Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
File: RKqBMTnAax3PG_6DMrm4Aas-swI.mft (raw, json)
Hash identifier: IYqdXNp0U6NdU0lUVc4ewKWh9Uovh9/O4Rj5fpHc9Yo=
Subject key identifier: FF:63:7D:FC:F2:DF:2C:33:8C:F9:A5:7E:65:A1:16:0A:13:81:B7:23
Authority key identifier: 44:AA:81:31:39:C0:6B:1D:CF:1B:FE:83:32:B9:B8:01:AB:3E:B3:02
Certificate issuer: /CN=44aa813139c06b1dcf1bfe8332b9b801ab3eb302
Certificate serial: 0197B7B345A3B7B990FD0ED26A79C7353F5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
Manifest number: 05CD
Signing time: Sat 28 Jun 2025 18:01:08 +0000
Manifest this update: Sat 28 Jun 2025 18:01:08 +0000
Manifest next update: Sun 29 Jun 2025 18:01:08 +0000
Files and hashes: 1: RKqBMTnAax3PG_6DMrm4Aas-swI.crl (hash: ej79lwtRSNL2tTL82GS0or/2JOVzEGaVoMiX/eqG+v4=)
2: dulLD0ENjA9tfgPr9DrSQJxWn5k.roa (hash: ecAhh1+SnR4Xv8G0G+2S5KTuId8TsIACx8G94ng9hIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:45:a3:b7:b9:90:fd:0e:d2:6a:79:c7:35:3f:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44aa813139c06b1dcf1bfe8332b9b801ab3eb302
Validity
Not Before: Jun 28 18:01:08 2025 GMT
Not After : Jun 29 18:01:08 2025 GMT
Subject: CN=ff637dfcf2df2c338cf9a57e65a1160a1381b723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8a:e5:f8:92:29:b6:c0:3e:f5:39:01:0f:da:
4c:80:08:d6:e7:88:16:05:f2:20:8b:b0:48:19:39:
b4:b6:cd:b9:28:63:39:59:d4:48:7e:77:2b:af:66:
97:0c:f6:4c:e7:e9:e6:18:09:ec:7b:e2:8c:0c:ec:
5e:3c:71:8a:c1:ed:27:f2:89:a0:39:58:d8:5a:09:
f1:63:11:0a:20:e0:aa:03:f9:ae:27:d3:d8:15:31:
d1:2f:01:30:b4:bf:0b:0e:c5:c0:7b:cc:7c:14:ab:
15:3a:f7:0e:16:1c:e2:38:e3:9e:fc:97:d0:ae:5f:
1f:54:af:ed:0a:70:ee:fa:51:34:81:db:90:ac:a7:
4c:de:fd:f2:80:04:4d:42:d9:7a:66:27:38:9a:c7:
7a:31:93:4d:b3:d8:95:56:56:a9:af:65:4c:5d:30:
f3:cf:79:24:8d:07:6b:05:c2:fe:d8:e2:16:3c:e7:
4a:7e:4c:7b:6c:3c:04:ab:50:98:e6:a0:44:3a:04:
a7:47:cc:70:c7:a8:36:a6:97:b3:dd:7b:d4:5d:d4:
fc:8b:b4:ac:2e:75:c6:3f:c8:87:b9:4a:b1:85:c5:
23:57:da:c1:04:b1:a4:d2:31:27:66:0a:2e:9d:a4:
9e:1a:81:c0:ee:f9:32:12:d9:b7:13:d9:37:6f:65:
cc:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:63:7D:FC:F2:DF:2C:33:8C:F9:A5:7E:65:A1:16:0A:13:81:B7:23
X509v3 Authority Key Identifier:
keyid:44:AA:81:31:39:C0:6B:1D:CF:1B:FE:83:32:B9:B8:01:AB:3E:B3:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:b1:78:13:e8:7c:2e:a2:e4:93:5f:3c:74:c8:d0:ab:94:50:
8f:b2:c1:c6:5e:f0:be:f2:66:e8:eb:33:05:0f:b0:98:67:d1:
c0:72:d0:1b:e6:32:17:ef:18:03:1a:3d:b5:51:de:01:a9:ff:
cc:ba:ff:fa:fe:93:a9:53:2c:a2:6b:19:ac:77:47:1a:f2:59:
9c:a8:59:51:d7:fc:cf:4f:37:fb:06:e9:ad:60:b2:a4:23:22:
6a:02:0f:41:d1:83:69:4f:c3:42:ca:70:ce:f7:da:81:c2:b0:
a4:47:d5:76:16:17:d4:83:4d:9d:c0:e4:03:36:e7:8b:e3:32:
3f:4e:08:b7:c5:f8:e2:60:5f:8f:e6:4a:84:14:2f:1c:ff:7c:
7e:94:cf:0e:f6:70:db:a9:73:c7:2d:fd:8a:73:c8:2f:75:b2:
ee:8c:af:e2:49:f0:60:87:b8:8d:6e:44:a0:47:3b:23:1c:bd:
97:73:71:af:a7:48:92:65:e8:62:f7:dd:67:b6:3b:28:20:aa:
ff:f8:55:81:7d:4b:4d:e8:11:2f:d6:12:f7:c2:fc:a3:af:c6:
2e:4f:0d:fd:66:00:66:94:09:08:a6:61:98:d7:f1:cf:b2:41:
dd:09:72:2d:ad:bc:0b:dd:af:e8:03:35:3c:19:f7:68:5a:bb:
76:33:df:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:54:23 2025 by rpki-client