Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
File: avL7pFrWUxpj0XNQFPaZgH9H-9w.mft (raw, json)
Hash identifier: PCHByfqR8U65a81CPQOOyCM7m9P8FUo7EHacKyzQ+mA=
Subject key identifier: 7A:54:8C:20:AD:23:39:6E:D0:A8:E7:48:02:3F:E9:0F:7A:37:A5:12
Authority key identifier: 6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC
Certificate issuer: /CN=6af2fba45ad6531a63d1735014f699807f47fbdc
Certificate serial: 0197C5013D4E69A95A4DB0C1AAAB15045C6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
Manifest number: 05E6
Signing time: Tue 01 Jul 2025 08:01:22 +0000
Manifest this update: Tue 01 Jul 2025 08:01:22 +0000
Manifest next update: Wed 02 Jul 2025 08:01:22 +0000
Files and hashes: 1: avL7pFrWUxpj0XNQFPaZgH9H-9w.crl (hash: POlkCkcEZVsH7QmOQtxdf1RJz0HMDtxHFRENt2+oId8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c5:01:3d:4e:69:a9:5a:4d:b0:c1:aa:ab:15:04:5c:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6af2fba45ad6531a63d1735014f699807f47fbdc
Validity
Not Before: Jul 1 08:01:22 2025 GMT
Not After : Jul 2 08:01:22 2025 GMT
Subject: CN=7a548c20ad23396ed0a8e748023fe90f7a37a512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8e:03:b8:50:20:4f:f9:5e:64:a8:3a:a4:5b:
24:08:d5:ee:fa:74:39:12:d7:bb:d8:81:ed:27:fb:
13:e4:d7:2a:45:91:6c:8a:9d:f6:cd:23:bf:a2:89:
5d:26:02:38:3b:c5:3c:02:cd:dd:05:aa:05:43:9b:
03:fb:2b:aa:73:66:da:bd:06:d9:9c:e8:b6:06:7c:
ee:7a:46:18:b9:88:18:e7:a7:16:e3:2c:f6:ec:ac:
3b:fd:4f:f0:8e:52:d2:ad:9d:e2:76:a1:61:5a:84:
e0:b6:e0:a7:7a:03:a6:78:18:c8:3f:73:e8:a9:45:
28:8d:cb:8f:31:e5:a8:c6:eb:89:4a:f7:c9:85:9b:
cf:d7:37:a2:20:5b:26:b2:1e:9f:cf:b3:2d:0c:87:
55:f8:00:f9:ce:57:57:9b:ff:54:d3:a7:73:01:c9:
db:65:e4:38:5c:2b:2e:ae:94:13:f7:44:d4:9f:1a:
87:0b:1e:c6:51:3c:6d:69:f2:eb:81:27:37:c1:1d:
88:95:44:e3:f9:d7:9e:03:e3:ec:3b:42:1a:e2:29:
7e:7c:80:f2:35:08:02:23:73:1f:2e:41:99:2e:bc:
82:55:c3:74:bc:72:9f:a3:73:7a:39:02:41:8a:94:
8f:43:c8:25:b8:22:53:3e:5b:f8:c2:e1:a7:ae:c8:
31:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:54:8C:20:AD:23:39:6E:D0:A8:E7:48:02:3F:E9:0F:7A:37:A5:12
X509v3 Authority Key Identifier:
keyid:6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:59:92:e0:c5:2b:73:55:a6:20:b9:84:d0:b4:b3:dd:06:da:
1b:40:ff:5f:e5:26:af:de:cb:3c:94:5f:a0:1a:78:d6:bf:f4:
17:87:1c:70:bd:e7:24:3c:b7:dc:8a:72:79:dd:d6:10:0c:5d:
79:8e:f5:6f:ec:6b:d2:35:75:80:b9:7c:86:1d:4b:f4:41:86:
05:a3:27:86:13:a4:cf:e8:6d:4b:66:cb:8e:f4:a4:67:da:a1:
95:86:f1:2c:15:11:29:3f:92:9b:06:74:f8:02:11:a1:6a:75:
fc:2a:cf:b2:69:81:9e:17:03:b1:90:6d:e7:27:e2:aa:cb:80:
51:53:c6:d5:ac:b9:f0:96:e9:33:c3:ce:7b:be:fd:ea:f1:ed:
8f:4a:55:2f:8c:fc:95:7d:ff:c8:9e:c0:14:fa:7a:a9:ae:86:
93:de:55:2c:4c:6e:90:e2:09:40:85:67:6b:c2:be:bf:22:2d:
1f:fd:4a:8b:36:ae:49:cf:a2:7b:55:eb:2c:4c:36:f4:51:70:
9e:a3:73:8f:63:16:af:c1:2e:45:95:ed:96:6e:15:d6:d2:e6:
da:8d:13:88:b3:2a:87:48:4e:58:1d:a4:0f:1c:ed:2a:35:0e:
0d:8c:79:99:14:a0:66:df:af:ce:9f:1c:e4:2a:7f:27:04:98:
cb:12:8c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 17:40:39 2025 by rpki-client