBKSIleO2ZpsCxyp+AjBPp6ZFBxTIfisKUm06TkE=)
2: dulLD0ENjA9tfgPr9DrSQJxWn5k.roa (hash: ecAhh1+SnR4Xv8G0G+2S5KTuId8TsIACx8G94ng9hIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:3e:18:0e:7e:7d:c4:f1:c2:7d:20:1f:53:67:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44aa813139c06b1dcf1bfe8332b9b801ab3eb302
Validity
Not Before: Aug 23 06:00:04 2025 GMT
Not After : Aug 24 06:00:04 2025 GMT
Subject: CN=77aaae1cca67fd2cf0967e0067b009ce1bbb00f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:90:d4:5a:a6:f6:4c:ff:21:09:26:61:e9:91:
fa:b2:90:5f:89:2c:b9:ff:76:81:ba:b5:2c:30:2b:
bd:13:0e:56:f4:67:c8:14:e1:86:a9:78:78:4d:b6:
6e:50:84:1f:28:cd:93:ab:2f:76:5b:da:76:bc:66:
08:3d:bd:c8:52:8e:ef:e4:9e:0c:d1:68:7e:09:d1:
2a:1a:69:ad:b9:1c:f1:12:08:35:1d:b1:4f:18:ff:
5e:dc:8a:ac:71:05:f7:cb:8e:e8:54:f2:d8:73:18:
32:00:ff:6e:02:9f:13:ff:da:24:07:cb:6d:c3:6e:
1e:41:29:4b:c5:33:53:f5:e1:ef:b4:ad:7b:b0:96:
91:65:40:a2:36:35:4f:95:60:7e:2c:60:d7:11:32:
14:21:8b:4a:2e:95:3b:19:97:28:16:2e:f6:b4:0a:
5f:9f:df:e2:b7:fe:35:d9:14:dd:79:0d:04:76:d4:
49:35:97:44:d4:8a:16:3c:0b:db:28:16:58:6e:d2:
a6:c4:e3:36:4d:31:e6:ee:f5:6d:7f:3a:4a:81:ff:
ac:bc:08:8a:49:fb:1c:46:b3:8d:8c:54:2f:5d:e7:
e4:08:f4:ff:e1:6a:e7:a6:51:13:a5:29:a7:72:da:
bb:b1:79:a8:d6:5b:57:fa:21:c0:40:eb:ea:df:8a:
cb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AA:AE:1C:CA:67:FD:2C:F0:96:7E:00:67:B0:09:CE:1B:BB:00:F5
X509v3 Authority Key Identifier:
keyid:44:AA:81:31:39:C0:6B:1D:CF:1B:FE:83:32:B9:B8:01:AB:3E:B3:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:3d:9b:fd:b0:74:56:80:8d:55:4c:1f:f4:c1:8b:8d:d2:a3:
90:4f:e6:83:3f:d0:73:bf:64:de:7f:7d:71:b1:09:bb:20:1a:
1f:40:16:7e:18:1f:58:b9:bf:7d:b8:12:b0:a6:6a:a2:60:3c:
b1:69:e6:68:4e:c0:9f:cb:e2:59:d1:ac:7b:81:40:a8:f4:fc:
f7:8f:bb:57:f6:9d:d8:13:cb:9c:41:15:48:77:87:d3:64:50:
c4:d9:46:7b:86:93:d8:93:8a:79:ed:a3:a8:70:fa:fa:44:d2:
2a:71:65:82:43:8b:30:94:b3:1b:7d:eb:af:88:bb:75:3c:0a:
de:be:b1:0b:8a:cb:d2:59:4f:e3:6d:e7:c7:1b:11:ac:7a:9b:
8d:46:e5:6c:a2:2d:be:4a:6c:0a:4a:de:0a:3b:d9:51:e1:f8:
35:d7:81:5d:e0:12:70:12:4c:4d:12:5a:2e:7d:5b:03:14:ab:
a2:08:ba:72:56:45:b9:d8:b0:c0:ab:0c:6e:9a:12:82:0f:19:
bf:b5:39:a5:72:4a:3c:cb:da:26:32:b0:b5:fe:20:07:d1:19:
ec:0f:fe:43:08:ab:38:1f:85:ef:95:51:0b:c7:ec:55:27:ed:
03:29:d6:c6:5b:76:28:03:54:e1:b7:4c:f7:ce:97:86:9a:de:
0d:cb:18:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:31:25 2025 by rpki-client