Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
File: rARWSrE5dm8d7mSLNaChi702IQk.mft (raw, json)
Hash identifier: Oir5mJtg6iQ05YCQGJTF7TkMsiwuOE1f/ZalxSedz9A=
Subject key identifier: B2:D3:43:60:31:52:13:7A:B3:10:E3:1A:CB:1C:FD:3D:FC:ED:0D:89
Authority key identifier: AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
Certificate issuer: /CN=ac04564ab139766f1dee648b35a0a18bbd362109
Certificate serial: 0197B8FD09257444AB384934369C16C50697
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
Manifest number: 15B3
Signing time: Sun 29 Jun 2025 00:01:19 +0000
Manifest this update: Sun 29 Jun 2025 00:01:19 +0000
Manifest next update: Mon 30 Jun 2025 00:01:19 +0000
Files and hashes: 1: rARWSrE5dm8d7mSLNaChi702IQk.crl (hash: ggnQuZR0al1F5XzMJJVewjPmtzJxRkZMu3YHRSY8VQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:09:25:74:44:ab:38:49:34:36:9c:16:c5:06:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac04564ab139766f1dee648b35a0a18bbd362109
Validity
Not Before: Jun 29 00:01:19 2025 GMT
Not After : Jun 30 00:01:19 2025 GMT
Subject: CN=b2d343603152137ab310e31acb1cfd3dfced0d89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:97:1c:3b:ce:4d:2a:d4:5e:61:f0:9e:6c:fa:
b0:5b:65:9d:44:f5:9c:4c:73:4f:7c:72:68:87:17:
e5:8d:32:a3:5b:b2:fd:c1:ea:35:af:01:21:11:a4:
c2:52:92:bc:28:9d:d7:f4:2a:89:9e:5d:64:12:37:
18:07:97:15:34:32:20:b5:72:b9:af:75:1b:f6:80:
1d:0d:d6:d1:24:ef:21:9a:a6:0f:22:4c:cc:c6:ca:
91:01:31:8e:c8:2b:09:3a:7f:2d:03:b1:1e:3a:b8:
68:e1:34:fd:84:19:e3:e5:84:0e:83:84:32:c3:be:
ca:a7:f0:ce:ba:2a:f2:b4:b2:60:96:4c:c1:00:e0:
cd:0b:ff:94:90:ca:ea:3e:4a:a6:ed:d9:c9:5c:25:
e9:bd:f6:e8:b9:b4:11:f7:96:5b:38:e1:ec:e4:fa:
ff:a7:49:ca:3c:23:ab:d1:8f:3e:be:42:1f:47:e7:
c2:ed:8d:58:df:a2:47:4b:12:d6:43:b5:bb:5b:d8:
f5:38:bd:8e:bd:a3:0f:a3:63:53:c3:57:83:9c:70:
e1:c7:8c:f1:a7:1c:61:a8:6e:8f:10:44:d6:f4:4b:
09:56:38:47:c9:21:7d:05:91:be:43:68:c8:25:79:
98:d4:e5:f8:ce:63:65:3f:db:c6:b3:a8:28:99:64:
b4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:D3:43:60:31:52:13:7A:B3:10:E3:1A:CB:1C:FD:3D:FC:ED:0D:89
X509v3 Authority Key Identifier:
keyid:AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:db:69:88:c8:e3:92:51:08:95:8d:00:da:f0:10:7b:57:dd:
33:d8:eb:da:cf:4a:3e:d4:9e:c9:1c:18:8b:1e:30:3c:15:fc:
88:c5:1f:8a:ed:01:3a:64:20:cd:7d:2c:91:b4:04:50:1a:24:
83:30:c5:24:b9:ef:0a:7b:4e:1f:19:c4:32:f4:ee:ae:cd:e8:
01:f4:ba:13:37:33:1b:5c:4e:0e:d3:8a:9d:a0:ca:72:c2:f2:
bb:52:1f:70:35:ab:2a:98:30:60:a7:10:29:a8:06:a3:a8:f4:
6c:c1:d9:25:fb:88:d6:2c:89:57:0b:14:20:55:37:80:f3:1c:
0b:b0:4f:bf:35:b9:82:49:16:c1:37:24:bc:46:ec:d0:93:da:
f8:43:55:e5:08:48:52:45:bc:13:50:50:8b:fe:bd:57:fe:29:
c1:c3:f0:fb:5c:49:d9:f3:10:52:2b:30:f1:77:09:5a:1b:e5:
3a:c4:ec:ec:8a:12:9a:b9:4c:e7:52:41:05:18:16:dd:b7:b0:
f8:57:ac:ea:9e:22:93:d6:cb:35:28:17:0a:81:b8:11:69:c7:
d9:6f:8c:e2:be:77:84:4f:bc:4a:de:03:dc:fb:b0:cc:2c:fa:
bc:3c:04:31:a1:5d:06:47:5b:ec:26:25:f8:19:d8:b7:ed:f2:
ac:4d:27:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:53:03 2025 by rpki-client