Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
File: rARWSrE5dm8d7mSLNaChi702IQk.mft (raw, json)
Hash identifier: B7637ruZpxR6GKrGf8hH+og4DRxQSLGgsX9LcxGgljg=
Subject key identifier: 54:04:1F:D2:25:C7:25:E3:3E:A9:E3:B0:03:5F:C0:C5:5D:71:F5:14
Authority key identifier: AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
Certificate issuer: /CN=ac04564ab139766f1dee648b35a0a18bbd362109
Certificate serial: 0198D4E02F8DB903180259F0A43D8D7CBB29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 03:01:58 +0000
Manifest this update: Sat 23 Aug 2025 03:01:58 +0000
Manifest next update: Sun 24 Aug 2025 03:01:58 +0000
Files and hashes: 1: rARWSrE5dm8d7mSLNaChi702IQk.crl (hash: hcc+upC/7fKgcsgClfff+lEtz5QBmVPdPm/vxB2Fuq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:2f:8d:b9:03:18:02:59:f0:a4:3d:8d:7c:bb:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac04564ab139766f1dee648b35a0a18bbd362109
Validity
Not Before: Aug 23 03:01:58 2025 GMT
Not After : Aug 24 03:01:58 2025 GMT
Subject: CN=54041fd225c725e33ea9e3b0035fc0c55d71f514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:58:32:ab:98:45:2c:96:e3:39:b4:a5:5b:0c:
8b:f4:7d:a2:51:3e:92:fd:e0:ed:f1:0a:a1:85:74:
d9:36:0f:2c:ba:44:7d:dc:21:e7:42:52:9c:2a:76:
33:71:54:ac:c5:e5:91:ec:8e:6a:e4:5a:2c:f3:bd:
96:a9:d4:b9:d8:37:53:83:bc:0f:62:e0:bc:1a:e0:
47:60:74:17:2e:47:13:44:1d:39:3e:1f:ce:5f:5d:
aa:2a:85:55:53:33:8e:c4:b5:ee:e8:e2:9a:64:eb:
bd:fc:2d:d6:02:74:f6:15:fc:ce:89:d7:f1:e4:8e:
52:97:0c:d2:99:ca:6c:3a:b8:b3:15:3d:1f:5a:c7:
8f:b5:57:4b:ec:76:78:4a:3f:d2:50:3e:40:c8:c3:
60:3b:51:a4:6c:73:a5:75:0a:d9:0f:84:2a:7e:bd:
83:5f:84:20:2c:c1:a7:98:0e:58:ea:54:c9:fa:2e:
6b:b0:93:c8:11:b6:16:9d:14:13:b8:8e:7b:4b:da:
11:ec:df:96:86:17:28:7d:43:50:10:f1:90:63:49:
04:cd:b2:03:fa:c8:45:90:7a:6c:43:6c:51:f7:b0:
58:9b:50:eb:9b:81:37:4d:0a:90:95:16:29:46:3a:
33:27:dd:51:15:a5:09:11:12:84:5b:54:39:9e:9e:
60:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:04:1F:D2:25:C7:25:E3:3E:A9:E3:B0:03:5F:C0:C5:5D:71:F5:14
X509v3 Authority Key Identifier:
keyid:AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:ea:61:34:22:87:d5:f0:f3:90:59:83:20:b6:56:de:22:82:
b5:e5:bf:ee:fc:fe:b9:b2:06:7b:4c:04:18:58:2c:4c:7f:03:
d8:5c:c2:7e:ae:c0:4f:e3:ff:1d:6e:88:01:db:92:f1:7a:5d:
09:d6:fc:23:c7:ee:cd:bf:2f:78:16:27:4d:af:9e:2d:b4:b4:
91:e1:31:06:05:38:d6:e8:1e:1f:e9:a7:e9:46:ed:76:bf:60:
23:c8:67:18:54:97:82:c1:d6:ce:3f:c6:dd:ff:fc:d8:0b:15:
dc:3a:9d:58:ad:24:91:3d:42:41:4b:89:c9:15:dd:d6:6d:0b:
03:00:97:23:36:f1:44:92:ea:bd:1f:86:fa:62:ee:d3:5f:46:
78:9d:60:8b:2e:7d:28:99:a8:2a:ef:31:38:eb:32:3a:b4:15:
4f:38:00:7a:ad:bc:82:97:37:9d:31:21:08:c1:63:ee:a1:5a:
53:5a:8b:ae:d2:a6:ec:be:84:b4:4e:9e:d3:98:cf:25:3b:3e:
a1:26:51:a0:b9:97:c9:f6:09:78:91:ae:d1:ce:ae:fe:f3:8f:
65:48:69:ea:f5:a0:3e:89:64:98:7e:90:de:5e:80:33:e6:f7:
c6:9b:36:d0:2c:5e:44:8c:c6:16:1d:bc:b2:fc:62:de:67:70:
cc:a2:58:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:49 2025 by rpki-client